npm - delimit-cli - Versions diffs - 2.2.0 → 2.3.1 - Mend

delimit-cli 2.2.0 → 2.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,6 +1,8 @@
 # delimit-cli
-**ESLint for API contracts** — detect breaking changes, enforce semver, and generate migration guides for OpenAPI specs.
+**Prevent breaking API changes before they reach production.**
+Deterministic diff engine + policy enforcement + semver classification for OpenAPI specs. The independent successor to Optic.
 [![npm](https://img.shields.io/npm/v/delimit-cli)](https://www.npmjs.com/package/delimit-cli)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)
@@ -11,46 +13,76 @@
 npm install -g delimit-cli
 ```
-This installs the `delimit` command globally.
-## Quick Start
+## Quick Start (Under 5 Minutes)
 ```bash
-# Initialize a policy file in your repo
-delimit init
+# 1. Initialize with a policy preset
+delimit init --preset default
-# Detect breaking changes between two specs
+# 2. Detect breaking changes
 delimit lint api/openapi-old.yaml api/openapi-new.yaml
-# See raw diff output
-delimit diff api/openapi-old.yaml api/openapi-new.yaml
-# Generate a human-readable explanation
-delimit explain api/openapi-old.yaml api/openapi-new.yaml
+# 3. Add the GitHub Action for automated PR checks
+#    Copy .github/workflows/api-governance.yml (see CI section below)
 ```
+## What It Catches
+Delimit deterministically detects 23 types of API changes, including 10 breaking patterns:
+- Endpoint or method removal
+- Required parameter addition
+- Response field removal
+- Type changes
+- Enum value removal
+- And more
+Every change is classified as `MAJOR`, `MINOR`, `PATCH`, or `NONE` per semver.
 ## Commands
 | Command | Description |
 |---------|-------------|
-| `delimit init` | Create `.delimit/policies.yml` with default rules |
-| `delimit lint <old> <new>` | Diff + policy check with semver badge and violations |
+| `delimit init` | Create `.delimit/policies.yml` with a policy preset |
+| `delimit lint <old> <new>` | Diff + policy check — returns exit code 1 on violations |
 | `delimit diff <old> <new>` | Raw diff with `[BREAKING]`/`[safe]` tags |
 | `delimit explain <old> <new>` | Human-readable change explanation |
-### Options
+## Policy Presets
+Choose a preset that fits your team:
+```bash
+delimit init --preset strict    # Public APIs, payments — zero tolerance
+delimit init --preset default   # Most teams — balanced rules
+delimit init --preset relaxed   # Internal APIs, startups — warnings only
+```
+| Preset | Breaking changes | Type changes | Field removal |
+|--------|-----------------|--------------|---------------|
+| `strict` | Error (blocks) | Error (blocks) | Error (blocks) |
+| `default` | Error (blocks) | Warning | Error (blocks) |
+| `relaxed` | Warning | Warning | Info |
+Pass a preset directly to lint:
+```bash
+delimit lint --policy strict old.yaml new.yaml
+```
+## Options
 ```bash
-# Specify explainer template (default: developer)
+# Semver classification with version bump
+delimit lint old.yaml new.yaml --current-version 1.0.0
+# Explainer templates
 delimit explain old.yaml new.yaml -t migration
 delimit explain old.yaml new.yaml -t pr_comment
 delimit explain old.yaml new.yaml -t changelog
-# Include semver classification
-delimit lint old.yaml new.yaml --current-version 1.0.0
-# Use custom policy file
-delimit lint old.yaml new.yaml -p .delimit/policies.yml
+# JSON output for scripting
+delimit lint old.yaml new.yaml --json
 ```
 ### Explainer Templates
@@ -67,34 +99,56 @@ delimit lint old.yaml new.yaml -p .delimit/policies.yml
 ## CI/CD Integration
-For automated PR checks, use the GitHub Action:
+Add this workflow to `.github/workflows/api-governance.yml`:
 ```yaml
-- uses: delimit-ai/delimit-action@v1
-  with:
-    old_spec: base/api/openapi.yaml
-    new_spec: api/openapi.yaml
+name: API Governance
+on:
+  pull_request:
+    paths:
+      - 'path/to/openapi.yaml'  # adjust to your spec path
+permissions:
+  contents: read
+  pull-requests: write
+jobs:
+  api-governance:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.pull_request.base.sha }}
+          path: _base
+      - uses: delimit-ai/delimit@v1
+        with:
+          old_spec: _base/path/to/openapi.yaml
+          new_spec: path/to/openapi.yaml
+          mode: advisory  # or 'enforce' to block PRs
 ```
+The action posts a PR comment with:
+- Semver badge (`MAJOR` / `MINOR` / `PATCH`)
+- Violation table with severity
+- Expandable migration guide for breaking changes
 See [Delimit API Governance](https://github.com/marketplace/actions/delimit-api-governance) on the GitHub Marketplace.
