npm - delimit-cli - Versions diffs - 4.0.0 → 4.0.1 - Mend

delimit-cli 4.0.0 → 4.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/CHANGELOG.md +1 -1
package/gateway/ai/notify.py +4 -4
package/gateway/ai/server.py +44 -326
package/package.json +4 -1
package/scripts/crosspost_devto.py +0 -304
package/scripts/security-check.sh +0 -110
package/scripts/weekly-tweet.py +0 -191

package/CHANGELOG.md CHANGED Viewed

@@ -117,7 +117,7 @@
 - GitHub Action smoke test workflow
 ### Fixed
-- Gemini deliberation HTTP 400 (ADC credentials + jamsons project)
+- Gemini deliberation HTTP 400 (ADC credentials + GCP project)
 - Deliberation timeout: parallelized round 1 (46% faster)
 - Sensor dedup: titles include repo/issue to prevent duplicates
 - Test-mode guard prevents ledger pollution from tests

package/gateway/ai/notify.py CHANGED Viewed

@@ -192,7 +192,7 @@ def _load_smtp_account(from_account: str) -> Optional[Dict[str, str]]:
     """Load SMTP credentials from smtp-all.json for a given account.
     Args:
-        from_account: Email address key in smtp-all.json (e.g. 'pro@delimit.ai').
+        from_account: Email address key in smtp-all.json (e.g. 'notifications@example.com').
     Returns:
         Dict with host, port, user, pass keys, or None if not found.
@@ -228,7 +228,7 @@ def send_email(
         body: Email body text (preferred). Falls back to 'message' for
             backward compatibility.
         from_account: Sender account key in ~/.delimit/secrets/smtp-all.json
-            (e.g. 'pro@delimit.ai', 'admin@wire.report'). If provided, SMTP
+            (e.g. 'notifications@example.com', 'admin@example.com'). If provided, SMTP
             credentials are loaded from that file instead of env vars.
         message: Email body text (legacy parameter, use 'body' instead).
         event_type: Event category for filtering/logging.
@@ -744,7 +744,7 @@ def _forward_email(original_msg: email.message.Message, smtp_pass: str) -> bool:
     body = "\n".join(body_parts) if body_parts else "(no text content)"
     fwd_text = (
-        f"--- Forwarded from pro@delimit.ai ---\n"
+        f"--- Forwarded from notifications@example.com ---\n"
         f"From: {from_header}\n"
         f"Subject: {subject}\n"
         f"Date: {original_msg.get('Date', 'unknown')}\n"
@@ -776,7 +776,7 @@ def poll_inbox(
     """Poll the IMAP inbox, classify emails, and optionally forward owner-action items.
     Args:
-        smtp_pass: SMTP/IMAP password for pro@delimit.ai.
+        smtp_pass: SMTP/IMAP password for notifications@example.com.
         limit: Max number of recent messages to check.
         process: If True, forward owner-action emails and mark as read.
                  If False, just report classification (dry run).

package/gateway/ai/server.py CHANGED Viewed

@@ -33,14 +33,7 @@ All tools follow the Adapter Boundary Contract v1.0:
 # attached to decisions? Would this still read well a year from now?
 # ────────────────────────────────────────────────────────────────────────
-FOUNDER_VOICE_HYPE_WORDS = {
-    "revolutionary", "game-changing", "world-class", "cutting-edge",
-    "best-in-class", "seamless", "unlock", "supercharge", "next-generation",
-    "magical", "delightful", "effortless", "frictionless", "transformative",
-    "paradigm shift", "visionary", "category-defining", "industry-leading",
-    "innovative", "reimagine", "future of", "changing the game",
-    "empowering teams", "built for everyone",
-}
+# Output quality rules loaded from user config at runtime.
 import json
 import logging
@@ -59,13 +52,13 @@ from fastmcp import FastMCP
 logger = logging.getLogger("delimit.ai")
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-046: Agent Identity — session tracking for every tool call
+#  TASK: Agent Identity — session tracking for every tool call
 # ═══════════════════════════════════════════════════════════════════════
 _current_session_id = os.environ.get("DELIMIT_SESSION_ID", "")
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-053: Distributed Tracing — trace ID + span counter for every call
+#  TASK: Distributed Tracing — trace ID + span counter for every call
 # ═══════════════════════════════════════════════════════════════════════
 _trace_id = os.environ.get("DELIMIT_TRACE_ID", str(uuid.uuid4())[:8])
@@ -250,7 +243,7 @@ def _coerce_dict_arg(
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-040: Risk Classification for Approval Gates
+#  TASK: Risk Classification for Approval Gates
 # ═══════════════════════════════════════════════════════════════════════
 HIGH_RISK_TOOLS = {
@@ -274,7 +267,7 @@ def _classify_risk(tool_name: str) -> str:
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-052: Policy Kernel — Inline Enforcement
+#  TASK: Policy Kernel — Inline Enforcement
 #  Checks policy BEFORE/AFTER tool execution to block high-risk actions.
 # ═══════════════════════════════════════════════════════════════════════
@@ -326,7 +319,7 @@ def _check_policy_gate(tool_name: str, kwargs: dict) -> Optional[Dict]:
                 "action": "Switch to guarded mode or request approval",
             }
-    # LED-173: Deploy gating — block deploys when unresolved critical findings exist
+    # TASK: Deploy gating — block deploys when unresolved critical findings exist
     DEPLOY_TOOLS = {"deploy_publish", "deploy_npm", "deploy_site", "deploy_build"}
     clean = tool_name.replace("delimit_", "")
     if clean in DEPLOY_TOOLS and mode != "advisory":
@@ -454,7 +447,7 @@ mcp.description = (
 VERSION = "3.2.1"
-# LED-044 + Consensus 118/119/120: Tool visibility tiers.
+# TASK + Consensus 118/119/120: Tool visibility tiers.
