npm - forgeos - Versions diffs - 0.1.0-alpha.0 → 0.1.0-alpha.2 - Mend

forgeos 0.1.0-alpha.0 → 0.1.0-alpha.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (283) hide show

package/.npmignore +9 -1
package/AGENTS.md +6 -1
package/CHANGELOG.md +30 -0
package/CONTRIBUTING.md +22 -1
package/README.md +30 -3
package/bin/forge.mjs +4 -3
package/package.json +3 -1
package/packages/eslint-plugin-forge/index.ts +15 -15
package/packages/eslint-plugin-forge/package.json +10 -10
package/packages/eslint-plugin-forge/src/check-source.ts +95 -95
package/packages/eslint-plugin-forge/src/load-artifacts.ts +24 -24
package/packages/eslint-plugin-forge/src/rule-no-forge-guard-violation.ts +93 -93
package/src/forge/_generated/actionSubscriptions.json +2 -2
package/src/forge/_generated/actionSubscriptions.ts +3 -3
package/src/forge/_generated/agentAdapterManifest.json +2 -2
package/src/forge/_generated/agentAdapterManifest.ts +3 -3
package/src/forge/_generated/agentContract.json +2 -2
package/src/forge/_generated/agentContract.ts +6786 -2
package/src/forge/_generated/agentQuickstart.md +1 -1
package/src/forge/_generated/aiContext.ts +1 -1
package/src/forge/_generated/aiModels.json +1 -1
package/src/forge/_generated/aiModels.ts +1 -1
package/src/forge/_generated/aiProviders.json +1 -1
package/src/forge/_generated/aiProviders.ts +1 -1
package/src/forge/_generated/aiRegistry.json +2 -2
package/src/forge/_generated/aiRegistry.ts +3 -3
package/src/forge/_generated/api.json +2 -2
package/src/forge/_generated/api.ts +1 -1
package/src/forge/_generated/appGraph.json +2 -2
package/src/forge/_generated/appGraph.ts +1297 -1141
package/src/forge/_generated/appMap.md +1 -1
package/src/forge/_generated/artifactManifest.json +2 -2
package/src/forge/_generated/artifactManifest.ts +2 -2
package/src/forge/_generated/authClaims.json +1 -1
package/src/forge/_generated/authClaims.ts +1 -1
package/src/forge/_generated/authConfig.json +1 -1
package/src/forge/_generated/authConfig.ts +1 -1
package/src/forge/_generated/authContext.ts +1 -1
package/src/forge/_generated/authRegistry.json +1 -1
package/src/forge/_generated/authRegistry.ts +1 -1
package/src/forge/_generated/buildInfo.json +2 -2
package/src/forge/_generated/buildInfo.ts +4 -4
package/src/forge/_generated/capabilityMap.json +2 -2
package/src/forge/_generated/capabilityMap.md +1 -1
package/src/forge/_generated/capabilityMap.ts +2 -2
package/src/forge/_generated/client.ts +1 -1
package/src/forge/_generated/clientApi.ts +1 -1
package/src/forge/_generated/clientManifest.json +2 -2
package/src/forge/_generated/clientManifest.ts +3 -3
package/src/forge/_generated/clientTypes.ts +1 -1
package/src/forge/_generated/configRegistry.json +1 -1
package/src/forge/_generated/configRegistry.ts +1 -1
package/src/forge/_generated/dataGraph.json +2 -2
package/src/forge/_generated/dataGraph.ts +3 -3
package/src/forge/_generated/db.json +1 -1
package/src/forge/_generated/db.ts +1 -1
package/src/forge/_generated/dbSecurityManifest.json +1 -1
package/src/forge/_generated/dbSecurityManifest.ts +1 -1
package/src/forge/_generated/dbSessionContext.json +1 -1
package/src/forge/_generated/dbSessionContext.ts +1 -1
package/src/forge/_generated/deployManifest.json +2 -2
package/src/forge/_generated/deployManifest.ts +7 -7
package/src/forge/_generated/devManifest.json +2 -2
package/src/forge/_generated/devManifest.ts +3 -3
package/src/forge/_generated/envSchema.json +1 -1
package/src/forge/_generated/envSchema.ts +1 -1
package/src/forge/_generated/frontendGraph.json +1 -1
package/src/forge/_generated/frontendGraph.ts +1 -1