 ## Custom Policies
-Create `.delimit/policies.yml`:
+Create `.delimit/policies.yml` or start from a preset:
 ```yaml
+override_defaults: false
 rules:
-  - id: no_endpoint_removal
-    change_types: [endpoint_removed]
+  - id: protect_v1
+    name: Protect V1 API
+    change_types: [endpoint_removed, method_removed, field_removed]
     severity: error
     action: forbid
-    message: "Endpoints cannot be removed without deprecation"
-  - id: warn_type_change
-    change_types: [type_changed]
-    severity: warning
-    action: warn
-    message: "Type change may break clients"
+    conditions:
+      path_pattern: "^/v1/.*"
+    message: "V1 API is frozen. Make changes in V2."
 ```
 ## Supported Specs
@@ -105,7 +159,7 @@ rules:
 ## Links
-- [GitHub Action](https://github.com/marketplace/actions/delimit-api-governance) — CI/CD integration
+- [GitHub Action](https://github.com/marketplace/actions/delimit-api-governance) — Automated PR checks
 - [GitHub](https://github.com/delimit-ai/delimit) — Source code
 - [Issues](https://github.com/delimit-ai/delimit/issues) — Bug reports and feature requests

package/bin/delimit-cli.js CHANGED Viewed

@@ -49,8 +49,8 @@ async function ensureAgent() {
 program
     .name('delimit')
-    .description('Dynamic AI Governance with seamless mode switching')
-    .version('2.0.0');
+    .description('Prevent breaking API changes before they reach production')
+    .version('2.3.0');
 // Install command with modes
 program
@@ -158,6 +158,7 @@ program
 program
     .command('mode [mode]')
     .description('Switch governance mode (advisory, guarded, enforce, auto)')
     .action(async (mode) => {
         await ensureAgent();
@@ -181,6 +182,7 @@ program
 program
     .command('status')
     .description('Show governance status')
     .option('--verbose', 'Show detailed status')
     .action(async (options) => {
         const agentRunning = await checkAgent();
@@ -274,6 +276,7 @@ program
 program
     .command('policy')
     .description('Manage governance policies')
     .option('--init', 'Create example policy file')
     .option('--validate', 'Validate policy syntax')
     .action(async (options) => {
@@ -326,6 +329,7 @@ overrides:
 program
     .command('auth')
     .description('Setup authentication and credentials for services')
     .option('--all', 'Setup all available services')
     .option('--github', 'Setup GitHub authentication')
     .option('--ai', 'Setup AI tools authentication')
@@ -387,6 +391,7 @@ program
 program
     .command('audit')
     .description('View governance audit log')
     .option('--tail <n>', 'Show last N entries', '10')
     .action(async (options) => {
         await ensureAgent();
@@ -412,120 +417,14 @@ program
         });
     });
-// Doctor command - diagnose issues
-program
-    .command('doctor')
-    .description('Diagnose Delimit configuration and issues')
-    .action(async () => {
-        console.log(chalk.blue.bold('\n🩺 Delimit Doctor\n'));
-        const issues = [];
-        const warnings = [];
-        const info = [];
-        // Check agent status
-        const agentRunning = await checkAgent();
-        if (!agentRunning) {
-            issues.push('Agent is not running. Run "delimit status" to start it.');
-        } else {
-            info.push('Agent is running and responsive');
-        }
-        // Check Git hooks
-        try {
-            const hooksPath = execSync('git config --global core.hooksPath').toString().trim();
-            if (hooksPath.includes('.delimit')) {
-                info.push('Git hooks are configured correctly');
-                // Check hook files exist
-                const hookFiles = ['pre-commit', 'pre-push'];
-                hookFiles.forEach(hook => {
-                    const hookFile = path.join(hooksPath, hook);
-                    if (!fs.existsSync(hookFile)) {
-                        warnings.push(`Missing hook file: ${hook}`);
-                    }
-                });
-            } else {
-                warnings.push('Git hooks not pointing to Delimit. Run "delimit install" to fix.');
-            }
-        } catch (e) {
-            issues.push('Git hooks not configured. Run "delimit install" to set up.');
-        }
-        // Check PATH
-        const pathHasDelimit = process.env.PATH.includes('.delimit/shims');
