guardvibe 3.11.0 → 3.13.0

package/CHANGELOG.md

@@ -5,6 +5,24 @@ All notable changes to GuardVibe are documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [3.13.0] - 2026-06-07
+
+### Added — Season 3 S3-3: PR-native, author-independent review (441 rules / 37 tools)
+- **`guardvibe ci github --pr`** generates a `.github/workflows/guardvibe-pr-review.yml` that, on every pull request, runs a **diff-aware** scan (only the issues the PR newly introduced) and posts them as **inline review comments** on the exact file + line — the moat made visible where AI-written code lands: whole-repo aware, independent of the author, in the loop.
+- Uses `actions/github-script` to create the PR review (no extra runtime dependency), with `pull-requests: write` and a graceful fallback to a summary comment if inline review can't be posted. Pinned + auto-upgraded like the existing scan workflow.
+- Completes Season 3 (S3-1 autonomous/prioritized intel, S3-2 proof-carrying fixes, S3-3 PR-native review). New exported `buildGithubPrReviewWorkflow`; 6 tests. No rule or tool changes (441 / 37).
+
+Gate green (build / lint / test / self-audit PASS / A / 0).
+
+## [3.12.0] - 2026-06-07
+
+### Added — Season 3 S3-2: proof-carrying fixes (441 rules / 37 tools)
+- **`secure_this` now returns a `proofTest`** when it applies fixes — a runnable regression test that proves the resolved findings stay fixed, using GuardVibe's deterministic scan as the oracle: it **fails on the vulnerable code and passes on the fixed code**. It's an honest scan-based proof (not an exploit test), and a real CI regression guard: drop it in the suite and the build breaks if the vuln is reintroduced.
+- **CLI:** `guardvibe secure-this <file>` shows the proof test in markdown; `--emit-proof [path]` writes it (default `<file>.guardvibe.test.ts`). **MCP:** the `secure_this` result carries `proofTest` so agents can drop it into the project.
+- Generated only when fixes were applied (nothing to prove for already-clean or non-auto-fixable code). New `node:test`-based template; 4 new tests. No rule or tool changes (441 / 37).
+
+Gate green (build / lint / test / self-audit PASS / A / 0).
+
 ## [3.11.0] - 2026-06-07
 
 ### Changed — S3-1 (cont.): reachability-weighted dependency prioritization (441 rules / 37 tools)

package/README.md

@@ -150,7 +150,8 @@ npx guardvibe hook uninstall # Remove hook
 ### CI/CD (GitHub Actions)
 
 ```bash
-npx guardvibe ci github      # Generates .github/workflows/guardvibe.yml
+npx guardvibe ci github          # Generates .github/workflows/guardvibe.yml (SARIF scan)
+npx guardvibe ci github --pr     # + a diff-aware PR review workflow that posts inline comments
 ```
 
 ## What GuardVibe Scans

package/build/cli/ci.d.ts

@@ -2,4 +2,11 @@
  * CLI: guardvibe ci <provider>
  * Generates CI/CD workflow configurations.
  */
+/**
+ * PR-native, author-independent review workflow: on each PR, run a DIFF-AWARE scan
+ * (only issues newly introduced by the PR) and post them as inline review comments
+ * via actions/github-script — no extra runtime dependency. The moat made visible
+ * exactly where AI-written code lands.
+ */
+export declare function buildGithubPrReviewWorkflow(version: string): string;
 export declare function runCi(args: string[]): void;