package/src/forge/_generated/importGuards.json +2 -2
package/src/forge/_generated/importGuards.ts +35 -1
package/src/forge/_generated/index.ts +1 -1
package/src/forge/_generated/liveProductionManifest.json +1 -1
package/src/forge/_generated/liveProductionManifest.ts +1 -1
package/src/forge/_generated/liveProtocol.json +1 -1
package/src/forge/_generated/liveProtocol.ts +1 -1
package/src/forge/_generated/liveQueryRegistry.json +2 -2
package/src/forge/_generated/liveQueryRegistry.ts +3 -3
package/src/forge/_generated/liveTransportConfig.json +1 -1
package/src/forge/_generated/liveTransportConfig.ts +1 -1
package/src/forge/_generated/makeRegistry.json +2 -2
package/src/forge/_generated/makeRegistry.ts +2 -2
package/src/forge/_generated/makeTemplates.json +1 -1
package/src/forge/_generated/makeTemplates.ts +1 -1
package/src/forge/_generated/mockMap.json +1 -1
package/src/forge/_generated/mockMap.ts +1 -1
package/src/forge/_generated/operationPlaybooks.md +7 -5
package/src/forge/_generated/packageGraph.json +2 -2
package/src/forge/_generated/packageGraph.ts +90964 -14284
package/src/forge/_generated/packageUpgradeRegistry.json +2 -2
package/src/forge/_generated/packageUpgradeRegistry.ts +2 -2
package/src/forge/_generated/permissionMatrix.json +2 -2
package/src/forge/_generated/permissionMatrix.ts +3 -3
package/src/forge/_generated/policyRegistry.json +2 -2
package/src/forge/_generated/policyRegistry.ts +3 -3
package/src/forge/_generated/queryRegistry.json +2 -2
package/src/forge/_generated/queryRegistry.ts +3 -3
package/src/forge/_generated/react.d.ts +1 -1
package/src/forge/_generated/react.ts +1 -1
package/src/forge/_generated/reactManifest.json +2 -2
package/src/forge/_generated/reactManifest.ts +3 -3
package/src/forge/_generated/releaseManifest.json +2 -2
package/src/forge/_generated/releaseManifest.ts +3 -3
package/src/forge/_generated/rlsPolicies.json +1 -1
package/src/forge/_generated/rlsPolicies.sql +1 -1
package/src/forge/_generated/rlsPolicies.ts +1 -1
package/src/forge/_generated/runtimeGraph.json +2 -2
package/src/forge/_generated/runtimeGraph.ts +3 -3
package/src/forge/_generated/runtimeMatrix.json +2 -2
package/src/forge/_generated/runtimeMatrix.ts +106177 -7917
package/src/forge/_generated/runtimeRegistry.ts +1 -1
package/src/forge/_generated/runtimeRules.md +1 -1
package/src/forge/_generated/secretRegistry.json +1 -1
package/src/forge/_generated/secretRegistry.ts +1 -1
package/src/forge/_generated/secretsContext.ts +1 -1
package/src/forge/_generated/serverApi.ts +1 -1
package/src/forge/_generated/sourceMapManifest.json +2 -2
package/src/forge/_generated/sourceMapManifest.ts +2 -2
package/src/forge/_generated/sqlPlan.json +1 -1
package/src/forge/_generated/sqlPlan.ts +1 -1
package/src/forge/_generated/subscriptionManifest.json +2 -2
package/src/forge/_generated/subscriptionManifest.ts +3 -3
package/src/forge/_generated/symbolicationManifest.json +2 -2
package/src/forge/_generated/symbolicationManifest.ts +2 -2
package/src/forge/_generated/telemetryRegistry.json +2 -2
package/src/forge/_generated/telemetryRegistry.ts +3 -3
package/src/forge/_generated/telemetrySinks.json +2 -2
package/src/forge/_generated/telemetrySinks.ts +2 -2
package/src/forge/_generated/tenantScope.json +2 -2
package/src/forge/_generated/tenantScope.ts +3 -3
package/src/forge/_generated/testGraph.json +2 -2
package/src/forge/_generated/testGraph.ts +129 -75
package/src/forge/_generated/testPlanRegistry.json +2 -2
package/src/forge/_generated/testPlanRegistry.ts +2 -2
package/src/forge/_generated/uiRoutes.json +1 -1
package/src/forge/_generated/uiRoutes.ts +1 -1