-        if (pathHasDelimit) {
-            warnings.push('PATH hijacking is active (for AI tool interception)');
-        } else {
-            info.push('PATH is clean (no AI tool interception)');
-        }
-        // Check policy files
-        const policies = [];
-        if (fs.existsSync('delimit.yml')) {
-            policies.push('project');
-            // Validate policy
-            try {
-                const policy = yaml.load(fs.readFileSync('delimit.yml', 'utf8'));
-                if (!policy.rules) {
-                    warnings.push('Project policy has no rules defined');
-                }
-            } catch (e) {
-                issues.push(`Project policy is invalid: ${e.message}`);
-            }
-        }
-        const userPolicyPath = path.join(process.env.HOME, '.config', 'delimit', 'delimit.yml');
-        if (fs.existsSync(userPolicyPath)) {
-            policies.push('user');
-        }
-        if (policies.length === 0) {
-            warnings.push('No policy files found. Run "delimit policy --init" to create one.');
-        } else {
-            info.push(`Policy files loaded: ${policies.join(', ')}`);
-        }
-        // Check audit log
-        const auditDir = path.join(process.env.HOME, '.delimit', 'audit');
-        if (fs.existsSync(auditDir)) {
-            const files = fs.readdirSync(auditDir);
-            info.push(`Audit log has ${files.length} day(s) of history`);
-        } else {
-            warnings.push('No audit logs found yet');
-        }
-        // Display results
-        if (issues.length > 0) {
-            console.log(chalk.red.bold('❌ Issues Found:\n'));
-            issues.forEach(issue => console.log(chalk.red(`  • ${issue}`)));
-            console.log();
-        }
-        if (warnings.length > 0) {
-            console.log(chalk.yellow.bold('⚠️  Warnings:\n'));
-            warnings.forEach(warning => console.log(chalk.yellow(`  • ${warning}`)));
-            console.log();
-        }
-        if (info.length > 0) {
-            console.log(chalk.green.bold('✅ Working Correctly:\n'));
-            info.forEach(item => console.log(chalk.green(`  • ${item}`)));
-            console.log();
-        }
-        // Overall status
-        if (issues.length === 0) {
-            console.log(chalk.green.bold('🎉 Delimit is healthy!'));
-        } else {
-            console.log(chalk.red.bold('🔧 Please fix the issues above'));
-            process.exit(1);
-        }
-    });
+// Doctor command - verify setup for API governance
+// (legacy doctor replaced with v1-focused checks)
 // Explain-decision command - show governance decision reasoning
 program
     .command('explain-decision [decision-id]')
     .description('Explain a governance decision')
     .action(async (decisionId) => {
         await ensureAgent();
@@ -545,6 +444,7 @@ program
 program
     .command('uninstall')
     .description('Remove Delimit governance')
     .action(async () => {
         const { confirm } = await inquirer.prompt([{
             type: 'confirm',
@@ -637,6 +537,7 @@ program
     .command('proxy <tool>')
     .allowUnknownOption()
     .description('Proxy AI tool execution with governance')
     .action(async (tool, options) => {
         const { proxyAITool } = require('../lib/proxy-handler');
         // Get all args after the tool name
@@ -649,6 +550,7 @@ program
 program
     .command('hook <type>')
     .description('Internal hook handler')
     .action(async (type) => {
         await ensureAgent();
@@ -741,11 +643,131 @@ program
 const apiEngine = require('../lib/api-engine');
+// Policy preset templates
+const POLICY_PRESETS = {
+    strict: `# Delimit Policy Preset: strict
+# For public APIs, payment systems, and regulated environments.
+# Zero tolerance for breaking changes.
+override_defaults: true
+rules:
+  - id: no_endpoint_removal
+    name: Forbid Endpoint Removal
+    change_types: [endpoint_removed]
+    severity: error
+    action: forbid
+    message: "Endpoint {path} cannot be removed. Deprecate with Sunset header first."
+  - id: no_method_removal
+    name: Forbid Method Removal
+    change_types: [method_removed]
+    severity: error
+    action: forbid
+    message: "HTTP method removed from {path}. This breaks all clients."