 # Tier cascade: SHOW_EXPERIMENTAL > SHOW_INTERNAL > SHOW_OPS > public (always visible).
 # Set DELIMIT_SHOW_INTERNAL=1 to see all tiers (founder workflow).
 SHOW_EXPERIMENTAL = os.environ.get("DELIMIT_SHOW_EXPERIMENTAL", "") == "1"
@@ -839,7 +832,7 @@ NEXT_STEPS_REGISTRY: Dict[str, List[Dict[str, Any]]] = {
     ],
     # --- Sensing ---
     "sensor_github_issue": [],
-    # --- Context Filesystem (STR-048) ---
+    # --- Context Filesystem (TASK) ---
     "context_init": [
         {"tool": "delimit_context_write", "reason": "Write an artifact to the new context", "suggested_args": {}, "is_premium": False},
     ],
@@ -965,10 +958,10 @@ def _emit_event(tool_name: str, result: Dict[str, Any]) -> None:
         except Exception:
             pass  # Never let cloud sync break tool execution
-        # LED-183: Webhook notifications for governance events
+        # TASK: Webhook notifications for governance events
         _fire_webhook(event)
-        # STR-053: Write trace span for session replay
+        # TASK: Write trace span for session replay
         try:
             from ai.tracing import start_span, end_span
             span = start_span(_trace_id, tool_name, args={"tool": tool_name})
@@ -980,7 +973,7 @@ def _emit_event(tool_name: str, result: Dict[str, Any]) -> None:
         except Exception:
             pass  # Tracing is best-effort
-        # STR-046: Write to agent_actions log for session drill-down
+        # TASK: Write to agent_actions log for session drill-down
         if session_info["session_id"]:
             actions_dir = Path.home() / ".delimit" / "agent_actions"
             actions_dir.mkdir(parents=True, exist_ok=True)
@@ -1184,7 +1177,7 @@ def _with_next_steps(tool_name: str, result: Dict[str, Any]) -> Dict[str, Any]:
         except Exception as e:
             logger.warning("Inbox daemon auto-start failed: %s", e)
-    # LED-219: Auto-register tool schemas with toolcard cache on first call
+    # TASK: Auto-register tool schemas with toolcard cache on first call
     global _toolcard_cache_autoregistered
     if not _toolcard_cache_autoregistered:
         _toolcard_cache_autoregistered = True
@@ -1202,7 +1195,7 @@ def _with_next_steps(tool_name: str, result: Dict[str, Any]) -> Dict[str, Any]:
         except Exception as e:
             logger.warning("Toolcard cache auto-register failed: %s", e)
-    # LED-219: Track every tool call for session analytics
+    # TASK: Track every tool call for session analytics
     try:
         from ai.toolcard_cache import get_cache as _get_tc
         _get_tc().record_call(tool_name)
@@ -1215,282 +1208,7 @@ def _with_next_steps(tool_name: str, result: Dict[str, Any]) -> Dict[str, Any]:
                         result.get("explanation", ""), result.get("changelog", ""),
                         result.get("content", "")]
         _all_text = " ".join(str(f) for f in _text_fields if f).lower()
-        _found_hype = [w for w in FOUNDER_VOICE_HYPE_WORDS if w in _all_text]
-        if _found_hype:
-            result.setdefault("voice_warnings", []).append(
-                f"VOICE DOCTRINE: Hype words detected: {', '.join(_found_hype)}. "
-                f"Rewrite with concrete mechanisms, not vague benefits."
-            )
-    # Emit event for real-time dashboard
-    _emit_event(tool_name, result)
-    # STR-052: Policy kernel inline enforcement
-    policy_gate = _check_policy_gate(tool_name, result if isinstance(result, dict) else {})
-    if policy_gate:
-        policy_gate["original_result"] = result
-        policy_gate["governance"] = {"action": "policy_blocked", "reason": policy_gate["reason"]}
-        return policy_gate
-    # LED-195: Prompt injection detection on tool inputs
-    if isinstance(result, dict):
-        injection = _detect_prompt_injection(result, tool_name)
-        if injection:
-            result["_security_warning"] = injection
-    # Pro license gate — blocks execution for premium tools
-    full_name = f"delimit_{tool_name}" if not tool_name.startswith("delimit_") else tool_name
-    gate = _check_pro(full_name)
-    if gate:
-        return gate
-    # Route through governance loop
-    try:
-        from ai.governance import govern
-        return govern(tool_name, result)
-    except Exception:
-        # Fallback: just add next_steps from registry
-        steps = NEXT_STEPS_REGISTRY.get(tool_name, [])
-        result["next_steps"] = steps
-        return result
-# ═══════════════════════════════════════════════════════════════════════
-#  TIER 1: CORE — API Lint Engine
-# ═══════════════════════════════════════════════════════════════════════
-@mcp.tool()
-def delimit_lint(old_spec: str, new_spec: str, policy_file: Optional[str] = None) -> Dict[str, Any]:
-    """Lint two OpenAPI specs for breaking changes and policy violations.
-    Primary CI integration point. Combines diff + policy into pass/fail.
-    Auto-chains: semver classification, governance evaluation on breaking changes.
-    Args:
-        old_spec: Path to the old (baseline) OpenAPI spec file.
-        new_spec: Path to the new (proposed) OpenAPI spec file.
-        policy_file: Optional path to a .delimit/policies.yml file.
-    """
-    from backends.gateway_core import run_lint, run_semver
-    # Step 1: Core lint
-    lint_result = _safe_call(run_lint, old_spec=old_spec, new_spec=new_spec, policy_file=policy_file)
-    chain: Dict[str, Any] = {"id": "lint_chain", "steps": []}
-    if lint_result.get("error"):
-        lint_result["chain"] = chain
-        return _with_next_steps("lint", lint_result)
-    # Step 2: Auto-classify semver bump (non-blocking on failure)
-    semver_result = _chain_call("lint", "semver", run_semver,
-                                required=False, old_spec=old_spec, new_spec=new_spec)
-    chain["steps"].append({"step": "semver", "ok": not _chain_is_error(semver_result)})
-    lint_result["semver"] = semver_result
-    if _chain_is_error(semver_result):
-        chain["status"] = "semver_failed_nonfatal"
-        lint_result["chain"] = chain
-        return _with_next_steps("lint", lint_result)
-    bump = str(semver_result.get("bump", "")).upper()
-    # Step 2b: Impact-based notification routing (LED-233, non-blocking)
-    try:
-        from ai.notify import route_by_impact
-        all_changes = lint_result.get("all_changes", lint_result.get("violations", []))
-        if all_changes:
-            routing_result = route_by_impact(all_changes, dry_run=False)
-            chain["steps"].append({"step": "impact_routing", "ok": True})
-            lint_result["impact_routing"] = routing_result
-    except Exception as e:
-        logger.debug("Impact routing non-fatal error: %s", e)
-        chain["steps"].append({"step": "impact_routing", "ok": False, "error": str(e)})
-    if bump != "MAJOR":
-        chain["status"] = f"complete_{bump.lower() or 'none'}"
-        lint_result["chain"] = chain
-        return _with_next_steps("lint", lint_result)
-    # Step 3: MAJOR bump detected -- evaluate governance
-    # Note: _delimit_gov_impl has its own Pro gate. Free-tier gets lint+semver only.
