groove-dev 0.8.0

package/packages/daemon/src/tokentracker.js

@@ -0,0 +1,124 @@
+// GROOVE — Token Tracker with Savings Calculator
+// FSL-1.1-Apache-2.0 — see LICENSE
+
+import { readFileSync, writeFileSync, existsSync } from 'fs';
+import { resolve } from 'path';
+
+// Estimated tokens wasted per cold-start without GROOVE context
+const COLD_START_OVERHEAD = 2000;
+// Estimated tokens wasted per file conflict (agent discovers, backs off, retries)
+const CONFLICT_OVERHEAD = 500;
+
+export class TokenTracker {
+  constructor(grooveDir) {
+    this.path = resolve(grooveDir, 'tokens.json');
+    this.usage = {};
+    this.sessionStart = Date.now();
+    this.rotationSavings = 0; // Tokens saved by rotation (context that would have degraded)
+    this.conflictsPrevented = 0;
+    this.coldStartsSkipped = 0;
+    this.load();
+  }
+
+  load() {
+    if (existsSync(this.path)) {
+      try {
+        const data = JSON.parse(readFileSync(this.path, 'utf8'));
+        this.usage = data.usage || data; // Handle both old and new format
+        this.rotationSavings = data.rotationSavings || 0;
+        this.conflictsPrevented = data.conflictsPrevented || 0;
+        this.coldStartsSkipped = data.coldStartsSkipped || 0;
+      } catch {
+        this.usage = {};
+      }
+    }
+  }
+
+  save() {
+    writeFileSync(this.path, JSON.stringify({
+      usage: this.usage,
+      rotationSavings: this.rotationSavings,
+      conflictsPrevented: this.conflictsPrevented,
+      coldStartsSkipped: this.coldStartsSkipped,
+      lastSaved: new Date().toISOString(),
+    }, null, 2));
+  }
+
+  record(agentId, tokens) {
+    if (!this.usage[agentId]) {
+      this.usage[agentId] = { total: 0, sessions: [] };
+    }
+    this.usage[agentId].total += tokens;
+    this.usage[agentId].sessions.push({
+      tokens,
+      timestamp: new Date().toISOString(),
+    });
+    this.save();
+  }
+
+  // Record that a rotation saved context tokens
+  recordRotation(agentId, tokensBefore) {
+    this.rotationSavings += Math.round(tokensBefore * 0.3); // ~30% of context was degraded
+    this.save();
+  }
+
+  // Record that a conflict was prevented (scope enforcement)
+  recordConflictPrevented() {
+    this.conflictsPrevented++;
+    this.save();
+  }
+
+  // Record that a cold-start was skipped (Journalist provided context)
+  recordColdStartSkipped() {
+    this.coldStartsSkipped++;
+    this.save();
+  }
+
+  getAgent(agentId) {
+    return this.usage[agentId] || { total: 0, sessions: [] };
+  }
+
+  getAll() {
+    return this.usage;
+  }
+
+  getTotal() {
+    return Object.values(this.usage).reduce((sum, a) => sum + a.total, 0);
+  }
+
+  // Generate a savings summary
+  getSummary() {
+    const totalTokens = this.getTotal();
+    const agentCount = Object.keys(this.usage).length;
+    const sessionDuration = Date.now() - this.sessionStart;
+
+    // Estimate what uncoordinated usage would have cost
+    const coldStartWaste = this.coldStartsSkipped * COLD_START_OVERHEAD;
+    const conflictWaste = this.conflictsPrevented * CONFLICT_OVERHEAD;
+    const totalSavings = this.rotationSavings + coldStartWaste + conflictWaste;
+
+    const estimatedWithout = totalTokens + totalSavings;
+    const savingsPct = estimatedWithout > 0
+      ? Math.round((totalSavings / estimatedWithout) * 100)
+      : 0;
+
+    return {
+      totalTokens,
+      agentCount,
+      sessionDurationMs: sessionDuration,
+      savings: {
+        total: totalSavings,
+        fromRotation: this.rotationSavings,
+        fromConflictPrevention: conflictWaste,
+        fromColdStartSkip: coldStartWaste,
+        percentage: savingsPct,
+        estimatedWithoutGroove: estimatedWithout,
+      },
+      perAgent: Object.entries(this.usage).map(([id, data]) => ({
+        agentId: id,
+        tokens: data.total,
+        sessions: data.sessions.length,
+      })),
+    };
+  }
+}