+  - id: no_required_param_addition
+    name: Forbid Required Parameter Addition
+    change_types: [required_param_added]
+    severity: error
+    action: forbid
+    message: "Cannot add required parameter to {path}. Make it optional."
+  - id: no_field_removal
+    name: Forbid Response Field Removal
+    change_types: [field_removed]
+    severity: error
+    action: forbid
+    message: "Cannot remove field from {path}. Deprecate it first."
+  - id: no_type_change
+    name: Forbid Type Changes
+    change_types: [type_changed]
+    severity: error
+    action: forbid
+    message: "Type change at {path} breaks client deserialization."
+  - id: no_enum_removal
+    name: Forbid Enum Value Removal
+    change_types: [enum_value_removed]
+    severity: error
+    action: forbid
+    message: "Enum value removed at {path}."
+  - id: no_param_removal
+    name: Forbid Parameter Removal
+    change_types: [param_removed]
+    severity: error
+    action: forbid
+    message: "Parameter removed from {path}."
+`,
+    default: `# Delimit Policy Preset: default
+# Balanced rules for most teams. Blocks destructive changes, warns on risky ones.
+# Uses built-in defaults — customize by adding rules below.
+override_defaults: false
+rules: []
+# Add custom rules here. Example:
+#   - id: protect_v1
+#     name: Protect V1 API
+#     change_types: [endpoint_removed, method_removed, field_removed]
+#     severity: error
+#     action: forbid
+#     conditions:
+#       path_pattern: "^/v1/.*"
+#     message: "V1 API is frozen. Make changes in V2."
+`,
+    relaxed: `# Delimit Policy Preset: relaxed
+# For internal APIs, early-stage startups, and rapid iteration.
+# Only warns — never blocks CI.
+override_defaults: true
+rules:
+  - id: warn_endpoint_removal
+    name: Warn on Endpoint Removal
+    change_types: [endpoint_removed]
+    severity: warning
+    action: warn
+    message: "Endpoint {path} was removed. Check downstream consumers."
+  - id: warn_method_removal
+    name: Warn on Method Removal
+    change_types: [method_removed]
+    severity: warning
+    action: warn
+    message: "HTTP method removed from {path}."
+  - id: warn_required_param
+    name: Warn on Required Parameter Addition
+    change_types: [required_param_added]
+    severity: warning
+    action: warn
+    message: "New required parameter at {path}."
+  - id: warn_type_change
+    name: Warn on Type Changes
+    change_types: [type_changed]
+    severity: warning
+    action: warn
+    message: "Type changed at {path}."
+  - id: allow_field_removal
+    name: Allow Field Removal
+    change_types: [field_removed]
+    severity: info
+    action: allow
+    message: "Field removed from {path}."
+`,
+};
 // Init command — scaffold .delimit/ config
 program
     .command('init')
     .description('Initialize Delimit API governance in this project')
-    .action(async () => {
+    .option('--preset <name>', 'Policy preset: strict, default, or relaxed', 'default')
+    .action(async (options) => {
         const configDir = path.join(process.cwd(), '.delimit');
         const policyFile = path.join(configDir, 'policies.yml');
@@ -754,34 +776,175 @@ program
             return;
         }
+        const preset = options.preset.toLowerCase();
+        if (!POLICY_PRESETS[preset]) {
+            console.log(chalk.red(`Unknown preset "${preset}". Choose: strict, default, or relaxed`));
+            return;
+        }
         fs.mkdirSync(configDir, { recursive: true });
+        fs.writeFileSync(policyFile, POLICY_PRESETS[preset]);
+        console.log(chalk.green(`\n  Created .delimit/policies.yml (preset: ${preset})\n`));
-        const template = `# Delimit API Governance Policy
-# https://github.com/delimit-ai/delimit
+        // Auto-detect OpenAPI spec files
+        const specPatterns = [
+            'openapi.yaml', 'openapi.yml', 'openapi.json',
+            'swagger.yaml', 'swagger.yml', 'swagger.json',
+            'api.yaml', 'api.yml', 'api.json',
+            'docs/openapi.yaml', 'docs/openapi.yml', 'docs/openapi.json',
+            'spec/openapi.yaml', 'spec/openapi.json',
+            'specs/openapi.yaml', 'specs/openapi.json',
+            'api/openapi.yaml', 'api/openapi.json',
+            'contrib/openapi.json',
+        ];