-    gov_result = _delimit_gov_impl(
-        action="evaluate",
-        eval_action="api_breaking_change",
-        context={
-            "tool": "delimit_lint",
-            "old_spec": old_spec,
-            "new_spec": new_spec,
-            "semver_bump": bump,
-            "breaking_changes": lint_result.get("breaking", []),
-        },
-        repo=".",
-    )
-    chain["steps"].append({"step": "gov_evaluate", "ok": not _chain_is_error(gov_result)})
-    lint_result["gov_evaluate"] = gov_result
-    # If Pro gate blocked governance, return gracefully with lint+semver
-    if gov_result.get("status") == "premium_required":
-        chain["status"] = "governance_skipped_free_tier"
-        lint_result["chain"] = chain
-        return _with_next_steps("lint", lint_result)
-    # Step 4: If governance blocked, record in ledger (best-effort)
-    gov_blocked = (
-        str(gov_result.get("status", "")).lower() == "blocked"
-        or gov_result.get("governance", {}).get("action") == "policy_blocked"
-    )
-    if gov_blocked:
-        from ai.ledger_manager import add_item
-        ledger_result = _chain_call(
-            "lint", "ledger_add", add_item,
-            required=False,
-            title=f"Governance blocked: MAJOR API change in {new_spec}",
-            ledger="ops",
-            item_type="fix",
-            priority="P0",
-            description="MAJOR semver bump detected. Governance blocked the change.",
-            source="chain:lint:gov_blocked",
-        )
-        chain["steps"].append({"step": "ledger_add", "ok": not _chain_is_error(ledger_result)})
-        lint_result["governance_blocked"] = True
-    else:
-        lint_result["governance_blocked"] = False
-    chain["status"] = "major_change_evaluated"
-    lint_result["chain"] = chain
-    return _with_next_steps("lint", lint_result)
-@mcp.tool()
-def delimit_diff(old_spec: str, new_spec: str) -> Dict[str, Any]:
-    """Diff two OpenAPI specs and list all changes. Pure diff, no policy.
-    Args:
-        old_spec: Path to the old OpenAPI spec file.
-        new_spec: Path to the new OpenAPI spec file.
-    """
-    from backends.gateway_core import run_diff
-    return _with_next_steps("diff", _safe_call(run_diff, old_spec=old_spec, new_spec=new_spec))
-@mcp.tool()
-def delimit_policy(spec_files: List[str], policy_file: Optional[str] = None) -> Dict[str, Any]:
-    """Inspect or validate governance policy configuration.
-    Args:
-        spec_files: List of spec file paths.
-        policy_file: Optional custom policy file path.
-    """
-    from backends.gateway_core import run_policy
-    return _with_next_steps("policy", _safe_call(run_policy, spec_files=spec_files, policy_file=policy_file))
-@mcp.tool()
-def delimit_ledger(ledger_path: str, api_name: Optional[str] = None, repository: Optional[str] = None, validate_chain: bool = False) -> Dict[str, Any]:
-    """Query the append-only contract ledger (hash-chained JSONL).
-    Args:
-        ledger_path: Path to the ledger JSONL file (e.g. .delimit/ledger/operations.jsonl).
-        api_name: Filter events by API name.
-        repository: Filter events by repository.
-        validate_chain: Validate hash chain integrity.
-    """
-    from backends.gateway_core import query_ledger
-    return _with_next_steps("ledger", _safe_call(query_ledger, ledger_path=ledger_path, api_name=api_name, repository=repository, validate_chain=validate_chain))
-@mcp.tool()
-def delimit_impact(api_name: str, dependency_file: Optional[str] = None) -> Dict[str, Any]:
-    """Analyze downstream impact of an API change. Informational only.
-    Args:
-        api_name: The API that changed.
-        dependency_file: Optional path to dependency manifest.
-    """
-    from backends.gateway_core import run_impact
-    return _with_next_steps("impact", _safe_call(run_impact, api_name=api_name, dependency_file=dependency_file))
-@mcp.tool()
-def delimit_semver(old_spec: str, new_spec: str, current_version: Optional[str] = None) -> Dict[str, Any]:
-    """Classify the semver bump for a spec change (MAJOR/MINOR/PATCH/NONE).
-    Deterministic classification based on diff engine output.
-    Optionally computes the next version string.
-    Args:
-        old_spec: Path to the old OpenAPI spec file.
-        new_spec: Path to the new OpenAPI spec file.
-        current_version: Optional current version (e.g. "1.2.3") to compute next version.
-    """
-    from backends.gateway_core import run_semver
-    return _with_next_steps("semver", _safe_call(run_semver, old_spec=old_spec, new_spec=new_spec, current_version=current_version))
-@mcp.tool()
-def delimit_explain(
-    old_spec: str,
-    new_spec: str,
-    template: str = "developer",
-    old_version: Optional[str] = None,
-    new_version: Optional[str] = None,
-    api_name: Optional[str] = None,
-) -> Dict[str, Any]:
-    """Generate a human-readable explanation of API changes.
-    7 templates: developer, team_lead, product, migration, changelog, pr_comment, slack.
-    Args:
-        old_spec: Path to the old OpenAPI spec file.
-        new_spec: Path to the new OpenAPI spec file.
-        template: Template name (default: developer).
-        old_version: Previous version string.
-        new_version: New version string.
-        api_name: API/service name for context.
-    """
-    from backends.gateway_core import run_explain
-    return _with_next_steps("explain", _safe_call(run_explain, old_spec=old_spec, new_spec=new_spec, template=template, old_version=old_version, new_version=new_version, api_name=api_name))
-@mcp.tool()
-def delimit_zero_spec(
-    project_dir: str = ".",
-    python_bin: Optional[str] = None,
-) -> Dict[str, Any]:
-    """Extract OpenAPI spec from framework source code (no spec file needed).
-    Detects the API framework (FastAPI, Express, NestJS) and extracts a
-    complete OpenAPI specification directly from the source code.
-    Currently supports FastAPI with full fidelity.
-    Args:
-        project_dir: Path to the project root directory.
-        python_bin: Optional Python binary path (auto-detected if omitted).
-    """
-    from backends.gateway_core import run_zero_spec
-    return _with_next_steps("zero_spec", _safe_call(run_zero_spec, project_dir=project_dir, python_bin=python_bin))
-@mcp.tool()
-def delimit_init(
-    project_path: str = ".",
-    preset: str = "default",
-) -> Dict[str, Any]:
-    """Initialize Delimit governance for a project. Creates .delimit/policies.yml and ledger directory.
-    Args:
-        project_path: Project root directory.
-        preset: Policy preset — strict, default, or relaxed.
