npm - delimit-cli - Versions diffs - 3.7.1 → 3.8.1 - Mend

delimit-cli 3.7.1 → 3.8.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -39,7 +39,7 @@ That's it. Delimit auto-fetches the base branch spec, diffs it, and posts a PR c
 - Step-by-step migration guide
 - Policy violations
-[View on GitHub Marketplace →](https://github.com/marketplace/actions/delimit-api-governance) · [See a live PR comment →](https://github.com/delimit-ai/delimit-quickstart/pull/1)
+[View on GitHub Marketplace →](https://github.com/marketplace/actions/delimit-api-governance) · [See a live demo (6 breaking changes) →](https://github.com/delimit-ai/delimit-action-demo/pull/1)
 ### Example PR comment

package/bin/delimit-setup.js CHANGED Viewed

@@ -327,6 +327,25 @@ Run full governance compliance checks. Verify security, policy compliance, evide
         }
     }
+    // Create instruction files for other platforms
+    const instructionContent = getClaudeMdContent();
+    // Codex instructions
+    const codexInstructions = path.join(os.homedir(), '.codex', 'instructions.md');
+    if (fs.existsSync(path.join(os.homedir(), '.codex'))) {
+        if (!fs.existsSync(codexInstructions) || fs.readFileSync(codexInstructions, 'utf-8').includes('# Delimit')) {
+            fs.writeFileSync(codexInstructions, instructionContent);
+        }
+    }
+    // Cursor rules
+    const cursorRules = path.join(os.homedir(), '.cursorrules');
+    if (fs.existsSync(path.join(os.homedir(), '.cursor'))) {
+        if (!fs.existsSync(cursorRules) || fs.readFileSync(cursorRules, 'utf-8').includes('# Delimit')) {
+            fs.writeFileSync(cursorRules, instructionContent);
+        }
+    }
     // Silent: auto-detect API keys and configure models.json (no output)
     const modelsPath = path.join(DELIMIT_HOME, 'models.json');
     if (!fs.existsSync(modelsPath)) {
@@ -365,12 +384,12 @@ Run full governance compliance checks. Verify security, policy compliance, evide
     log('  Try it now:');
     log(`  ${bold('$ claude')}`);
     log('');
-    log(`  Then say: ${blue('"check this project\'s health"')}`);
+    log(`  Then say: ${blue('"scan this project"')}`);
     log('');
     log('  Or try:');
-    log(`  ${dim('-')} "add to ledger: set up CI pipeline"  ${dim('— start tracking tasks')}`);
-    log(`  ${dim('-')} "what\'s on the ledger?"               ${dim('— see what\'s pending')}`);
-    log(`  ${dim('-')} "delimit help"                        ${dim('— see all capabilities')}`);
+    log(`  ${dim('-')} "lint my API spec"                    ${dim('— catch breaking changes')}`);
+    log(`  ${dim('-')} "add to ledger: set up CI pipeline"  ${dim('— track tasks across sessions')}`);
+    log(`  ${dim('-')} "deliberate [question]"               ${dim('— multi-model AI consensus')}`);
     log('');
     log(`  ${dim('Config:')} ${MCP_CONFIG}`);
     log(`  ${dim('Server:')} ${actualServer}`);
@@ -386,11 +405,17 @@ function getClaudeMdContent() {
 One workspace for every AI coding assistant.
+## On every session start:
+1. Call \`delimit_ledger_context\` to check for open tasks
+2. If returning user, summarize what's pending
+3. If new project, call \`delimit_scan\` to discover what Delimit can do
 ## Try these:
+- "scan this project" -- discover what Delimit can do here
 - "lint my API spec" -- catch breaking changes in your OpenAPI spec
 - "add to ledger: [anything]" -- track tasks across sessions
 - "what's on the ledger?" -- pick up where you left off
-- "check this project's health" -- run governance diagnostics
+- "deliberate [question]" -- get multi-model AI consensus
 ## What Delimit does:
 - **API governance** -- lint, diff, semver classification, migration guides