package/src/forge/_generated/uiScenarios.json +1 -1
package/src/forge/_generated/uiScenarios.ts +1 -1
package/src/forge/_generated/uiTestManifest.json +2 -2
package/src/forge/_generated/uiTestManifest.ts +2 -2
package/src/forge/_generated/workflowRegistry.json +2 -2
package/src/forge/_generated/workflowRegistry.ts +3 -3
package/src/forge/_generated/workflowSubscriptions.json +2 -2
package/src/forge/_generated/workflowSubscriptions.ts +3 -3
package/src/forge/cli/commands.ts +861 -861
package/src/forge/cli/deps.ts +178 -11
package/src/forge/cli/dev.ts +32 -5
package/src/forge/cli/index.ts +7 -7
package/src/forge/cli/main.ts +54 -54
package/src/forge/cli/new.ts +29 -1
package/src/forge/cli/output.ts +97 -97
package/src/forge/cli/parse.ts +679 -673
package/src/forge/cli/version.ts +1 -1
package/src/forge/compiler/agent-contract/build.ts +28 -0
package/src/forge/compiler/agent-contract/types.ts +16 -0
package/src/forge/compiler/app-graph/build.ts +112 -112
package/src/forge/compiler/app-graph/classify.ts +10 -10
package/src/forge/compiler/app-graph/dup-symbol.ts +29 -29
package/src/forge/compiler/app-graph/extract.ts +123 -123
package/src/forge/compiler/app-graph/forge-apis.ts +29 -29
package/src/forge/compiler/app-graph/index.ts +11 -11
package/src/forge/compiler/app-graph/module-graph.ts +316 -316
package/src/forge/compiler/app-graph/parser.ts +119 -119
package/src/forge/compiler/app-graph/symbols.ts +48 -48
package/src/forge/compiler/app-graph/tsconfig-hash.ts +62 -62
package/src/forge/compiler/app-graph/types.ts +43 -43
package/src/forge/compiler/app-graph/versions.ts +14 -14
package/src/forge/compiler/cache/index.ts +17 -17
package/src/forge/compiler/cache/key.ts +46 -46
package/src/forge/compiler/cache/scheduler.ts +72 -72
package/src/forge/compiler/cache/store.ts +78 -78
package/src/forge/compiler/classifier/capabilities.ts +78 -78
package/src/forge/compiler/classifier/classify.ts +113 -113
package/src/forge/compiler/classifier/contexts.ts +188 -188
package/src/forge/compiler/classifier/index.ts +18 -18
package/src/forge/compiler/classifier/runtime-matrix.ts +45 -45
package/src/forge/compiler/classifier/secrets.ts +41 -41
package/src/forge/compiler/classifier/signals.ts +129 -129
package/src/forge/compiler/diagnostics/codes.ts +125 -120
package/src/forge/compiler/diagnostics/create.ts +87 -87
package/src/forge/compiler/diagnostics/index.ts +41 -41
package/src/forge/compiler/emitter/artifact-kind.ts +14 -14
package/src/forge/compiler/emitter/barrel.ts +38 -38
package/src/forge/compiler/emitter/constants.ts +7 -7
package/src/forge/compiler/emitter/emit.ts +234 -237
package/src/forge/compiler/emitter/index.ts +24 -24
package/src/forge/compiler/emitter/lock.ts +61 -61
package/src/forge/compiler/emitter/render.ts +73 -73
package/src/forge/compiler/guards/artifacts.ts +96 -96
package/src/forge/compiler/guards/check-import-guards.ts +106 -106
package/src/forge/compiler/guards/index.ts +11 -11
package/src/forge/compiler/guards/propagate-contexts.ts +57 -57
package/src/forge/compiler/index.ts +17 -17
package/src/forge/compiler/integration/add.ts +493 -493
package/src/forge/compiler/integration/index.ts +17 -17
package/src/forge/compiler/integration/plan.ts +279 -279
package/src/forge/compiler/integration/render.ts +189 -189
package/src/forge/compiler/integration/snapshot.ts +52 -52
package/src/forge/compiler/orchestrator/discover.ts +214 -214
package/src/forge/compiler/orchestrator/guards.ts +5 -5
package/src/forge/compiler/orchestrator/index.ts +27 -27
package/src/forge/compiler/orchestrator/manifest.ts +69 -69
package/src/forge/compiler/orchestrator/orphans.ts +51 -51