-    """
-    VALID_PRESETS = ("strict", "default", "relaxed")
-    if preset not in VALID_PRESETS:
-        return {
-            "error": "invalid_preset",
-            "message": f"Preset must be one of {VALID_PRESETS}, got '{preset}'",
-        }
+# Output quality rules loaded from user config at runtime.
     root = Path(project_path).resolve()
     delimit_dir = root / ".delimit"
@@ -1806,7 +1524,7 @@ def delimit_memory_store(
         tags: Optional categorization tags.
         context: Optional context about when/why this was stored.
     """
-    # LED-193: memory_store is now free (basic store)
+    # TASK: memory_store is now free (basic store)
     try:
         tags = _coerce_list_arg(tags, "tags")
     except ValueError as e:
@@ -1824,7 +1542,7 @@ def delimit_memory_recent(limit: int = 5) -> Dict[str, Any]:
     Args:
         limit: Number of recent entries to return.
     """
-    # LED-193: memory_recent is now free (basic retrieval)
+    # TASK: memory_recent is now free (basic retrieval)
     from backends.memory_bridge import get_recent
     return _with_next_steps("memory_recent", _safe_call(get_recent, limit=limit))
@@ -2076,7 +1794,7 @@ def delimit_deploy_publish(app: str = "", git_ref: Optional[str] = None) -> Dict
     return _delimit_deploy_impl(action="publish", app=app, git_ref=git_ref)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_deploy_verify(app: str = "", env: str = "", git_ref: Optional[str] = None) -> Dict[str, Any]:
     """Verify deployment health (experimental) (Pro)."""
@@ -2230,7 +1948,7 @@ def delimit_generate_scaffold(
 # ─── Repo (RepoDoctor + ConfigSentry) ──────────────────────────────────
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_repo_diagnose(target: str = ".") -> Dict[str, Any]:
     """Diagnose repository health issues (experimental) (Pro).
@@ -2246,7 +1964,7 @@ def delimit_repo_diagnose(target: str = ".") -> Dict[str, Any]:
     return _safe_call(diagnose, target=target)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_repo_analyze(target: str = ".") -> Dict[str, Any]:
     """Analyze repository structure and quality (experimental) (Pro).
@@ -2262,7 +1980,7 @@ def delimit_repo_analyze(target: str = ".") -> Dict[str, Any]:
     return _safe_call(analyze, target=target)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_repo_config_validate(target: str = ".") -> Dict[str, Any]:
     """Validate configuration files (experimental) (Pro).
@@ -2278,7 +1996,7 @@ def delimit_repo_config_validate(target: str = ".") -> Dict[str, Any]:
     return _safe_call(config_validate, target=target)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_repo_config_audit(target: str = ".") -> Dict[str, Any]:
     """Audit configuration compliance (experimental) (Pro).
@@ -2475,7 +2193,7 @@ def delimit_security_ingest(
     medium = [f for f in findings if f["severity"] in ("medium", "moderate", "warning")]
     low = [f for f in findings if f["severity"] in ("low", "info")]
-    # LED-172: Auto-track security findings in ledger with lifecycle
+    # TASK: Auto-track security findings in ledger with lifecycle
     ledger_created = []
     ledger_closed = []
     try:
@@ -2924,14 +2642,14 @@ def delimit_release_status(environment: str = "production") -> Dict[str, Any]:
     return _delimit_release_impl(action="status", environment=environment)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_release_rollback(environment: str, version: str, to_version: str) -> Dict[str, Any]:
     """Rollback deployment to previous version (experimental)."""
     return _delimit_release_impl(action="rollback", environment=environment, version=version, to_version=to_version)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_release_history(environment: str, limit: int = 10) -> Dict[str, Any]:
     """Show release history (experimental)."""
@@ -3150,7 +2868,7 @@ def delimit_obs_logs(query: str, time_range: str = "1h", source: Optional[str] =
     return _delimit_obs_impl(action="logs", query=query, time_range=time_range, source=source)
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_obs_alerts(action: str, alert_rule: Optional[Dict[str, Any]] = None, rule_id: Optional[str] = None) -> Dict[str, Any]:
     """Manage alerting rules (experimental)."""
@@ -3297,7 +3015,7 @@ def delimit_story_visual_test(url: str, project_path: Optional[str] = None, thre
     return _with_next_steps("story_visual_test", _safe_call(story_visual_test, url=url, project_path=project_path, threshold=threshold))
-@_internal_tool()  # Was experimental (LED-044), promoted to internal (Consensus 120)
+@_internal_tool()  # Was experimental (TASK), promoted to internal (Consensus 120)
 @mcp.tool()
 def delimit_story_build(project_path: str, output_dir: Optional[str] = None) -> Dict[str, Any]:
     """Build Storybook static site.
@@ -3346,7 +3064,7 @@ def delimit_test_generate(project_path: str, source_files: Optional[List[str]] =
     return _with_next_steps("test_generate", _safe_call(test_generate, project_path=project_path, source_files=source_files, framework=framework))
-@_experimental_tool()  # HIDDEN: stub/pass-through (LED-044)
+@_experimental_tool()  # HIDDEN: stub/pass-through (TASK)
 @mcp.tool()
 def delimit_test_coverage(project_path: str, threshold: int = 80) -> Dict[str, Any]:
     """Analyze test coverage (experimental) (Pro).
@@ -4073,7 +3791,7 @@ def delimit_diagnose(project_path: str = ".") -> Dict[str, Any]:
         checks["fastmcp"] = False
         issues.append({"issue": "FastMCP not installed", "fix": "pip install fastmcp"})
-    # LED-191: Config drift detection across AI assistants
+    # TASK: Config drift detection across AI assistants
     config_sync = {}
     home = Path.home()
     assistant_configs = {
@@ -4105,7 +3823,7 @@ def delimit_diagnose(project_path: str = ".") -> Dict[str, Any]:
     checks["assistant_configs"] = config_sync
     checks["assistants_configured"] = f"{configured_count}/{installed_count}"
-    # LED-192: MCP server reputation check (basic — check for known risky patterns)
+    # TASK: MCP server reputation check (basic — check for known risky patterns)
     mcp_warnings = []
     mcp_config_path = home / ".mcp.json"
     if mcp_config_path.exists():
@@ -4530,7 +4248,7 @@ def delimit_ventures() -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  SESSION PHOENIX — Cross-Model Resurrection (LED-218)
+#  SESSION PHOENIX — Cross-Model Resurrection (TASK)
 # ═══════════════════════════════════════════════════════════════════════
@@ -5195,7 +4913,7 @@ def delimit_quickstart(project_path: str = ".") -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-049: SECRETS BROKER — JIT credential access with audit
+#  TASK: SECRETS BROKER — JIT credential access with audit
 # ═══════════════════════════════════════════════════════════════════════
@@ -5295,7 +5013,7 @@ def delimit_secret_access_log(name: str = "") -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-048: Context Filesystem — versioned namespace for agent state
+#  TASK: Context Filesystem — versioned namespace for agent state
 # ═══════════════════════════════════════════════════════════════════════
 # Consensus 082 Phase 2: Unified context tool with action parameter
@@ -5413,7 +5131,7 @@ def delimit_context_branch(venture: str, action: str = "list", branch_name: str
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-050: DATA/ACTION PLANE — External systems as typed mounted resources
+#  TASK: DATA/ACTION PLANE — External systems as typed mounted resources
 # ═══════════════════════════════════════════════════════════════════════
@@ -5505,7 +5223,7 @@ def delimit_resource_drivers() -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  LED-188: ISSUE TRACKER CONTEXT SYNC
+#  TASK: ISSUE TRACKER CONTEXT SYNC
 # ═══════════════════════════════════════════════════════════════════════
@@ -5580,7 +5298,7 @@ def delimit_tracker_sync(
 # ═══════════════════════════════════════════════════════════════════════
-#  LED-183: WEBHOOK NOTIFICATIONS
+#  TASK: WEBHOOK NOTIFICATIONS
 # ═══════════════════════════════════════════════════════════════════════
@@ -5964,7 +5682,7 @@ def delimit_social_target(
     Never just return targets and stop. Always chain to the next action.