package/build/cli/ci.js

@@ -45,6 +45,78 @@ jobs:
           category: guardvibe
 `;
 }
+/**
+ * PR-native, author-independent review workflow: on each PR, run a DIFF-AWARE scan
+ * (only issues newly introduced by the PR) and post them as inline review comments
+ * via actions/github-script — no extra runtime dependency. The moat made visible
+ * exactly where AI-written code lands.
+ */
+export function buildGithubPrReviewWorkflow(version) {
+    return `name: GuardVibe PR Review
+# Pinned to guardvibe@${version}. Re-run \`npx guardvibe ci github --pr\` to upgrade.
+# Diff-aware: comments only on issues this PR newly introduced (not pre-existing debt).
+
+on:
+  pull_request:
+    branches: [main, master]
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  guardvibe-pr-review:
+    name: GuardVibe PR Review
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          persist-credentials: false
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version: "22"
+
+      - name: GuardVibe diff-aware scan (newly-introduced issues only)
+        run: |
+          git fetch --no-tags --depth=1 origin "\${{ github.base_ref }}"
+          npx -y guardvibe@${version} diff "origin/\${{ github.base_ref }}" --format json --output gv-diff.json || true
+
+      - name: Post findings as PR review comments
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const fs = require('fs');
+            let data;
+            try { data = JSON.parse(fs.readFileSync('gv-diff.json', 'utf8')); } catch (e) { return; }
+            const findings = (data.findings || []).filter(f => f.line > 0);
+            if (!findings.length) return;
+            const comments = findings.map(f => ({
+              path: f.file,
+              line: f.line,
+              body: '**GuardVibe ' + String(f.severity).toUpperCase() + ': ' + f.name + '** (' + f.id + ')\\n\\n' + (f.fix || '')
+            }));
+            const summary = 'GuardVibe found ' + findings.length + ' newly-introduced issue(s) in this PR.';
+            try {
+              await github.rest.pulls.createReview({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                pull_number: context.issue.number,
+                event: 'COMMENT',
+                body: summary,
+                comments
+              });
+            } catch (e) {
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                issue_number: context.issue.number,
+                body: summary + ' (inline review unavailable: ' + e.message + ')'
+              });
+            }
+`;
+}
 /** Extract a pinned guardvibe version from a generated workflow YAML, or "latest"/null for legacy/unrecognized forms. */
 function extractPinnedVersionFromWorkflow(content) {
     const pinned = content.match(/guardvibe@(\d+\.\d+\.\d+(?:-[\w.]+)?)/);
@@ -85,14 +157,43 @@ function generateGitHubActions() {
     console.log(`  [OK] Created .github/workflows/guardvibe.yml (pinned to v${pkg.version}).`);
     console.log("  [OK] SARIF results will appear in GitHub Security tab.");
 }
+function generateGitHubPrReview() {
+    const workflowDir = join(process.cwd(), ".github", "workflows");
+    if (!existsSync(workflowDir))
+        mkdirSync(workflowDir, { recursive: true });
+    const workflowPath = join(workflowDir, "guardvibe-pr-review.yml");
+    const fresh = buildGithubPrReviewWorkflow(pkg.version);
+    if (existsSync(workflowPath)) {
+        const existingPin = extractPinnedVersionFromWorkflow(readFileSync(workflowPath, "utf-8"));
+        if (existingPin === pkg.version) {
+            console.log(`  [OK] .github/workflows/guardvibe-pr-review.yml already up-to-date (pinned to v${pkg.version}).`);
+            return;
+        }
+        if (existingPin) {
+            writeFileSync(workflowPath, fresh, "utf-8");
+            console.log(`  [OK] Updated .github/workflows/guardvibe-pr-review.yml (${existingPin} → ${pkg.version}).`);
+            return;
+        }
+        console.log("  [OK] .github/workflows/guardvibe-pr-review.yml exists with custom contents — leaving as-is.");
+        return;
+    }
+    writeFileSync(workflowPath, fresh, "utf-8");
+    console.log(`  [OK] Created .github/workflows/guardvibe-pr-review.yml (pinned to v${pkg.version}).`);
+    console.log("  [OK] PRs will get inline, diff-aware GuardVibe review comments.");
+}
 export function runCi(args) {
     const provider = args[0]?.toLowerCase();
+    const wantPr = args.includes("--pr");
     console.log(`\n  GuardVibe CI/CD Setup\n`);
     if (provider === "github") {
         generateGitHubActions();
+        if (wantPr)
+            generateGitHubPrReview();
+        else
+            console.log("  [tip] Add --pr to also generate a diff-aware PR review workflow (inline comments).");
     }
     else {
-        console.error("  [ERR] Unknown CI provider. Usage: npx guardvibe ci github");
+        console.error("  [ERR] Unknown CI provider. Usage: npx guardvibe ci github [--pr]");
         process.exit(1);
     }
     console.log();

package/build/cli/secure-this.js

@@ -56,6 +56,9 @@ function renderMarkdown(r, file, wrote) {
         lines.push(`> Wrote ${r.applied.length} verified fix(es) to ${file}.`, "");
     }
     lines.push(`**Definition of done:** ${r.definitionOfDone.passed ? "PASSED ✅" : "FAILED ❌"} — ${r.definitionOfDone.message}`);
+    if (r.proofTest) {
+        lines.push("", "## Regression proof test", "Run on the fixed file to prove it stays fixed (`--emit-proof <path>` to save it):", "", "```ts", r.proofTest.trimEnd(), "```");
+    }
     return lines.join("\n");
 }
 export async function runSecureThis(args) {
@@ -81,6 +84,13 @@ export async function runSecureThis(args) {
     if (write && result.changed) {
         writeFileSync(resolved, result.fixedCode, "utf-8");
     }
+    // --emit-proof [path]: write the regression proof test (default: <file>.guardvibe.test.ts).
+    const emitProof = flags["emit-proof"];
+    if (emitProof && result.proofTest) {
+        const proofPath = typeof emitProof === "string" ? resolve(emitProof) : `${resolved}.guardvibe.test.ts`;
+        writeFileSync(proofPath, result.proofTest, "utf-8");
+        console.log(`  [OK] Proof test written to ${proofPath}`);
+    }
     const format = flags.format === "json" ? "json" : "markdown";
     if (format === "json") {
         console.log(JSON.stringify({ ...result, file: resolved, wrote: write && result.changed }));