package/src/forge/compiler/orchestrator/plan.ts +804 -804
package/src/forge/compiler/orchestrator/run.ts +178 -178
package/src/forge/compiler/orchestrator/serialize.ts +859 -859
package/src/forge/compiler/orchestrator/types.ts +23 -23
package/src/forge/compiler/orchestrator/verify.ts +35 -35
package/src/forge/compiler/package-graph/capabilities-stub.ts +33 -33
package/src/forge/compiler/package-graph/checksum.ts +107 -97
package/src/forge/compiler/package-graph/compiler.ts +444 -363
package/src/forge/compiler/package-graph/constants.ts +4 -4
package/src/forge/compiler/package-graph/exports-discovery.ts +91 -84
package/src/forge/compiler/package-graph/extract-dts.ts +32 -32
package/src/forge/compiler/package-graph/index.ts +24 -24
package/src/forge/compiler/package-graph/jsdoc.ts +50 -50
package/src/forge/compiler/package-graph/oracle.ts +326 -0
package/src/forge/compiler/package-graph/read-file.ts +21 -21
package/src/forge/compiler/package-graph/resolve.ts +131 -127
package/src/forge/compiler/package-manager/adapter.ts +232 -232
package/src/forge/compiler/package-manager/commands.ts +47 -47
package/src/forge/compiler/package-manager/detect.ts +65 -65
package/src/forge/compiler/package-manager/executor.ts +29 -29
package/src/forge/compiler/package-manager/index.ts +22 -22
package/src/forge/compiler/package-manager/parse-spec.ts +16 -16
package/src/forge/compiler/package-manager/version.ts +20 -20
package/src/forge/compiler/primitives/compare.ts +26 -26
package/src/forge/compiler/primitives/hash.ts +42 -33
package/src/forge/compiler/primitives/header.ts +43 -43
package/src/forge/compiler/primitives/index.ts +45 -45
package/src/forge/compiler/primitives/paths.ts +24 -24
package/src/forge/compiler/primitives/serialize.ts +66 -66
package/src/forge/compiler/primitives/sort.ts +87 -87
package/src/forge/compiler/recipes/definitions.ts +269 -269
package/src/forge/compiler/recipes/helpers.ts +37 -37
package/src/forge/compiler/recipes/index.ts +21 -21
package/src/forge/compiler/recipes/registry.ts +87 -87
package/src/forge/compiler/sandbox/artifact-sanitize.ts +26 -26
package/src/forge/compiler/sandbox/backends/child.ts +123 -123
package/src/forge/compiler/sandbox/backends/docker.ts +173 -173
package/src/forge/compiler/sandbox/index.ts +51 -51
package/src/forge/compiler/sandbox/inspect.ts +143 -143
package/src/forge/compiler/sandbox/inspector-entry.ts +115 -115
package/src/forge/compiler/sandbox/limits.ts +31 -31
package/src/forge/compiler/sandbox/scrub-env.ts +60 -60
package/src/forge/compiler/sandbox/secret-scan.ts +54 -54
package/src/forge/compiler/sandbox/serialize.ts +106 -106
package/src/forge/compiler/sandbox/types.ts +7 -7
package/src/forge/compiler/types/app-graph.ts +71 -71
package/src/forge/compiler/types/capability.ts +29 -29
package/src/forge/compiler/types/classification.ts +9 -9
package/src/forge/compiler/types/cli.ts +85 -85
package/src/forge/compiler/types/diagnostic.ts +2 -2
package/src/forge/compiler/types/emit.ts +25 -25
package/src/forge/compiler/types/import-guards.ts +19 -19
package/src/forge/compiler/types/index.ts +98 -98
package/src/forge/compiler/types/integration.ts +25 -25
package/src/forge/compiler/types/json.ts +3 -3
package/src/forge/compiler/types/lock.ts +37 -37
package/src/forge/compiler/types/package-graph.ts +122 -77
package/src/forge/compiler/types/runtime-matrix.ts +16 -16
package/src/forge/compiler/types/runtime.ts +30 -30
package/src/forge/compiler/types/sandbox.ts +24 -24
package/src/forge/dev/server.ts +16 -2
package/src/forge/refactor/index.ts +10 -2
package/src/forge/refactor/runtime-rename.ts +598 -0