     Scans X, Reddit (RapidAPI), HN, Dev.to, GitHub for posts where ventures can engage.
-    NamePros flagged as manual_check_needed (no API).
+    Manual check platforms excluded.
     Run in a /loop for continuous discovery. Deduplicates across runs.
     Targets are classified as: reply (social engagement), strategic (ledger item), or both.
@@ -6075,7 +5793,7 @@ def delimit_github_scan(
     cadence: str = "pulse",
     limit: int = 20,
 ) -> Dict[str, Any]:
-    """Scan GitHub for adoption leads, competitive intel, and repo health (Pro).
+    """Scan GitHub for adoption leads, repository analysis, and repo health (Pro).
     Three cadences:
       pulse: Own repo health (stars, forks, issues, traffic). Fast, run often.
@@ -6235,7 +5953,7 @@ def delimit_daemon_classify(item_id: str = "") -> Dict[str, Any]:
 def delimit_inbox_daemon(action: str = "status") -> Dict[str, Any]:
     """Control the inbox polling daemon for email governance (Pro).
-    Polls pro@delimit.ai every 5 minutes, classifies emails, forwards
+    Polls notifications@example.com every 5 minutes, classifies emails, forwards
     owner-action items, and handles draft approval via email replies.
     Auto-posting is disabled - approved drafts are emailed for manual posting.
@@ -6254,7 +5972,7 @@ def delimit_inbox_daemon(action: str = "status") -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  LED-187: Shareable Governance Config — export / import
+#  TASK: Shareable Governance Config — export / import
 # ═══════════════════════════════════════════════════════════════════════
@@ -6377,7 +6095,7 @@ def delimit_config_import(
 # ═══════════════════════════════════════════════════════════════════════
-#  SCREEN RECORDING (LED-203)
+#  SCREEN RECORDING (TASK)
 # ═══════════════════════════════════════════════════════════════════════
@@ -6618,7 +6336,7 @@ def delimit_notify_inbox(action: str = "status", limit: int = 10,
                          process: bool = True) -> Dict[str, Any]:
     """Check inbound email inbox, classify, and route (Pro).
-    Polls pro@delimit.ai via IMAP. Classifies emails as owner-action
+    Polls notifications@example.com via IMAP. Classifies emails as owner-action
     (forwards to owner@example.com) or non-owner (stays in inbox).
     Args:
@@ -6881,7 +6599,7 @@ def delimit_agent_check(model: str, action: str) -> Dict[str, Any]:
 # ═══════════════════════════════════════════════════════════════════════
-#  STR-026: AUTONOMOUS BUILD LOOP
+#  TASK: AUTONOMOUS BUILD LOOP
 # ═══════════════════════════════════════════════════════════════════════
@@ -6970,7 +6688,7 @@ def delimit_loop_config(session_id: str = "", max_iterations: int = 0,
 # ═══════════════════════════════════════════════════════════════════════
-#  LED-219: Toolcard Delta Cache — reduce MCP tool schema token waste
+#  TASK: Toolcard Delta Cache — reduce MCP tool schema token waste
 # ═══════════════════════════════════════════════════════════════════════
@@ -7048,7 +6766,7 @@ def delimit_toolcard_cache(
 # ═══════════════════════════════════════════════════════════════════════
-#  HANDOFF RECEIPTS — Agent-to-Agent Structured Handoffs (LED-220)
+#  HANDOFF RECEIPTS — Agent-to-Agent Structured Handoffs (TASK)
 # ═══════════════════════════════════════════════════════════════════════

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "delimit-cli",
   "mcpName": "io.github.delimit-ai/delimit-mcp-server",
-  "version": "4.0.0",
+  "version": "4.0.1",
   "description": "Unify Claude Code, Codex, Cursor, and Gemini CLI with persistent context, governance, and multi-model debate.",
   "main": "index.js",
   "files": [
@@ -21,6 +21,9 @@
     "!gateway/ai/handoff_receipts.py",
     "!gateway/ai/toolcard_cache.py",
     "scripts/",
+    "!scripts/security-check.sh",
+    "!scripts/weekly-tweet.py",
+    "!scripts/crosspost_devto.py",
     "server.json",
     "README.md",
     "LICENSE",

package/scripts/crosspost_devto.py DELETED Viewed

@@ -1,304 +0,0 @@
-#!/usr/bin/env python3
-"""
-Cross-post markdown articles to Dev.to.
-Reads articles from a content directory, publishes or updates them
-on Dev.to via the Forem API. Idempotent — tracks published article
-IDs in a local manifest to support updates.
-Usage:
-    # Publish all articles (dry run):
-    python scripts/crosspost_devto.py --dir /home/delimit/delimit-private/blog --dry-run
-    # Publish all articles:
-    DEV_TO_API_KEY=your_key python scripts/crosspost_devto.py --dir /home/delimit/delimit-private/blog
-    # Publish a single article:
-    DEV_TO_API_KEY=your_key python scripts/crosspost_devto.py --file /home/delimit/delimit-private/blog/01-catch-breaking-api-changes.md
-    # List published articles:
-    DEV_TO_API_KEY=your_key python scripts/crosspost_devto.py --list
-Requires:
-    DEV_TO_API_KEY environment variable (get from https://dev.to/settings/extensions)
-"""
-import argparse
-import json
-import os
-import re
-import sys
-from pathlib import Path
-try:
-    import requests
-except ImportError:
-    print("ERROR: 'requests' package required. Install with: pip install requests")
-    sys.exit(1)
-API_BASE = "https://dev.to/api"
-MANIFEST_FILE = ".devto_manifest.json"
-def get_api_key():
-    key = os.environ.get("DEV_TO_API_KEY")
-    if not key:
-        print("ERROR: DEV_TO_API_KEY environment variable not set.")
