delimit-cli 4.5.13 → 4.6.1

package/lib/auth-signout.js

@@ -0,0 +1,169 @@
+// lib/auth-signout.js
+//
+// LED-2106: convenience wrapper around `rm ~/.delimit/auth.json` that ONLY
+// removes the OAuth-related keys written by `delimit signin` (LED-2100) and
+// preserves the legacy bookkeeping keys (`configured`, `timestamp`, `tools`)
+// written by `lib/auth-setup.js`. Wiping the whole file regresses any user
+// who ran `delimit auth` for tool credential bookkeeping.
+//
+// Design notes
+//   - We MERGE-DELETE: read the file, drop the OAuth keys, write the
+//     remainder back. If the post-scrub object has zero keys, we delete
+//     the file entirely (cleanest state — equivalent to never having run
+//     `delimit signin` or `delimit auth`).
+//   - File mode is 0600 (owner-only readable). Write is atomic (tmp +
+//     rename) — same pattern as lib/auth-signin.js.
+//   - If auth.json is missing, malformed, or has no OAuth keys at all,
+//     this is a no-op (returns { changed: false }). The CLI prints
+//     "Not signed in." and exits 0 in that case.
+//
+// OAuth keys removed:
+//   - delimit_token
+//   - access_token
+//   - signed_in_at
+//   - email
+//
+// Returns: { path, changed, deleted, email } so callers can render a
+// consistent success message.
+
+const fs = require('fs');
+const path = require('path');
+const { delimitHome } = require('./delimit-home');
+
+const AUTH_FILE_BASENAME = 'auth.json';
+
+// The OAuth-related keys that `delimit signin` writes. Sign-out removes
+// EXACTLY these and nothing else. Adding to this list is a behavior
+// change that needs coordinated review (the gateway resolver in
+// ai/deliberation.py::_read_oauth_token reads `delimit_token` /
+// `access_token`).
+const OAUTH_KEYS = Object.freeze([
+    'delimit_token',
+    'access_token',
+    'signed_in_at',
+    'email',
+]);
+
+function authFilePath() {
+    return path.join(delimitHome(), AUTH_FILE_BASENAME);
+}
+
+/**
+ * Read the existing auth.json if present, returning a plain object. Returns
+ * an empty object on any read/parse error (consistent with auth-signin.js).
+ */
+function readExistingAuth(filePath) {
+    if (!fs.existsSync(filePath)) {
+        return {};
+    }
+    try {
+        const raw = fs.readFileSync(filePath, 'utf-8');
+        const parsed = JSON.parse(raw);
+        if (parsed && typeof parsed === 'object' && !Array.isArray(parsed)) {
+            return parsed;
+        }
+        return {};
+    } catch {
+        return {};
+    }
+}
+
+/**
+ * Write `data` to auth.json atomically with mode 0600. Mirrors the pattern
+ * used by lib/auth-signin.js::writeAuthToken.
+ */
+function writeAuthAtomic(filePath, data) {
+    const tmpPath = filePath + '.tmp';
+    fs.writeFileSync(tmpPath, JSON.stringify(data, null, 2), { mode: 0o600 });
+    try {
+        fs.chmodSync(tmpPath, 0o600);
+    } catch {
+        // Non-POSIX filesystems may reject chmod; the file is already gated
+        // by writeFileSync mode, so this is best-effort.
+    }
+    fs.renameSync(tmpPath, filePath);
+}
+
+/**
+ * Remove the OAuth keys from ~/.delimit/auth.json, preserving any other
+ * keys written by `delimit auth` / `lib/auth-setup.js`. If no OAuth keys
+ * are present, this is a no-op. If removing the OAuth keys leaves the
+ * file empty, the file is deleted.
+ *
+ * @param {object} [args]
+ * @param {string} [args.home]  Override DELIMIT_HOME for tests
+ * @returns {{ path: string, changed: boolean, deleted: boolean, email: string }}
+ */
+function removeAuthToken(args) {
+    const opts = args || {};
+    const home = opts.home || delimitHome();
+    const filePath = path.join(home, AUTH_FILE_BASENAME);
+
+    if (!fs.existsSync(filePath)) {
+        return { path: filePath, changed: false, deleted: false, email: '' };
+    }
+
+    const existing = readExistingAuth(filePath);
+    if (Object.keys(existing).length === 0) {
+        // Malformed / empty / array. Nothing meaningful to scrub.
+        return { path: filePath, changed: false, deleted: false, email: '' };
+    }
+
+    // Detect whether any OAuth keys are actually present. If not, we treat
+    // this as "not signed in" and return changed=false WITHOUT touching the
+    // file (preserves mtime / inode / mode).
+    const hasOAuthKey = OAUTH_KEYS.some((k) => Object.prototype.hasOwnProperty.call(existing, k));
+    if (!hasOAuthKey) {
+        return { path: filePath, changed: false, deleted: false, email: '' };
+    }
+
+    const previousEmail = (existing.email || '').toString().trim();
+
+    // Build the scrubbed object: keep everything that is NOT an OAuth key.
+    const scrubbed = {};
+    for (const [k, v] of Object.entries(existing)) {
+        if (!OAUTH_KEYS.includes(k)) {
+            scrubbed[k] = v;
+        }
+    }
+
+    if (Object.keys(scrubbed).length === 0) {
+        // Nothing left worth keeping — delete the file entirely so the
+        // next session sees the cleanest possible state.
+        try {
+            fs.unlinkSync(filePath);
+        } catch {
+            // If unlink fails for some reason, fall back to writing an
+            // empty object (still valid JSON, still mode 0600).
+            writeAuthAtomic(filePath, {});
+            return {
+                path: filePath,
+                changed: true,
+                deleted: false,
+                email: previousEmail,
+            };
+        }
+        return {
+            path: filePath,
+            changed: true,
+            deleted: true,
+            email: previousEmail,
+        };
+    }
+
+    writeAuthAtomic(filePath, scrubbed);
+    return {
+        path: filePath,
+        changed: true,
+        deleted: false,
+        email: previousEmail,
+    };
+}
+
+module.exports = {
+    authFilePath,
+    readExistingAuth,
+    removeAuthToken,
+    AUTH_FILE_BASENAME,
+    OAUTH_KEYS,
+};