package/src/forge/runtime/executor.ts +3 -2
package/src/forge/runtime/live/live-query-runner.ts +2 -1
package/src/forge/runtime/outbox/process.ts +2 -1
package/src/forge/runtime/query/run-query.ts +2 -1
package/src/forge/runtime/runner/run-entry.ts +2 -1
package/src/forge/runtime/telemetry/sinks/posthog.ts +4 -5
package/src/forge/runtime/telemetry/sinks/sentry.ts +4 -5
package/src/forge/runtime/workflows/resolve-step.ts +2 -1
package/src/forge/version.ts +3 -0
package/templates/b2b-support-web/src/actions/captureTicketCreated.ts +7 -2
package/templates/b2b-support-web/src/commands/closeTicket.ts +6 -1
package/templates/b2b-support-web/src/commands/createTicket.ts +8 -2
package/templates/b2b-support-web/src/queries/getTicket.ts +8 -1
package/templates/b2b-support-web/web/components/CreateTicketForm.tsx +1 -2
package/templates/b2b-support-web/web/components/PolicyDeniedDemo.tsx +1 -2
package/templates/b2b-support-web/web/components/TicketList.tsx +1 -2
package/templates/b2b-support-web/web/components/TraceDetails.tsx +1 -1
package/templates/b2b-support-web/web/lib/forge.ts +1 -0

package/src/forge/compiler/classifier/runtime-matrix.ts CHANGED Viewed

@@ -1,45 +1,45 @@
-import type { RuntimeClassification } from "../types/classification.ts";
-import type { PackageApi } from "../types/package-graph.ts";
-import type { IntegrationRecipe } from "../types/integration.ts";
-import type { RuntimeMatrix, RuntimeMatrixEntry } from "../types/runtime-matrix.ts";
-import { compareBytes } from "../primitives/compare.ts";
-import { RECIPE_SCHEMA_VERSION } from "../recipes/definitions.ts";
-import { resolveByPackageName } from "../recipes/registry.ts";
-export interface ClassifiedPackage {
-  api: PackageApi;
-  classification: RuntimeClassification;
-  recipe?: IntegrationRecipe;
-}
-export function buildRuntimeMatrix(
-  packages: ClassifiedPackage[],
-): RuntimeMatrix {
-  const entries: RuntimeMatrixEntry[] = packages.map(
-    ({ api, classification, recipe }) => {
-      const resolved = recipe ?? resolveByPackageName(api.name);
-      return {
-        alias: resolved?.alias ?? api.name,
-        packageName: api.name,
-        compatible: [...classification.compatible],
-        incompatible: [...classification.incompatible],
-        rationale: { ...classification.rationale },
-        perEntrypoint: [...classification.perEntrypoint],
-      };
-    },
-  );
-  entries.sort((a, b) => compareBytes(a.packageName, b.packageName));
-  return {
-    schemaVersion: RECIPE_SCHEMA_VERSION,
-    entries,
-  };
-}
-export function lookupMatrixEntry(
-  matrix: RuntimeMatrix,
-  packageName: string,
-): RuntimeMatrixEntry | undefined {
-  return matrix.entries.find((e) => e.packageName === packageName);
-}
+import type { RuntimeClassification } from "../types/classification.ts";
+import type { PackageApi } from "../types/package-graph.ts";
+import type { IntegrationRecipe } from "../types/integration.ts";
+import type { RuntimeMatrix, RuntimeMatrixEntry } from "../types/runtime-matrix.ts";
+import { compareBytes } from "../primitives/compare.ts";
+import { RECIPE_SCHEMA_VERSION } from "../recipes/definitions.ts";
+import { resolveByPackageName } from "../recipes/registry.ts";
+export interface ClassifiedPackage {
+  api: PackageApi;
+  classification: RuntimeClassification;
+  recipe?: IntegrationRecipe;
+}
+export function buildRuntimeMatrix(
+  packages: ClassifiedPackage[],
+): RuntimeMatrix {
+  const entries: RuntimeMatrixEntry[] = packages.map(
+    ({ api, classification, recipe }) => {
+      const resolved = recipe ?? resolveByPackageName(api.name);