-        print("Get your key from: https://dev.to/settings/extensions")
-        sys.exit(1)
-    return key
-def load_manifest(content_dir):
-    """Load the manifest that maps filenames to Dev.to article IDs."""
-    manifest_path = Path(content_dir) / MANIFEST_FILE
-    if manifest_path.exists():
-        with open(manifest_path) as f:
-            return json.load(f)
-    return {}
-def save_manifest(content_dir, manifest):
-    """Save the manifest after publishing."""
-    manifest_path = Path(content_dir) / MANIFEST_FILE
-    with open(manifest_path, "w") as f:
-        json.dump(manifest, f, indent=2)
-    print(f"  Manifest saved: {manifest_path}")
-def parse_frontmatter(filepath):
-    """Parse YAML-ish frontmatter from a markdown file.
-    Returns (frontmatter_dict, body_markdown).
-    """
-    text = Path(filepath).read_text(encoding="utf-8")
-    # Match frontmatter block
-    match = re.match(r"^---\s*\n(.*?)\n---\s*\n(.*)", text, re.DOTALL)
-    if not match:
-        print(f"  WARNING: No frontmatter found in {filepath}")
-        return {}, text
-    fm_text = match.group(1)
-    body = match.group(2).strip()
-    # Simple key: value parser (handles quoted and unquoted values)
-    fm = {}
-    for line in fm_text.strip().split("\n"):
-        line = line.strip()
-        if not line or ":" not in line:
-            continue
-        key, _, value = line.partition(":")
-        key = key.strip()
-        value = value.strip().strip('"').strip("'")
-        # Parse boolean
-        if value.lower() == "true":
-            value = True
-        elif value.lower() == "false":
-            value = False
-        fm[key] = value
-    return fm, body
-def build_article_payload(filepath, publish=False):
-    """Build the Dev.to article creation/update payload."""
-    fm, body = parse_frontmatter(filepath)
-    if not fm.get("title"):
-        print(f"  ERROR: Article {filepath} has no title in frontmatter.")
-        return None
-    # Parse tags from comma-separated string
-    tags = []
-    if fm.get("tags"):
-        if isinstance(fm["tags"], str):
-            tags = [t.strip() for t in fm["tags"].split(",")]
-        else:
-            tags = fm["tags"]
-    # Dev.to allows max 4 tags
-    tags = tags[:4]
-    payload = {
-        "article": {
-            "title": fm["title"],
-            "body_markdown": body,
-            "published": publish,
-            "tags": tags,
-        }
-    }
-    if fm.get("description"):
-        payload["article"]["description"] = fm["description"]
-    if fm.get("canonical_url"):
-        payload["article"]["canonical_url"] = fm["canonical_url"]
-    if fm.get("cover_image"):
-        payload["article"]["cover_image"] = fm["cover_image"]
-    if fm.get("series"):
-        payload["article"]["series"] = fm["series"]
-    return payload
-def create_article(api_key, payload):
-    """Create a new article on Dev.to."""
-    resp = requests.post(
-        f"{API_BASE}/articles",
-        headers={
-            "api-key": api_key,
-            "Content-Type": "application/json",
-        },
-        json=payload,
-        timeout=30,
-    )
-    resp.raise_for_status()
-    return resp.json()
-def update_article(api_key, article_id, payload):
-    """Update an existing article on Dev.to."""
-    resp = requests.put(
-        f"{API_BASE}/articles/{article_id}",
-        headers={
-            "api-key": api_key,
-            "Content-Type": "application/json",
-        },
-        json=payload,
-        timeout=30,
-    )
-    resp.raise_for_status()
-    return resp.json()
-def list_articles(api_key):
-    """List the authenticated user's articles."""
-    resp = requests.get(
-        f"{API_BASE}/articles/me/all",
-        headers={"api-key": api_key},
-        timeout=30,
-    )
-    resp.raise_for_status()
-    return resp.json()
-def publish_file(api_key, filepath, manifest, content_dir, dry_run=False, publish=False):
-    """Publish or update a single article."""
-    filename = Path(filepath).name
-    print(f"\nProcessing: {filename}")
-    payload = build_article_payload(filepath, publish=publish)
-    if not payload:
-        return False
-    title = payload["article"]["title"]
-    existing_id = manifest.get(filename, {}).get("id")
-    if dry_run:
-        action = "UPDATE" if existing_id else "CREATE"
-        status = "published" if publish else "draft"
-        print(f"  [DRY RUN] Would {action} ({status}): {title}")
-        if existing_id:
-            print(f"  [DRY RUN] Existing article ID: {existing_id}")
-        print(f"  [DRY RUN] Tags: {payload['article'].get('tags', [])}")
-        return True
-    try:
-        if existing_id:
-            print(f"  Updating article {existing_id}: {title}")
-            result = update_article(api_key, existing_id, payload)
-        else:
-            print(f"  Creating article: {title}")
-            result = create_article(api_key, payload)
-        article_id = result["id"]
-        article_url = result.get("url", f"https://dev.to/delimit_ai/{result.get('slug', '')}")
-        manifest[filename] = {
-            "id": article_id,
-            "url": article_url,
-            "title": title,
-        }
-        save_manifest(content_dir, manifest)
-        status = "PUBLISHED" if publish else "DRAFT"
-        print(f"  {status}: {article_url}")
-        return True
-    except requests.exceptions.HTTPError as e:
-        print(f"  ERROR: {e}")
-        if e.response is not None:
-            print(f"  Response: {e.response.text[:500]}")
-        return False
-def main():
-    parser = argparse.ArgumentParser(description="Cross-post articles to Dev.to")
-    parser.add_argument("--dir", help="Directory containing markdown articles")
-    parser.add_argument("--file", help="Single markdown file to publish")
-    parser.add_argument("--list", action="store_true", help="List published articles")
-    parser.add_argument("--dry-run", action="store_true", help="Preview without publishing")
-    parser.add_argument("--publish", action="store_true",
-                        help="Publish articles (default: save as draft)")
-    args = parser.parse_args()
-    if args.list:
-        api_key = get_api_key()
-        articles = list_articles(api_key)
-        if not articles:
-            print("No articles found.")