package/lib/delimit-template.js

@@ -51,6 +51,17 @@ Non-trivial engineering work routes through in-session subagents, not in-thread
 - **Session end or idle**: call \`delimit_soul_capture\` + \`delimit_session_handoff\`
 - If returning user, summarize what's pending. If new project, call \`delimit_scan\`.
 
+### Memory Rules
+Delimit captures routine code changes from git automatically. You do NOT need to call \`memory_store\` for normal work.
+
+Use \`delimit_memory_store\` when capturing:
+- **Failed approaches** — "tried X, it didn't work because Y" (git only shows what survived, not dead ends)
+- **Architecture decisions** — "chose PostgreSQL over Redis for sessions because Z"
+- **Key context** — customer requirements, API constraints, deployment gotchas
+- **Things that will confuse the next session** — non-obvious setups, workarounds, tech debt
+
+Do NOT store: routine code changes, file lists, commit messages, status updates — these are in git.
+
 ### Code Development (debounced per edit batch)
 - After editing UI/CSS: call \`delimit_design_validate_responsive\`
 - After editing API specs: call \`delimit_lint\` + \`delimit_drift_check\`

package/lib/migration-2092-banner.js

@@ -0,0 +1,213 @@
+// lib/migration-2092-banner.js
+//
+// LED-2095: one-time migration banner shown to existing Free-tier users
+// who have BYOK deliberation configured. Surfaces the LED-2092 / LED-2093
+// gateway behavior change: Free-tier BYOK deliberation is now operationally
+// ephemeral (no persistent transcript, no signed attestation, no replay
+// URL). Pro-tier behavior is unchanged.
+//
+// Trigger conditions (ALL must be true):
+//   1. ~/.delimit/models.json exists with at least one BYOK entry
+//      (entry.enabled === true AND entry.api_key truthy)
+//   2. User is on the Free tier (no Pro/Premium/Enterprise license active
+//      per the same check used by lib/wrap-engine.js)
+//   3. The flag file ~/.delimit/migration_2092.shown does not exist yet
+//
+// On trigger: print the banner to stdout/stderr (caller's choice — we
+// return the banner string and let the caller handle output) and write
+// the flag file with `{ shown_at: ISO8601, version: <package version> }`
+// so the banner never fires again on the same machine.
+//
+// Scope: trigger on the next deliberation-adjacent CLI call (deliberate,
+// models). Do NOT trigger on every CLI call (would be noise). Do NOT
+// trigger for Pro customers (no behavior change for them). Do NOT
+// trigger for Free users without BYOK (they had no transcripts to lose).
+
+const fs = require('fs');
+const path = require('path');
+const { delimitHome, homeSubpath } = require('./delimit-home');
+
+const FLAG_FILE_BASENAME = 'migration_2092.shown';
+const MODELS_CONFIG_BASENAME = 'models.json';
+const LICENSE_FILE_BASENAME = 'license.json';
+
+// Banner copy — locked. No em-dashes (per LED-2095 brief). No founder
+// identity strings. Positive tone. The Pro upsell is a single line at
+// the end with the pricing URL; do not expand without coordinated copy
+// review.
+const BANNER_BODY = [
+    '',
+    'Free deliberations now print to stdout only.',
+    '',
+    'Your existing transcripts under ~/.delimit/memory/deliberations/ are preserved.',
+    'New deliberations on Free tier are ephemeral by design.',
+    '',
+    'Pro turns every deliberation into a signed, replayable attestation',
+    'with 365-day retention: delimit.ai/pricing',
+    '',
+].join('\n');
+
+function flagFilePath() {
+    return homeSubpath(FLAG_FILE_BASENAME);
+}
+
+function modelsConfigPath() {
+    return homeSubpath(MODELS_CONFIG_BASENAME);
+}
+
+function licenseFilePath() {
+    return homeSubpath(LICENSE_FILE_BASENAME);
+}
+
+/**
+ * Detect whether the user has at least one BYOK model entry configured.
+ * Mirrors the truthiness rule used by bin/delimit-cli.js::getModelStatus:
+ * `entry.enabled === true AND entry.api_key truthy`.
+ */
+function hasByokConfigured() {
+    const p = modelsConfigPath();
+    if (!fs.existsSync(p)) return false;
+    let config;
+    try {
+        config = JSON.parse(fs.readFileSync(p, 'utf-8'));
+    } catch {
+        return false;
+    }
+    if (!config || typeof config !== 'object' || Array.isArray(config)) {
+        return false;
+    }
+    for (const entry of Object.values(config)) {