+      return {
+        alias: resolved?.alias ?? api.name,
+        packageName: api.name,
+        compatible: [...classification.compatible],
+        incompatible: [...classification.incompatible],
+        rationale: { ...classification.rationale },
+        perEntrypoint: [...classification.perEntrypoint],
+      };
+    },
+  );
+  entries.sort((a, b) => compareBytes(a.packageName, b.packageName));
+  return {
+    schemaVersion: RECIPE_SCHEMA_VERSION,
+    entries,
+  };
+}
+export function lookupMatrixEntry(
+  matrix: RuntimeMatrix,
+  packageName: string,
+): RuntimeMatrixEntry | undefined {
+  return matrix.entries.find((e) => e.packageName === packageName);
+}

package/src/forge/compiler/classifier/secrets.ts CHANGED Viewed

@@ -1,41 +1,41 @@
-import type { SecretRequirement } from "../types/capability.ts";
-import type { IntegrationRecipe } from "../types/integration.ts";
-import type { PackageApi } from "../types/package-graph.ts";
-import { secret } from "../recipes/helpers.ts";
-import { gatherSignals } from "./signals.ts";
-export function detectSecrets(
-  api: PackageApi,
-  recipe?: IntegrationRecipe,
-): SecretRequirement[] {
-  const found = new Map<string, SecretRequirement>();
-  if (recipe) {
-    for (const s of recipe.secrets) {
-      found.set(s.envVar, { ...s });
-    }
-  }
-  const signals = gatherSignals(api);
-  for (const evidence of signals.envSecretEvidence) {
-    const envVar = evidence.replace(/^env:/, "");
-    if (!found.has(envVar)) {
-      found.set(envVar, secret(envVar, true, "signature"));
-    }
-  }
-  for (const ep of api.entrypoints) {
-    for (const exp of ep.exports) {
-      if (!exp.jsdoc) continue;
-      for (const tag of exp.jsdoc.tags) {
-        if (tag.tag !== "env" && tag.tag !== "secret") continue;
-        const name = tag.text.trim().split(/\s+/)[0];
-        if (name && /^[A-Z][A-Z0-9_]*$/.test(name) && !found.has(name)) {
-          found.set(name, secret(name, true, "jsdoc"));
-        }
-      }
-    }
-  }
-  return [...found.values()].sort((a, b) => a.envVar.localeCompare(b.envVar));
-}
+import type { SecretRequirement } from "../types/capability.ts";
+import type { IntegrationRecipe } from "../types/integration.ts";
+import type { PackageApi } from "../types/package-graph.ts";
+import { secret } from "../recipes/helpers.ts";
+import { gatherSignals } from "./signals.ts";
+export function detectSecrets(
+  api: PackageApi,
+  recipe?: IntegrationRecipe,
+): SecretRequirement[] {
+  const found = new Map<string, SecretRequirement>();
+  if (recipe) {
+    for (const s of recipe.secrets) {
+      found.set(s.envVar, { ...s });
+    }
+  }
+  const signals = gatherSignals(api);
+  for (const evidence of signals.envSecretEvidence) {
+    const envVar = evidence.replace(/^env:/, "");
+    if (!found.has(envVar)) {
+      found.set(envVar, secret(envVar, true, "signature"));
+    }
+  }
+  for (const ep of api.entrypoints) {
+    for (const exp of ep.exports) {
+      if (!exp.jsdoc) continue;
+      for (const tag of exp.jsdoc.tags) {
+        if (tag.tag !== "env" && tag.tag !== "secret") continue;
+        const name = tag.text.trim().split(/\s+/)[0];
+        if (name && /^[A-Z][A-Z0-9_]*$/.test(name) && !found.has(name)) {
+          found.set(name, secret(name, true, "jsdoc"));
+        }
+      }
+    }
+  }
+  return [...found.values()].sort((a, b) => a.envVar.localeCompare(b.envVar));
+}

package/src/forge/compiler/classifier/signals.ts CHANGED Viewed

@@ -1,129 +1,129 @@
-import type { PackageApi } from "../types/package-graph.ts";