package/gateway/ai/server.py CHANGED Viewed

@@ -34,7 +34,11 @@ from fastmcp import FastMCP
 logger = logging.getLogger("delimit.ai")
 mcp = FastMCP("delimit")
-mcp.description = "Delimit — The smart lint engine for OpenAPI. Unified agent surface."
+mcp.description = (
+    "Delimit — One workspace for every AI coding assistant. "
+    "On session start, call delimit_ledger_context to check for open tasks. "
+    "Use delimit_scan on new projects. Track all work via the ledger."
+)
 VERSION = "3.2.0"
@@ -2244,6 +2248,135 @@ def delimit_release_sync(action: str = "audit") -> Dict[str, Any]:
     return _with_next_steps("release_sync", audit())
+@mcp.tool()
+def delimit_scan(project_path: str = ".") -> Dict[str, Any]:
+    """Scan a project and show what Delimit can do for it.
+    First-run discovery tool. Finds OpenAPI specs, checks for security issues,
+    detects frameworks, and suggests what to track. Use this when you first
+    install Delimit or open a new project.
+    Args:
+        project_path: Path to the project to scan.
+    """
+    import glob as _glob
+    p = Path(project_path).resolve()
+    findings = []
+    suggestions = []
+    # 1. Find OpenAPI specs
+    spec_patterns = ["**/openapi.yaml", "**/openapi.yml", "**/openapi.json",
+                     "**/swagger.yaml", "**/swagger.yml", "**/swagger.json",
+                     "**/*api*.yaml", "**/*api*.yml"]
+    specs_found = []
+    for pattern in spec_patterns:
+        for match in p.glob(pattern):
+            rel = str(match.relative_to(p))
+            if "node_modules" not in rel and ".next" not in rel and "venv" not in rel:
+                specs_found.append(rel)
+    specs_found = list(set(specs_found))[:10]
+    if specs_found:
+        findings.append({"type": "openapi_specs", "count": len(specs_found), "files": specs_found})
+        suggestions.append({"action": "lint", "detail": f"Run delimit_lint on {specs_found[0]} to check for issues"})
+        suggestions.append({"action": "github_action", "detail": "Add the Delimit GitHub Action to catch breaking changes on PRs"})
+    else:
+        # Check for framework that could generate a spec
+        framework = None
+        if (p / "requirements.txt").exists() or (p / "pyproject.toml").exists():
+            for py_file in p.rglob("*.py"):
+                if "node_modules" in str(py_file):
+                    continue
+                try:
+                    content = py_file.read_text(errors="ignore")[:2000]
+                    if "FastAPI" in content or "fastapi" in content:
+                        framework = "FastAPI"
+                        break
+                except Exception:
+                    pass
+        if (p / "package.json").exists():
+            try:
+                pkg = json.loads((p / "package.json").read_text())
+                deps = {**pkg.get("dependencies", {}), **pkg.get("devDependencies", {})}
+                if "@nestjs/core" in deps:
+                    framework = "NestJS"
+                elif "express" in deps:
+                    framework = "Express"
+            except Exception:
+                pass
+        if framework:
+            findings.append({"type": "framework_detected", "framework": framework, "has_spec": False})
+            suggestions.append({"action": "zero_spec", "detail": f"Run delimit_zero_spec to extract an OpenAPI spec from your {framework} code"})
+        else:
+            findings.append({"type": "no_api_detected", "note": "No OpenAPI spec or supported framework found"})
+    # 2. Check for security patterns (quick scan)
+    security_issues = []
+    for pattern_name, pattern_glob, check in [
+        ("env_file_in_git", ".env", lambda f: True),
+        ("hardcoded_key", "**/*.py", lambda f: "API_KEY" in f.read_text(errors="ignore")[:5000] and "os.environ" not in f.read_text(errors="ignore")[:5000]),
+        ("hardcoded_key_js", "**/*.js", lambda f: "apiKey" in f.read_text(errors="ignore")[:5000] and "process.env" not in f.read_text(errors="ignore")[:5000]),
+    ]:
+        try:
+            for match in p.glob(pattern_glob):
+                rel = str(match.relative_to(p))
+                if "node_modules" in rel or ".next" in rel or "venv" in rel or "__pycache__" in rel:
+                    continue
+                if check(match):
+                    security_issues.append({"issue": pattern_name, "file": rel})
+                    break  # One per pattern is enough
+        except Exception:
+            pass
+    if security_issues:
+        findings.append({"type": "security_concerns", "count": len(security_issues), "issues": security_issues})
+        suggestions.append({"action": "security_audit", "detail": "Run delimit_security_audit for a full scan"})
+    # 3. Check git status
+    try:
+        import subprocess
+        result = subprocess.run(["git", "log", "--oneline", "-1"], capture_output=True, text=True, timeout=5, cwd=str(p))
+        if result.returncode == 0:
+            findings.append({"type": "git_repo", "latest_commit": result.stdout.strip()})
+    except Exception:
+        pass
+    # 4. Check for existing tests
+    test_files = list(p.glob("**/test_*.py")) + list(p.glob("**/*.test.js")) + list(p.glob("**/*.test.ts")) + list(p.glob("**/*.spec.js"))
+    test_files = [f for f in test_files if "node_modules" not in str(f)]
+    if test_files:
+        findings.append({"type": "tests_found", "count": len(test_files)})
+        suggestions.append({"action": "test_coverage", "detail": "Run delimit_test_smoke to verify tests pass and measure coverage"})
+    # 5. Check ledger
+    from ai.ledger_manager import list_items
+    ledger = list_items(project_path=str(p))
+    open_items = [i for i in ledger.get("items", []) if isinstance(i, dict) and i.get("status") == "open"]
+    if open_items:
+        findings.append({"type": "ledger_active", "open_items": len(open_items), "top": [i.get("title", "") for i in open_items[:3]]})
+    else:
+        suggestions.append({"action": "ledger", "detail": "Say 'add to ledger: [task]' to start tracking work across sessions"})
+    # 6. Check deliberation models
+    from ai.deliberation import get_models_config
+    models = get_models_config()
+    enabled = [v.get("name", k) for k, v in models.items() if v.get("enabled")]
+    if len(enabled) >= 2:
+        findings.append({"type": "deliberation_ready", "models": enabled})
+    elif len(enabled) == 1:
+        suggestions.append({"action": "models", "detail": f"Add 1 more AI model for multi-model deliberation (have {enabled[0]})"})
+    else:
+        suggestions.append({"action": "models", "detail": "Configure AI models for deliberation: say 'configure delimit models'"})
+    return _with_next_steps("scan", {
+        "project": str(p),
+        "findings": findings,
+        "suggestions": suggestions,
+        "summary": f"Found {len(findings)} things, {len(suggestions)} suggestions",
+    })
 # ═══════════════════════════════════════════════════════════════════════
 #  ENTRY POINT
 # ═══════════════════════════════════════════════════════════════════════

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "delimit-cli",
-  "version": "3.7.1",
+  "version": "3.8.1",
   "description": "One workspace for every AI coding assistant. Tasks, memory, and governance carry between Claude Code, Codex, and Gemini CLI.",
   "main": "index.js",
   "files": [