+        if (entry && typeof entry === 'object' && entry.enabled && entry.api_key) {
+            return true;
+        }
+    }
+    return false;
+}
+
+/**
+ * Detect whether the user has an active Pro/Premium/Enterprise license.
+ * Mirrors the rule used by lib/wrap-engine.js::checkQuota — keep these in
+ * lockstep. A missing/malformed license.json means Free.
+ */
+function hasProLicense() {
+    const p = licenseFilePath();
+    if (!fs.existsSync(p)) return false;
+    try {
+        const lic = JSON.parse(fs.readFileSync(p, 'utf-8'));
+        if (lic && lic.valid && ['pro', 'premium', 'enterprise'].includes(lic.tier)) {
+            return true;
+        }
+    } catch {
+        return false;
+    }
+    return false;
+}
+
+/**
+ * Check whether the migration flag file has already been written. Once
+ * written, the banner is suppressed forever on this machine (the file is
+ * the source of truth — even a corrupt JSON body counts as "shown" so a
+ * partially-written flag does not re-trigger the banner).
+ */
+function hasShownBanner() {
+    return fs.existsSync(flagFilePath());
+}
+
+/**
+ * Should the banner trigger right now? All three conditions must hold:
+ * BYOK configured, no Pro license, flag file absent.
+ */
+function shouldShowBanner() {
+    if (hasShownBanner()) return false;
+    if (hasProLicense()) return false;
+    if (!hasByokConfigured()) return false;
+    return true;
+}
+
+/**
+ * Persist the flag file so the banner never fires again. Best-effort:
+ * directory is created at 0700 if missing, file is written at default
+ * mode (no secrets in this file — just a timestamp + version).
+ *
+ * @param {object} [args]
+ * @param {string} [args.now]      ISO8601 override for tests
+ * @param {string} [args.version]  CLI version string
+ */
+function writeShownFlag(args) {
+    const opts = args || {};
+    const home = delimitHome();
+    if (!fs.existsSync(home)) {
+        fs.mkdirSync(home, { recursive: true, mode: 0o700 });
+    }
+    const payload = {
+        shown_at: opts.now || new Date().toISOString(),
+        version: opts.version || resolveCliVersion(),
+        led: 'LED-2095',
+    };
+    const tmpPath = flagFilePath() + '.tmp';
+    fs.writeFileSync(tmpPath, JSON.stringify(payload, null, 2));
+    fs.renameSync(tmpPath, flagFilePath());
+}
+
+function resolveCliVersion() {
+    try {
+        // package.json sits two levels up from lib/migration-2092-banner.js
+        const pkg = require(path.join(__dirname, '..', 'package.json'));
+        return pkg.version || 'unknown';
+    } catch {
+        return 'unknown';
+    }
+}
+
+/**
+ * The exact banner text shown to triggered users. Exposed so tests can
+ * snapshot it without re-running the trigger logic.
+ */
+function bannerText() {
+    return BANNER_BODY;
+}
+
+/**
+ * Composite entry point used by the CLI. If conditions are met, returns
+ * the banner string AND writes the flag file. If conditions are not met,
+ * returns "" and does not touch the filesystem.
+ *
+ * The CLI is responsible for printing the returned string. Returning the
+ * string (rather than printing here) keeps this module side-effect-light
+ * and lets tests assert on the output without capturing stdout.
+ *
+ * @param {object} [args]
+ * @param {string} [args.now]      ISO8601 override for the flag-file
+ *                                 timestamp (deterministic tests)
+ * @param {string} [args.version]  Override the CLI version string
+ * @returns {{ shown: boolean, text: string }}
+ */
+function maybeShowMigrationBanner(args) {
+    if (!shouldShowBanner()) {
+        return { shown: false, text: '' };
+    }
+    try {
+        writeShownFlag(args);
+    } catch {
+        // If we cannot persist the flag, do NOT show the banner —
+        // showing it without persisting would re-fire on every call.
+        return { shown: false, text: '' };
+    }
+    return { shown: true, text: bannerText() };
+}
+
+module.exports = {
+    FLAG_FILE_BASENAME,
+    MODELS_CONFIG_BASENAME,
+    LICENSE_FILE_BASENAME,
+    flagFilePath,
+    modelsConfigPath,
+    licenseFilePath,
+    hasByokConfigured,
+    hasProLicense,
+    hasShownBanner,
+    shouldShowBanner,
+    writeShownFlag,
+    bannerText,
+    maybeShowMigrationBanner,
+};