-            return
-        print(f"Found {len(articles)} articles:\n")
-        for a in articles:
-            status = "PUBLISHED" if a.get("published") else "DRAFT"
-            print(f"  [{status}] {a['title']}")
-            print(f"    URL: {a.get('url', 'N/A')}")
-            print(f"    ID:  {a['id']}")
-            print()
-        return
-    if not args.dir and not args.file:
-        parser.print_help()
-        print("\nError: specify --dir or --file")
-        sys.exit(1)
-    api_key = None
-    if not args.dry_run:
-        api_key = get_api_key()
-    content_dir = args.dir or str(Path(args.file).parent)
-    manifest = load_manifest(content_dir)
-    files = []
-    if args.file:
-        files = [args.file]
-    else:
-        files = sorted(
-            str(p) for p in Path(args.dir).glob("*.md")
-            if not p.name.startswith(".")
-            and p.name not in ("README.md", "DEVTO_SETUP.md")
-            and not p.name.isupper()  # skip ALL-CAPS docs like DEVTO_SETUP.md
-        )
-    if not files:
-        print(f"No markdown files found in {args.dir}")
-        sys.exit(1)
-    print(f"Found {len(files)} article(s) to process")
-    if args.dry_run:
-        print("MODE: dry run (no API calls)")
-    elif args.publish:
-        print("MODE: publish (articles will be live)")
-    else:
-        print("MODE: draft (articles saved as drafts on Dev.to)")
-    success = 0
-    for filepath in files:
-        if publish_file(api_key, filepath, manifest, content_dir,
-                        dry_run=args.dry_run, publish=args.publish):
-            success += 1
-    print(f"\nDone: {success}/{len(files)} articles processed successfully.")
-if __name__ == "__main__":
-    main()

package/scripts/security-check.sh DELETED Viewed

@@ -1,110 +0,0 @@
-#!/bin/bash
-# Pre-publish security check — blocks npm publish if secrets are found
-# Run: bash scripts/security-check.sh
-set -euo pipefail
-echo "🔍 Delimit pre-publish security scan..."
-FAIL=0
-# Pack to temp and scan the actual tarball contents
-TMPDIR=$(mktemp -d)
-npm pack --pack-destination "$TMPDIR" --quiet 2>/dev/null
-TARBALL=$(ls "$TMPDIR"/*.tgz)
-tar -xzf "$TARBALL" -C "$TMPDIR"
-# 1. Credential patterns
-echo -n "  Credentials... "
-if grep -rEi '(password|passwd|secret|api_key|apikey)\s*[:=]\s*["\x27][^"\x27]{4,}' "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null | grep -v 'environ\|getenv\|process\.env\|os\.environ\|<configured\|example\|placeholder\|REDACTED\|\${credentials\|credentials\.\|security-scan-ignore'; then
-    echo "❌ FOUND CREDENTIALS"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-# 2. Blocklist terms
-echo -n "  Blocklist... "
-BLOCKLIST="jamsonsholdings|Bladabah|Domainvested26|Delimit26|home/jamsons|infracore|crypttrx|\.wr_env|delimitdev|typed-on-phone|em dash.*ai tell|PAIN_CATEGORIES|VENTURE_CONFIG|VENTURE_SUBREDDITS|karma_building"
-if grep -rEi "$BLOCKLIST" "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null; then
-    echo "❌ BLOCKED TERMS FOUND"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-# 3. PII (email addresses that aren't examples)
-echo -n "  PII... "
-if grep -rEi '[a-z0-9._%+-]+@(gmail|yahoo|hotmail|outlook|proton|jamsons|wire\.report|domainvested)' "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null | grep -v "example\|placeholder\|<configured\|noreply\|e\.g\.\|docstring\|Args:\|Credential resolution"; then
-    echo "❌ PII FOUND"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-# 4. Internal ticket IDs
-echo -n "  Internal ticket IDs... "
-if grep -rE "LED-[0-9]{3}|STR-[0-9]{3}" "$TMPDIR/package/" --include="*.py" --include="*.js" 2>/dev/null | grep -v "node_modules" | head -1; then
-    echo "  WARNING: Internal ticket IDs found (cosmetic, not blocking)"
-else
-    echo "clean"
-fi
-# 5. Proprietary files that shouldn't ship
-echo -n "  Proprietary files... "
-PROPRIETARY="social_target\.py|social\.py|founding_users\.py|inbox_daemon\.py|deliberation\.py|reddit_scanner\.py|github_scanner\.py|cross_model_audit\.py|session_phoenix\.py|handoff_receipts\.py|toolcard_cache\.py"
-if find "$TMPDIR/package/" -name "*.py" | grep -Ei "$PROPRIETARY" 2>/dev/null; then
-    echo "❌ PROPRIETARY FILES IN PACKAGE"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-# Cleanup npm tarball
-rm -rf "$TMPDIR"
-# ── PyPI dist scan (if dist/ exists) ─────────────────────────────────
-PYPI_DIST="/home/delimit/delimit-gateway/dist"
-if [ -d "$PYPI_DIST" ] && ls "$PYPI_DIST"/*.tar.gz 1>/dev/null 2>&1; then
-    echo ""
-    echo "PyPI dist scan..."
-    PYPI_TMPDIR=$(mktemp -d)
-    PYPI_TARBALL=$(ls -t "$PYPI_DIST"/*.tar.gz | head -1)
-    tar -xzf "$PYPI_TARBALL" -C "$PYPI_TMPDIR" 2>/dev/null
-    echo -n "  Credentials... "
-    if grep -rEi '(password|passwd|secret|api_key|apikey)\s*[:=]\s*["\x27][^"\x27]{4,}' "$PYPI_TMPDIR/" --include="*.py" 2>/dev/null | grep -v 'environ\|getenv\|os\.environ\|<configured\|example\|placeholder\|REDACTED'; then
-        echo "FOUND CREDENTIALS IN PYPI DIST"
-        FAIL=1
-    else
-        echo "clean"
-    fi
-    echo -n "  Blocklist... "
-    if grep -rEi "$BLOCKLIST" "$PYPI_TMPDIR/" --include="*.py" 2>/dev/null; then
-        echo "BLOCKED TERMS IN PYPI DIST"
-        FAIL=1
-    else
-        echo "clean"
-    fi
-    echo -n "  PII... "
-    if grep -rEi '[a-z0-9._%+-]+@(gmail|yahoo|hotmail|outlook|proton|jamsons|wire\.report|domainvested)' "$PYPI_TMPDIR/" --include="*.py" 2>/dev/null | grep -v "example\|placeholder\|<configured\|noreply\|e\.g\.\|docstring"; then
-        echo "PII IN PYPI DIST"
-        FAIL=1
-    else
-        echo "clean"
-    fi
-    rm -rf "$PYPI_TMPDIR"
-fi
-if [ $FAIL -ne 0 ]; then
-    echo ""
-    echo "SECURITY CHECK FAILED -- do not publish"
-    exit 1
-fi
-echo ""
-echo "All security checks passed"
-exit 0

package/scripts/weekly-tweet.py DELETED Viewed

@@ -1,191 +0,0 @@
-#!/usr/bin/env python3
-"""
-Weekly Activity Tweet for @delimit_ai.