package/build/cli.js

@@ -37,7 +37,7 @@ function printUsage() {
     npx guardvibe init <platform>    Setup MCP server configuration
     npx guardvibe hook install       Install pre-commit security hook
     npx guardvibe hook uninstall     Remove pre-commit security hook
-    npx guardvibe ci github          Generate GitHub Actions workflow
+    npx guardvibe ci github [--pr]   Generate GitHub Actions workflow (--pr: diff-aware PR review with inline comments)
 
   Scan CLI (used by pre-commit hook and CI):
     npx guardvibe-scan               Scan git-staged files

package/build/index.js

@@ -319,7 +319,7 @@ server.tool("fix_code", "Pass vulnerable code as a string and get fix suggestion
     };
 });
 // Tool 37: secure_this — close the loop (scan → apply verified fix → re-verify)
-server.tool("secure_this", "Close the loop on vulnerabilities in code: scan, apply only the fixes that VERIFIABLY land (each candidate edit is re-scanned and rolled back if it fails to resolve the issue or introduces a new one), and return the verified code plus a definition-of-done gate. Prefer this over fix_code+verify_fix when you want a guarantee the fix landed — not just a suggestion. Returns { status: clean|secured|partial|no_autofix, fixedCode, applied[], remaining[], definitionOfDone:{passed,message} }. Write fixedCode to disk, then require definitionOfDone.passed before claiming the task complete; anything in remaining[] needs a manual fix. Example: secure_this({code: '...', language: 'typescript'})", {
+server.tool("secure_this", "Close the loop on vulnerabilities in code: scan, apply only the fixes that VERIFIABLY land (each candidate edit is re-scanned and rolled back if it fails to resolve the issue or introduces a new one), and return the verified code plus a definition-of-done gate. Prefer this over fix_code+verify_fix when you want a guarantee the fix landed — not just a suggestion. Returns { status: clean|secured|partial|no_autofix, fixedCode, applied[], remaining[], definitionOfDone:{passed,message}, proofTest }. Write fixedCode to disk, then require definitionOfDone.passed before claiming the task complete; anything in remaining[] needs a manual fix. When fixes were applied, proofTest is a runnable regression test (GuardVibe-as-oracle) you can drop into the project to guard against regressions. Example: secure_this({code: '...', language: 'typescript'})", {
     code: z.string().describe("The code to scan and secure"),
     language: z
         .enum(["javascript", "typescript", "python", "go", "dockerfile", "html", "sql", "shell", "yaml", "terraform", "firestore"])

package/build/tools/secure-this.d.ts

@@ -31,6 +31,12 @@ export interface SecureThisResult {
         passed: boolean;
         message: string;
     };
+    /**
+     * A runnable regression test that proves the resolved findings stay fixed.
+     * Deterministic scan-based proof (GuardVibe is the oracle): run on the vulnerable
+     * code it fails, on the fixed code it passes. Present only when fixes were applied.
+     */
+    proofTest?: string;
 }
 export interface SecureThisOptions {
     framework?: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "guardvibe",
-  "version": "3.11.0",
+  "version": "3.13.0",
   "mcpName": "io.github.goklab/guardvibe",
   "description": "Security infrastructure your AI can't be — deterministic, current past your model's training cutoff, whole-repo-aware, author-independent. Security MCP for vibe coding. 441 rules, 37 tools, CLI + doctor. Host security, auth coverage mapping, LLM-powered deep scan (IDOR/business logic), taint analysis. 70 CVE rules refreshed daily from GHSA/OSV/CISA KEV — React Router 7 cluster, DOMPurify XSS, Better Auth bypass, Miasma @redhat-cloud-services compromise, Next.js May 2026 13-advisory cluster, Drizzle/MikroORM/Kysely SQL injection, Axios proxy-auth redirect leak, Hono setCookie attribute injection, Clerk SSRF, tRPC prototype pollution, @tanstack supply-chain, node-ipc protestware, OpenClaude sandbox bypass, plus the full AI-generated stack (Supabase, Stripe, Prisma, Hono, GraphQL, Convex, Turso, Uploadthing, AI SDK). 68 AI-native rules including OWASP MCP Top 10 tool-description prompt injection (VG1068), model-controlled sandbox-disable flag detection (VG1063), Session messenger exfil endpoint IOC (VG1075), and CI/CD supply-chain hardening (VG1070 npm --expect-provenance / --ignore-scripts enforcement).",
   "type": "module",