package/packages/daemon/src/validate.js

@@ -0,0 +1,122 @@
+// GROOVE — Input Validation
+// FSL-1.1-Apache-2.0 — see LICENSE
+
+const NAME_PATTERN = /^[a-zA-Z0-9_-]{1,64}$/;
+const ROLE_PATTERN = /^[a-zA-Z0-9_-]{1,50}$/;
+const PROVIDER_PATTERN = /^[a-zA-Z0-9_-]{1,30}$/;
+const MAX_PROMPT_LENGTH = 50_000;
+const MAX_SCOPE_PATTERNS = 20;
+const MAX_SCOPE_LENGTH = 200;
+
+export function validateAgentConfig(config) {
+  if (!config || typeof config !== 'object') {
+    throw new Error('Invalid agent config');
+  }
+
+  if (!config.role || typeof config.role !== 'string') {
+    throw new Error('Role is required');
+  }
+  if (!ROLE_PATTERN.test(config.role)) {
+    throw new Error('Invalid role: must be alphanumeric, dash, or underscore (max 50 chars)');
+  }
+
+  if (config.name !== undefined && config.name !== null) {
+    if (typeof config.name !== 'string' || !NAME_PATTERN.test(config.name)) {
+      throw new Error('Invalid name: must be alphanumeric, dash, or underscore (max 64 chars)');
+    }
+  }
+
+  if (config.provider !== undefined && config.provider !== null) {
+    if (typeof config.provider !== 'string' || !PROVIDER_PATTERN.test(config.provider)) {
+      throw new Error('Invalid provider name');
+    }
+  }
+
+  if (config.scope !== undefined && config.scope !== null) {
+    if (!Array.isArray(config.scope)) {
+      throw new Error('Scope must be an array');
+    }
+    if (config.scope.length > MAX_SCOPE_PATTERNS) {
+      throw new Error(`Too many scope patterns (max ${MAX_SCOPE_PATTERNS})`);
+    }
+    for (const pattern of config.scope) {
+      validateScopePattern(pattern);
+    }
+  }
+
+  if (config.prompt !== undefined && config.prompt !== null) {
+    if (typeof config.prompt !== 'string') {
+      throw new Error('Prompt must be a string');
+    }
+    if (config.prompt.length > MAX_PROMPT_LENGTH) {
+      throw new Error(`Prompt too long (max ${MAX_PROMPT_LENGTH} chars)`);
+    }
+  }
+
+  // Validate permission level
+  const validPermissions = ['auto', 'full'];
+  const permission = validPermissions.includes(config.permission) ? config.permission : 'full';
+
+  // Return sanitized config (only known fields)
+  return {
+    role: config.role,
+    name: config.name || undefined,
+    scope: config.scope || [],
+    prompt: config.prompt || '',
+    provider: config.provider || 'claude-code',
+    model: typeof config.model === 'string' ? config.model : null,
+    workingDir: typeof config.workingDir === 'string' ? config.workingDir : undefined,
+    permission,
+  };
+}
+
+export function validateScopePattern(pattern) {
+  if (typeof pattern !== 'string') {
+    throw new Error('Scope pattern must be a string');
+  }
+  if (pattern.length > MAX_SCOPE_LENGTH) {
+    throw new Error(`Scope pattern too long (max ${MAX_SCOPE_LENGTH} chars)`);
+  }
+  // No absolute paths
+  if (pattern.startsWith('/')) {
+    throw new Error('Scope patterns cannot be absolute paths');
+  }
+  // No path traversal
+  if (pattern.includes('..')) {
+    throw new Error('Scope patterns cannot contain path traversal (..)');
+  }
+  // No null bytes
+  if (pattern.includes('\0')) {
+    throw new Error('Scope pattern contains invalid characters');
+  }
+}
+
+export function validateTeamName(name) {
+  if (!name || typeof name !== 'string') {
+    throw new Error('Team name is required');
+  }
+  if (name.length > 100) {
+    throw new Error('Team name too long (max 100 chars)');
+  }
+  // Allow spaces and special chars in display name, sanitize for filesystem separately
+}
+
+export function sanitizeForFilename(name) {
+  const sanitized = name
+    .replace(/[^a-zA-Z0-9_-]/g, '_')
+    .replace(/_+/g, '_')
+    .toLowerCase()
+    .slice(0, 50);
+
+  if (!sanitized || /^_+$/.test(sanitized)) {
+    throw new Error('Team name must contain alphanumeric characters');
+  }
+  return sanitized;
+}
+
+export function escapeMd(text) {
+  if (!text) return '';
+  // Escape markdown special chars that could break table rendering or inject formatting.
+  // Keep hyphens and dots since they're common in agent names and safe in table cells.
+  return String(text).replace(/[|\\`*_{}[\]()#+!]/g, '\\$&');
+}