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "delimit-cli",
   "mcpName": "io.github.delimit-ai/delimit-mcp-server",
-  "version": "4.5.13",
+  "version": "4.6.1",
   "description": "Unify Claude Code, Codex, Cursor, and Gemini CLI with persistent context, governance, and multi-model debate.",
   "main": "index.js",
   "files": [
@@ -42,6 +42,9 @@
     "!scripts/demo-v420-clean.sh",
     "!scripts/demo-v420-deliberation.sh",
     "!scripts/sync-gateway.sh",
+    "!scripts/build-license-core.sh",
+    "!scripts/security-check.sh",
+    "!scripts/test-license-core-so.sh",
     "!gateway/ai/continuity.py",
     "server.json",
     "README.md",
@@ -56,7 +59,7 @@
     "postinstall": "node scripts/postinstall.js",
     "sync-gateway": "bash scripts/sync-gateway.sh",
     "prepublishOnly": "bash scripts/publish-ci-guard.sh && npm run sync-gateway && bash scripts/build-license-core.sh && bash scripts/security-check.sh",
-    "test": "node --test tests/setup-onboarding.test.js tests/setup-matrix.test.js tests/setup-no-clobber.test.js tests/config-export-import.test.js tests/cross-model-hooks.test.js tests/golden-path.test.js tests/v420-features.test.js tests/v43-wrap-engine.test.js tests/v43-trust-page-engine.test.js tests/v43-ai-sbom-engine.test.js tests/attest-mcp.test.js tests/delimit-home.test.js tests/postinstall-hardening.test.js"
+    "test": "node --test tests/setup-onboarding.test.js tests/setup-matrix.test.js tests/setup-no-clobber.test.js tests/config-export-import.test.js tests/cross-model-hooks.test.js tests/golden-path.test.js tests/v420-features.test.js tests/v43-wrap-engine.test.js tests/v43-trust-page-engine.test.js tests/v43-ai-sbom-engine.test.js tests/attest-mcp.test.js tests/delimit-home.test.js tests/postinstall-hardening.test.js tests/auth-signin.test.js tests/auth-signout.test.js tests/migration-2092-banner.test.js"
   },
   "keywords": [
     "openapi",