-export interface PackageSignals {
-  usesNodeBuiltins: boolean;
-  nodeBuiltins: string[];
-  usesNetwork: boolean;
-  networkEvidence: string[];
-  usesFilesystem: boolean;
-  filesystemEvidence: string[];
-  usesProcess: boolean;
-  processEvidence: string[];
-  usesEnvSecrets: boolean;
-  envSecretEvidence: string[];
-  usesNativeAddon: boolean;
-  nativeAddonEvidence: string[];
-}
-const NODE_BUILTIN_PATTERNS = [
-  /\bnode:/,
-  /\brequire\s*\(\s*["'](?:fs|child_process|net|http|https|dns|tls|os|crypto)["']/,
-  /\bfrom\s+["'](?:fs|child_process|net|http|https|dns|tls|os|crypto)["']/,
-];
-const NETWORK_PATTERNS = [
-  /\bfetch\s*\(/,
-  /\bXMLHttpRequest\b/,
-  /\bWebSocket\b/,
-  /\bhttp\.request\b/,
-  /\bhttps\.request\b/,
-  /\bnet\.connect\b/,
-  /\baxios\b/,
-  /\bgot\b/,
-  /\bnode-fetch\b/,
-  /\bRequestInit\b/,
-  /\bResponse\b/,
-];
-const FILESYSTEM_PATTERNS = [
-  /\bfs\./,
-  /\breadFileSync\b/,
-  /\bwriteFileSync\b/,
-  /\bcreateReadStream\b/,
-  /\bcreateWriteStream\b/,
-  /\bnode:fs\b/,
-];
-const PROCESS_PATTERNS = [
-  /\bchild_process\b/,
-  /\bspawn\s*\(/,
-  /\bexec\s*\(/,
-  /\bexecFile\s*\(/,
-  /\bprocess\.env\b/,
-  /\bnode:child_process\b/,
-];
-const ENV_SECRET_PATTERNS = [
-  /\bprocess\.env\.([A-Z][A-Z0-9_]*)/g,
-  /\bgetenv\s*\(\s*["']([A-Z][A-Z0-9_]*)["']/g,
-];
-const NATIVE_ADDON_PATTERNS = [
-  /\b\.node\b/,
-  /\bnative\b/,
-  /\bffi\b/,
-  /\bnode-gyp\b/,
-];
-function collectMatches(text: string, patterns: RegExp[]): string[] {
-  const evidence: string[] = [];
-  for (const pattern of patterns) {
-    if (pattern.test(text)) {
-      evidence.push(`pattern:${pattern.source}`);
-    }
-  }
-  return evidence;
-}
-function collectEnvVars(text: string): string[] {
-  const vars = new Set<string>();
-  for (const pattern of ENV_SECRET_PATTERNS) {
-    const globalPattern = new RegExp(pattern.source, pattern.flags.includes("g") ? pattern.flags : `${pattern.flags}g`);
-    let match: RegExpExecArray | null;
-    while ((match = globalPattern.exec(text)) !== null) {
-      const name = match[1];
-      if (name) vars.add(name);
-    }
-  }
-  return [...vars];
-}
-export function gatherSignals(api: PackageApi): PackageSignals {
-  const texts: string[] = [];
-  for (const ep of api.entrypoints) {
-    for (const exp of ep.exports) {
-      texts.push(exp.signature);
-      if (exp.overloads) texts.push(...exp.overloads);
-      if (exp.declarations) texts.push(...exp.declarations);
-      if (exp.jsdoc) {
-        texts.push(exp.jsdoc.summary);
-        for (const tag of exp.jsdoc.tags) {
-          texts.push(`${tag.tag} ${tag.text}`);
-        }
-      }
-    }
-  }
-  const corpus = texts.join("\n");
-  const nodeBuiltins = collectMatches(corpus, NODE_BUILTIN_PATTERNS);
-  const networkEvidence = collectMatches(corpus, NETWORK_PATTERNS);
-  const filesystemEvidence = collectMatches(corpus, FILESYSTEM_PATTERNS);
-  const processEvidence = collectMatches(corpus, PROCESS_PATTERNS);
-  const nativeAddonEvidence = collectMatches(corpus, NATIVE_ADDON_PATTERNS);
-  const envVars = collectEnvVars(corpus);
-  return {
-    usesNodeBuiltins: nodeBuiltins.length > 0,
-    nodeBuiltins,
-    usesNetwork: networkEvidence.length > 0,
-    networkEvidence,
-    usesFilesystem: filesystemEvidence.length > 0,
-    filesystemEvidence,
-    usesProcess: processEvidence.length > 0,
-    processEvidence,
-    usesEnvSecrets: envVars.length > 0,
-    envSecretEvidence: envVars.map((v) => `env:${v}`),
-    usesNativeAddon: nativeAddonEvidence.length > 0,
-    nativeAddonEvidence,
-  };
-}
+import type { PackageApi } from "../types/package-graph.ts";