+        const foundSpecs = specPatterns.filter(p => fs.existsSync(path.join(process.cwd(), p)));
-# Override built-in rules (default: false)
-override_defaults: false
+        if (foundSpecs.length > 0) {
+            const specPath = foundSpecs[0];
+            console.log(`  Detected spec: ${chalk.bold(specPath)}`);
+            console.log('');
+            console.log(chalk.bold('  Add this to .github/workflows/api-governance.yml:\n'));
+            console.log(chalk.gray(`  name: API Governance
+  on:
+    pull_request:
+      paths:
+        - '${specPath}'
+  permissions:
+    contents: read
+    pull-requests: write
+  jobs:
+    api-governance:
+      runs-on: ubuntu-latest
+      steps:
+        - uses: actions/checkout@v4
+        - uses: actions/checkout@v4
+          with:
+            ref: \${{ github.event.pull_request.base.sha }}
+            path: _base
+        - uses: delimit-ai/delimit@v1
+          with:
+            old_spec: _base/${specPath}
+            new_spec: ${specPath}
+            mode: advisory`));
+            console.log('');
+        } else {
+            console.log('  No OpenAPI spec file detected.');
+            console.log(`  Delimit also supports ${chalk.bold('Zero-Spec Mode')} — run ${chalk.bold('delimit lint')} in a FastAPI/NestJS/Express project.`);
+            console.log('');
+        }
-rules: []
-# Example:
-#   - id: protect_v1
-#     name: Protect V1 API
-#     change_types: [endpoint_removed, method_removed, field_removed]
-#     severity: error
-#     action: forbid
-#     conditions:
-#       path_pattern: "^/v1/.*"
-#     message: "V1 API is frozen. Make changes in V2."
-`;
-        fs.writeFileSync(policyFile, template);
-        console.log(chalk.green('Created .delimit/policies.yml'));
-        console.log('');
+        console.log(`  ${chalk.bold('Presets')}: strict | default | relaxed`);
+        console.log(`  Switch: ${chalk.bold('delimit init --preset strict')}\n`);
         console.log('Next steps:');
         console.log(`  ${chalk.bold('delimit lint')} old.yaml new.yaml   — check for breaking changes`);
         console.log(`  ${chalk.bold('delimit diff')} old.yaml new.yaml   — see all changes`);
         console.log(`  ${chalk.bold('delimit explain')} old.yaml new.yaml — human-readable summary`);
     });
+// Doctor command — verify setup is correct
+program
+    .command('doctor')
+    .description('Verify Delimit setup and diagnose common issues')
+    .action(async () => {
+        console.log(chalk.bold('\n  Delimit Doctor\n'));
+        let ok = 0;
+        let warn = 0;
+        let fail = 0;
+        // Check policy file
+        const policyPath = path.join(process.cwd(), '.delimit', 'policies.yml');
+        if (fs.existsSync(policyPath)) {
+            console.log(chalk.green('  ✓ .delimit/policies.yml found'));
+            ok++;
+            try {
+                const yaml = require('js-yaml');
+                const policy = yaml.load(fs.readFileSync(policyPath, 'utf8'));
+                if (policy && (policy.rules !== undefined || policy.override_defaults !== undefined)) {
+                    console.log(chalk.green('  ✓ Policy file is valid YAML'));
+                    ok++;
+                } else {
+                    console.log(chalk.yellow('  ⚠ Policy file has no rules section'));
+                    warn++;
+                }
+            } catch (e) {
+                console.log(chalk.red(`  ✗ Policy file has invalid YAML: ${e.message}`));
+                fail++;
+            }
+        } else {
+            console.log(chalk.red('  ✗ No .delimit/policies.yml — run: delimit init'));
+            fail++;
+        }
+        // Check for OpenAPI spec
+        const specPatterns = [
+            'openapi.yaml', 'openapi.yml', 'openapi.json',
+            'swagger.yaml', 'swagger.yml', 'swagger.json',
+            'docs/openapi.yaml', 'docs/openapi.yml', 'docs/openapi.json',
+            'spec/openapi.yaml', 'spec/openapi.json',
+            'api/openapi.yaml', 'api/openapi.json',
+            'contrib/openapi.json',
+        ];
+        const foundSpecs = specPatterns.filter(p => fs.existsSync(path.join(process.cwd(), p)));
+        if (foundSpecs.length > 0) {
+            console.log(chalk.green(`  ✓ OpenAPI spec found: ${foundSpecs[0]}`));