package/packages/daemon/templates/api-builder.json

@@ -0,0 +1,18 @@
+{
+  "name": "api-builder",
+  "description": "Backend + Testing agents for API development",
+  "agents": [
+    {
+      "role": "backend",
+      "scope": ["src/**", "lib/**"],
+      "provider": "claude-code",
+      "prompt": "You are the backend agent. Build the API endpoints, business logic, and data layer."
+    },
+    {
+      "role": "testing",
+      "scope": ["tests/**", "test/**", "**/*.test.*", "**/*.spec.*"],
+      "provider": "claude-code",
+      "prompt": "You are the testing agent. Write comprehensive tests for the API. Monitor what the backend agent builds and ensure test coverage."
+    }
+  ]
+}

package/packages/daemon/templates/fullstack.json

@@ -0,0 +1,18 @@
+{
+  "name": "fullstack",
+  "description": "Backend + Frontend agents with scoped file ownership",
+  "agents": [
+    {
+      "role": "backend",
+      "scope": ["src/api/**", "src/server/**", "src/lib/**", "src/db/**"],
+      "provider": "claude-code",
+      "prompt": "You are the backend agent. Build and maintain the server-side code, APIs, database logic, and server utilities."
+    },
+    {
+      "role": "frontend",
+      "scope": ["src/components/**", "src/views/**", "src/pages/**", "src/styles/**", "src/hooks/**"],
+      "provider": "claude-code",
+      "prompt": "You are the frontend agent. Build and maintain the UI components, views, pages, styles, and client-side logic."
+    }
+  ]
+}

package/packages/daemon/templates/monorepo.json

@@ -0,0 +1,24 @@
+{
+  "name": "monorepo",
+  "description": "3-agent setup for monorepo projects: backend, frontend, and shared/infra",
+  "agents": [
+    {
+      "role": "backend",
+      "scope": ["packages/api/**", "packages/server/**"],
+      "provider": "claude-code",
+      "prompt": "You are the backend agent. Build and maintain the API and server packages."
+    },
+    {
+      "role": "frontend",
+      "scope": ["packages/web/**", "packages/ui/**"],
+      "provider": "claude-code",
+      "prompt": "You are the frontend agent. Build and maintain the web app and UI component packages."
+    },
+    {
+      "role": "infra",
+      "scope": ["packages/shared/**", "packages/config/**", "docker*", ".github/**", "infra/**"],
+      "provider": "claude-code",
+      "prompt": "You are the infrastructure agent. Manage shared packages, configuration, CI/CD, and deployment."
+    }
+  ]
+}