package/server.json

@@ -1,19 +1,19 @@
 {
   "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json",
   "name": "io.github.delimit-ai/delimit-mcp-server",
-  "title": "Delimit — API Governance for AI Coding Assistants",
-  "description": "API governance for AI coding assistants. Breaking changes, policies, cross-model context.",
+  "title": "Delimit — The merge gate for AI-written code",
+  "description": "The merge gate for AI-written code. Cross-vendor adjudication of every AI-assisted merge with a signed, replayable attestation. Persistent ledger and multi-model deliberation across Claude, Codex, Cursor, and Gemini CLI.",
   "repository": {
     "url": "https://github.com/delimit-ai/delimit-mcp-server",
     "source": "github"
   },
-  "version": "4.1.40",
+  "version": "4.5.13",
   "websiteUrl": "https://delimit.ai",
   "packages": [
     {
       "registryType": "npm",
       "identifier": "delimit-cli",
-      "version": "4.1.40",
+      "version": "4.5.13",
       "transport": {
         "type": "stdio"
       }

package/scripts/build-license-core.sh

@@ -1,85 +0,0 @@
-#!/bin/bash
-# LED-1259: Compile gateway/ai/license_core.py to a native .so via Nuitka,
-# then strip the plaintext .py from the bundle so customers cannot grep
-# the validation logic for bypass identifiers.
-#
-# Linux-only first ship. Mac/Windows expansion is filed as a follow-up
-# ledger item — non-linux customers will hit the Python fallback in
-# license.py (degraded Pro features) until we ship per-platform binaries.
-#
-# Idempotent: safe to re-run; will rebuild on every invocation.
-
-set -euo pipefail
-
-SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
-NPM_ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
-AI_DIR="$NPM_ROOT/gateway/ai"
-SRC="$AI_DIR/license_core.py"
-
-# ── Platform gate ────────────────────────────────────────────────────
-UNAME_S="$(uname -s)"
-UNAME_M="$(uname -m)"
-if [ "$UNAME_S" != "Linux" ]; then
-    echo "⚠️  build-license-core: non-Linux host ($UNAME_S) — skipping compile."
-    echo "   First ship is linux-only. The bundle will fall back to .py."
-    exit 0
-fi
-
-if [ ! -f "$SRC" ]; then
-    echo "❌ Source not found: $SRC"
-    exit 1
-fi
-
-# ── Toolchain check ──────────────────────────────────────────────────
-PY="${PYTHON:-python3}"
-if ! command -v "$PY" >/dev/null 2>&1; then
-    echo "❌ python3 not found"
-    exit 1
-fi
-
-PY_VER="$($PY -c 'import sys; print(f"{sys.version_info.major}.{sys.version_info.minor}")')"
-echo "🔧 build-license-core: python=$PY ($PY_VER), arch=$UNAME_M"
-
-if ! "$PY" -m nuitka --version >/dev/null 2>&1; then
-    echo "📦 nuitka not installed — installing via pip..."
-    "$PY" -m pip install --quiet --user nuitka
-fi
-
-NUITKA_VER="$($PY -m nuitka --version 2>&1 | head -1)"
-echo "   nuitka=$NUITKA_VER"
-
-# ── Compile ──────────────────────────────────────────────────────────
-echo "🔨 Compiling license_core.py → .so (this takes ~30s)..."
-cd "$AI_DIR"
-"$PY" -m nuitka --module --quiet --remove-output --output-dir=. license_core.py
-
-# ── Verify output ────────────────────────────────────────────────────
-SO_FILE="$(ls -1 license_core.cpython-*-*.so 2>/dev/null | head -1 || true)"
-if [ -z "$SO_FILE" ] || [ ! -f "$SO_FILE" ]; then
-    echo "❌ Compile failed — no .so produced in $AI_DIR"
-    ls -la "$AI_DIR"/license_core* 2>&1 || true
-    exit 1
-fi
-
-SO_SIZE="$(stat -c%s "$SO_FILE")"
-echo "   ✅ produced: $SO_FILE ($SO_SIZE bytes)"
-
-# ── Bypass-identifier scan ───────────────────────────────────────────
-# Customers must not be able to `strings | grep` the .so for known
-# bypass class names. Fail the build if any leak through.
-BYPASS_HITS="$(strings "$SO_FILE" | grep -iE 'DELIMIT_TEST_MODE|DELIMIT_INTERNAL_LICENSE_KEY|JAMSONS' || true)"
-if [ -n "$BYPASS_HITS" ]; then
-    echo "❌ Bypass identifiers found in compiled .so:"
-    echo "$BYPASS_HITS"
-    exit 1
-fi
-echo "   ✅ strings-grep clean (no bypass identifiers)"
-
-# ── Drop the plaintext source from the bundle ────────────────────────
-# .npmignore + package.json will also exclude it, but removing here is
-# belt-and-suspenders so dev/test inspection of the bundle dir matches
-# what gets packed.
-rm -f "$AI_DIR/license_core.py"
-echo "   ✅ removed plaintext license_core.py from bundle"
-
-echo "✅ build-license-core complete: $SO_FILE"