+            ok++;
+        } else {
+            // Check for framework (Zero-Spec candidate)
+            const pkgJson = path.join(process.cwd(), 'package.json');
+            const reqTxt = path.join(process.cwd(), 'requirements.txt');
+            if (fs.existsSync(pkgJson) || fs.existsSync(reqTxt)) {
+                console.log(chalk.yellow('  ⚠ No OpenAPI spec file — Zero-Spec Mode may work if this is a FastAPI/NestJS/Express project'));
+                warn++;
+            } else {
+                console.log(chalk.red('  ✗ No OpenAPI spec file found'));
+                fail++;
+            }
+        }
+        // Check for GitHub workflow
+        const workflowDir = path.join(process.cwd(), '.github', 'workflows');
+        if (fs.existsSync(workflowDir)) {
+            const workflows = fs.readdirSync(workflowDir);
+            const hasDelimit = workflows.some(f => {
+                try {
+                    const content = fs.readFileSync(path.join(workflowDir, f), 'utf8');
+                    return content.includes('delimit-ai/delimit') || content.includes('delimit');
+                } catch { return false; }
+            });
+            if (hasDelimit) {
+                console.log(chalk.green('  ✓ GitHub Action workflow found'));
+                ok++;
+            } else {
+                console.log(chalk.yellow('  ⚠ No Delimit GitHub Action workflow — run delimit init for setup instructions'));
+                warn++;
+            }
+        } else {
+            console.log(chalk.yellow('  ⚠ No .github/workflows/ directory'));
+            warn++;
+        }
+        // Check git
+        try {
+            const { execSync } = require('child_process');
+            execSync('git rev-parse --git-dir', { stdio: 'pipe' });
+            console.log(chalk.green('  ✓ Git repository detected'));
+            ok++;
+        } catch {
+            console.log(chalk.yellow('  ⚠ Not a git repository'));
+            warn++;
+        }
+        // Summary
+        console.log('');
+        if (fail === 0 && warn === 0) {
+            console.log(chalk.green.bold('  All checks passed! Ready to lint.\n'));
+        } else if (fail === 0) {
+            console.log(chalk.yellow.bold(`  ${ok} passed, ${warn} warning(s). Setup looks good.\n`));
+        } else {
+            console.log(chalk.red.bold(`  ${ok} passed, ${warn} warning(s), ${fail} error(s). Fix errors above.\n`));
+        }
+    });
 // Lint command — diff + policy (primary command)
 // Supports zero-spec mode: `delimit lint` (no args) auto-extracts from FastAPI
 program
@@ -964,4 +1127,11 @@ program
         }
     });
+// Hide legacy/internal commands from --help
+['install', 'mode', 'status', 'policy', 'auth', 'audit',
+ 'explain-decision', 'uninstall', 'proxy', 'hook'].forEach(name => {
+    const cmd = program.commands.find(c => c.name() === name);
+    if (cmd) cmd._hidden = true;
+});
 program.parse();

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "delimit-cli",
-  "version": "2.2.0",
-  "description": "ESLint for API contracts — detect breaking changes, enforce semver, and generate migration guides for OpenAPI specs",
+  "version": "2.3.1",
+  "description": "Prevent breaking API changes before they reach production. Deterministic diff engine + policy enforcement + semver classification.",
   "main": "index.js",
   "bin": {
     "delimit": "./bin/delimit-cli.js"
@@ -9,7 +9,7 @@
   "scripts": {
     "postinstall": "echo 'Run \"delimit install\" to set up governance'",
     "install": "bash ./hooks/install-hooks.sh install",
-    "install-mcp": "bash ./hooks/install-hooks.sh mcp-only",
+    "install-mcp": "bash ./hooks/install-hooks.sh mcp-only",
     "test-mcp": "bash ./hooks/install-hooks.sh troubleshoot",
     "fix-mcp": "bash ./hooks/install-hooks.sh fix-mcp",
     "test": "echo 'Governance is context-aware' && exit 0"
@@ -44,15 +44,15 @@
     "url": "https://github.com/delimit-ai/delimit.git"
   },
   "dependencies": {
-    "commander": "^9.0.0",
     "axios": "^1.0.0",
     "chalk": "^4.1.2",
-    "inquirer": "^8.2.0",
+    "commander": "^12.1.0",
     "express": "^4.18.0",
+    "inquirer": "^8.2.0",
     "js-yaml": "^4.1.0",
     "minimatch": "^5.1.0"
   },
   "engines": {
     "node": ">=14.0.0"
   }
-}
+}