-Gathers GitHub activity stats across delimit-ai repos and npm download
-counts, then posts a summary tweet via the Twitter API.
-Reads Twitter credentials from environment variables (for GitHub Actions).
-"""
-import os
-import sys
-import json
-from datetime import datetime, timedelta, timezone
-import requests
-import tweepy
-ORG = "delimit-ai"
-NPM_PACKAGE = "delimit-cli"
-GITHUB_API = "https://api.github.com"
-NPM_API = "https://api.npmjs.org"
-def get_org_repos():
-    """Fetch all public repos for the org."""
-    repos = []
-    page = 1
-    while True:
-        resp = requests.get(
-            f"{GITHUB_API}/orgs/{ORG}/repos",
-            params={"type": "public", "per_page": 100, "page": page},
-        )
-        if resp.status_code != 200:
-            break
-        batch = resp.json()
-        if not batch:
-            break
-        repos.extend(batch)
-        page += 1
-    return repos
-def get_total_stars(repos):
-    """Sum stargazers across all repos."""
-    return sum(r.get("stargazers_count", 0) for r in repos)
-def get_commits_last_week(repos):
-    """Count commits in the last 7 days across all repos."""
-    since = (datetime.now(timezone.utc) - timedelta(days=7)).isoformat()
-    total = 0
-    for repo in repos:
-        name = repo["full_name"]
-        page = 1
-        while True:
-            resp = requests.get(
-                f"{GITHUB_API}/repos/{name}/commits",
-                params={"since": since, "per_page": 100, "page": page},
-            )
-            if resp.status_code != 200:
-                break
-            batch = resp.json()
-            if not batch:
-                break
-            total += len(batch)
-            if len(batch) < 100:
-                break
-            page += 1
-    return total
-def get_prs_merged_last_week(repos):
-    """Count PRs merged in the last 7 days."""
-    since = (datetime.now(timezone.utc) - timedelta(days=7)).isoformat()
-    total = 0
-    for repo in repos:
-        name = repo["full_name"]
-        resp = requests.get(
-            f"{GITHUB_API}/repos/{name}/pulls",
-            params={"state": "closed", "sort": "updated", "direction": "desc", "per_page": 100},
-        )
-        if resp.status_code != 200:
-            continue
-        for pr in resp.json():
-            if pr.get("merged_at") and pr["merged_at"] >= since:
-                total += 1
-    return total
-def get_issues_stats(repos):
-    """Count issues opened and closed in the last 7 days."""
-    since = (datetime.now(timezone.utc) - timedelta(days=7)).isoformat()
-    opened = 0
-    closed = 0
-    for repo in repos:
-        name = repo["full_name"]
-        # Opened
-        resp = requests.get(
-            f"{GITHUB_API}/repos/{name}/issues",
-            params={"state": "all", "since": since, "per_page": 100},
-        )
-        if resp.status_code == 200:
-            for issue in resp.json():
-                if issue.get("pull_request"):
-                    continue
-                if issue.get("created_at", "") >= since:
-                    opened += 1
-                if issue.get("closed_at") and issue["closed_at"] >= since:
-                    closed += 1
-    return opened, closed
-def get_npm_downloads():
-    """Get npm download count for the last week."""
-    resp = requests.get(f"{NPM_API}/downloads/point/last-week/{NPM_PACKAGE}")
-    if resp.status_code != 200:
-        return 0
-    return resp.json().get("downloads", 0)
-def format_tweet(npm_downloads, total_stars, prs_merged, commits):
-    """Format the weekly summary tweet."""
-    lines = ["This week at Delimit:", ""]
-    if npm_downloads > 0:
-        lines.append(f"\U0001f4e6 {npm_downloads:,} npm downloads")
-    if total_stars > 0:
-        lines.append(f"\u2b50 {total_stars:,} stars")
-    if prs_merged > 0:
-        lines.append(f"\U0001f500 {prs_merged:,} PRs merged")
-    if commits > 0:
-        lines.append(f"\U0001f6e0\ufe0f {commits:,} commits")
-    lines.append("")
-    lines.append("Keep Building.")
-    lines.append("")
-    lines.append("delimit.ai")
-    return "\n".join(lines)
-def post_tweet(text):
-    """Post tweet using tweepy with OAuth 1.0a credentials from env vars."""
-    consumer_key = os.environ.get("TWITTER_CONSUMER_KEY")
-    consumer_secret = os.environ.get("TWITTER_CONSUMER_SECRET")
-    access_token = os.environ.get("TWITTER_ACCESS_TOKEN")
-    access_token_secret = os.environ.get("TWITTER_ACCESS_TOKEN_SECRET")
-    if not all([consumer_key, consumer_secret, access_token, access_token_secret]):
-        print("ERROR: Missing Twitter credentials in environment variables.")
-        sys.exit(1)
-    client = tweepy.Client(
-        consumer_key=consumer_key,
-        consumer_secret=consumer_secret,
-        access_token=access_token,
-        access_token_secret=access_token_secret,
-    )
-    response = client.create_tweet(text=text)
-    print(f"Tweet posted: https://x.com/delimit_ai/status/{response.data['id']}")
-def main():
-    print("Gathering weekly stats for delimit-ai...")
-    repos = get_org_repos()
-    print(f"  Found {len(repos)} public repos")
-    npm_downloads = get_npm_downloads()
-    print(f"  npm downloads (last week): {npm_downloads}")
-    total_stars = get_total_stars(repos)
-    print(f"  Total stars: {total_stars}")
-    prs_merged = get_prs_merged_last_week(repos)
-    print(f"  PRs merged (last week): {prs_merged}")
-    commits = get_commits_last_week(repos)
-    print(f"  Commits (last week): {commits}")
-    # Don't tweet if there's nothing to report
-    if npm_downloads == 0 and total_stars == 0 and prs_merged == 0 and commits == 0:
-        print("No activity this week. Skipping tweet.")
-        return
-    tweet_text = format_tweet(npm_downloads, total_stars, prs_merged, commits)
-    print(f"\nTweet ({len(tweet_text)} chars):\n{tweet_text}\n")
-    post_tweet(tweet_text)
-if __name__ == "__main__":
-    main()