+export interface PackageSignals {
+  usesNodeBuiltins: boolean;
+  nodeBuiltins: string[];
+  usesNetwork: boolean;
+  networkEvidence: string[];
+  usesFilesystem: boolean;
+  filesystemEvidence: string[];
+  usesProcess: boolean;
+  processEvidence: string[];
+  usesEnvSecrets: boolean;
+  envSecretEvidence: string[];
+  usesNativeAddon: boolean;
+  nativeAddonEvidence: string[];
+}
+const NODE_BUILTIN_PATTERNS = [
+  /\bnode:/,
+  /\brequire\s*\(\s*["'](?:fs|child_process|net|http|https|dns|tls|os|crypto)["']/,
+  /\bfrom\s+["'](?:fs|child_process|net|http|https|dns|tls|os|crypto)["']/,
+];
+const NETWORK_PATTERNS = [
+  /\bfetch\s*\(/,
+  /\bXMLHttpRequest\b/,
+  /\bWebSocket\b/,
+  /\bhttp\.request\b/,
+  /\bhttps\.request\b/,
+  /\bnet\.connect\b/,
+  /\baxios\b/,
+  /\bgot\b/,
+  /\bnode-fetch\b/,
+  /\bRequestInit\b/,
+  /\bResponse\b/,
+];
+const FILESYSTEM_PATTERNS = [
+  /\bfs\./,
+  /\breadFileSync\b/,
+  /\bwriteFileSync\b/,
+  /\bcreateReadStream\b/,
+  /\bcreateWriteStream\b/,
+  /\bnode:fs\b/,
+];
+const PROCESS_PATTERNS = [
+  /\bchild_process\b/,
+  /\bspawn\s*\(/,
+  /\bexec\s*\(/,
+  /\bexecFile\s*\(/,
+  /\bprocess\.env\b/,
+  /\bnode:child_process\b/,
+];
+const ENV_SECRET_PATTERNS = [
+  /\bprocess\.env\.([A-Z][A-Z0-9_]*)/g,
+  /\bgetenv\s*\(\s*["']([A-Z][A-Z0-9_]*)["']/g,
+];
+const NATIVE_ADDON_PATTERNS = [
+  /\b\.node\b/,
+  /\bnative\b/,
+  /\bffi\b/,
+  /\bnode-gyp\b/,
+];
+function collectMatches(text: string, patterns: RegExp[]): string[] {
+  const evidence: string[] = [];
+  for (const pattern of patterns) {
+    if (pattern.test(text)) {
+      evidence.push(`pattern:${pattern.source}`);
+    }
+  }
+  return evidence;
+}
+function collectEnvVars(text: string): string[] {
+  const vars = new Set<string>();
+  for (const pattern of ENV_SECRET_PATTERNS) {
+    const globalPattern = new RegExp(pattern.source, pattern.flags.includes("g") ? pattern.flags : `${pattern.flags}g`);
+    let match: RegExpExecArray | null;
+    while ((match = globalPattern.exec(text)) !== null) {
+      const name = match[1];
+      if (name) vars.add(name);
+    }
+  }
+  return [...vars];
+}
+export function gatherSignals(api: PackageApi): PackageSignals {
+  const texts: string[] = [];
+  for (const ep of api.entrypoints) {
+    for (const exp of ep.exports) {
+      texts.push(exp.signature);
+      if (exp.overloads) texts.push(...exp.overloads);
+      if (exp.declarations) texts.push(...exp.declarations);
+      if (exp.jsdoc) {
+        texts.push(exp.jsdoc.summary);
+        for (const tag of exp.jsdoc.tags) {
+          texts.push(`${tag.tag} ${tag.text}`);
+        }
+      }
+    }
+  }
+  const corpus = texts.join("\n");
+  const nodeBuiltins = collectMatches(corpus, NODE_BUILTIN_PATTERNS);
+  const networkEvidence = collectMatches(corpus, NETWORK_PATTERNS);
+  const filesystemEvidence = collectMatches(corpus, FILESYSTEM_PATTERNS);
+  const processEvidence = collectMatches(corpus, PROCESS_PATTERNS);
+  const nativeAddonEvidence = collectMatches(corpus, NATIVE_ADDON_PATTERNS);
+  const envVars = collectEnvVars(corpus);
+  return {
+    usesNodeBuiltins: nodeBuiltins.length > 0,
+    nodeBuiltins,
+    usesNetwork: networkEvidence.length > 0,
+    networkEvidence,
+    usesFilesystem: filesystemEvidence.length > 0,
+    filesystemEvidence,
+    usesProcess: processEvidence.length > 0,
+    processEvidence,
+    usesEnvSecrets: envVars.length > 0,
+    envSecretEvidence: envVars.map((v) => `env:${v}`),
+    usesNativeAddon: nativeAddonEvidence.length > 0,
+    nativeAddonEvidence,
+  };
+}