package/scripts/security-check.sh

@@ -1,66 +0,0 @@
-#!/bin/bash
-# Pre-publish security check — blocks npm publish if secrets are found
-# Run: bash scripts/security-check.sh
-
-set -euo pipefail
-
-echo "🔍 Delimit pre-publish security scan..."
-
-FAIL=0
-
-# Pack to temp and scan the actual tarball contents
-TMPDIR=$(mktemp -d)
-npm pack --pack-destination "$TMPDIR" --quiet 2>/dev/null
-TARBALL=$(ls "$TMPDIR"/*.tgz)
-tar -xzf "$TARBALL" -C "$TMPDIR"
-
-# 1. Credential patterns
-echo -n "  Credentials... "
-if grep -rEi '(password|passwd|secret|api_key|apikey)\s*[:=]\s*["\x27][^"\x27]{4,}' "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null | grep -v 'environ\|getenv\|process\.env\|os\.environ\|<configured\|example\|placeholder\|REDACTED\|\${credentials\|credentials\.\|security-scan-ignore'; then
-    echo "❌ FOUND CREDENTIALS"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-
-# 2. Blocklist terms
-echo -n "  Blocklist... "
-BLOCKLIST="jamsonsholdings|Bladabah|Domainvested26|Delimit26|home/jamsons|infracore|crypttrx|\.wr_env"
-if grep -rEi "$BLOCKLIST" "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null; then
-    echo "❌ BLOCKED TERMS FOUND"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-
-# 3. PII (email addresses that aren't examples)
-echo -n "  PII... "
-if grep -rEi '[a-z0-9._%+-]+@(gmail|yahoo|hotmail|outlook|proton|jamsons|wire\.report|domainvested)' "$TMPDIR/package/" --include="*.py" --include="*.js" --include="*.json" 2>/dev/null | grep -v "example\|placeholder\|<configured\|noreply\|e\.g\.\|docstring\|Args:\|Credential resolution"; then
-    echo "❌ PII FOUND"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-
-# 4. Proprietary files that shouldn't ship
-echo -n "  Proprietary files... "
-PROPRIETARY="social_target\.py|social\.py|founding_users\.py|inbox_daemon\.py|deliberation\.py"
-if find "$TMPDIR/package/" -name "*.py" | grep -Ei "$PROPRIETARY" 2>/dev/null; then
-    echo "❌ PROPRIETARY FILES IN PACKAGE"
-    FAIL=1
-else
-    echo "✅ clean"
-fi
-
-# Cleanup
-rm -rf "$TMPDIR"
-
-if [ $FAIL -ne 0 ]; then
-    echo ""
-    echo "❌ SECURITY CHECK FAILED — do not publish"
-    exit 1
-fi
-
-echo ""
-echo "✅ All security checks passed"
-exit 0