korext 0.9.9 → 0.9.11

package/bin/korext.js

@@ -367,7 +367,7 @@ program
 program
   .command('login [token]')
   .description('Authenticate with the Korext platform using a personal access token')
-  .action((tokenArg) => {
+  .action(async (tokenArg) => {
     let token = tokenArg;
     if (!token) {
       console.log(`\nTo authenticate, sign in at ${chalk.cyan('https://app.korext.com')} and use your session token.`);
@@ -377,10 +377,31 @@ program
       console.log(`\nThen run: ${chalk.green('korext login <your-token>')}\n`);
       process.exit(1);
     }
-    const config = getConfig();
-    config.token = token;
-    saveConfig(config);
-    console.log(chalk.green('✔ Successfully logged in and saved token.'));
+    // Validate token with the server before saving
+    const spinner = ora('Validating token...').start();
+    try {
+      const res = await fetch(`${API_URL}/api/ide/status`, {
+        headers: { Authorization: `Bearer ${token}` },
+        signal: AbortSignal.timeout(8000),
+      });
+      if (res.ok) {
+        const config = getConfig();
+        config.token = token;
+        saveConfig(config);
+        const data = await res.json().catch(() => ({}));
+        spinner.succeed(chalk.green(`Authenticated as ${data.workspace || 'developer'}. Token saved.`));
+      } else {
+        spinner.fail(chalk.red('Invalid or expired token. Not saved.'));
+        console.log(chalk.dim(`\nSign in at ${chalk.cyan('https://app.korext.com')} to get a valid token.`));
+        process.exit(1);
+      }
+    } catch (e) {
+      // Network error: save token optimistically but warn
+      const config = getConfig();
+      config.token = token;
+      saveConfig(config);
+      spinner.warn(chalk.yellow('Could not reach server to validate token. Token saved (will be verified on next command).'));
+    }
   });
 
 program
@@ -609,18 +630,65 @@ program
       });
 
       console.log();
-      const industryInput = await ask(chalk.bold('  Select industries (comma-separated numbers or IDs): '));
+      const industryInput = await ask(chalk.bold('  Select industries or packs (numbers, IDs, or names): '));
 
-      // Parse user input (numbers or IDs)
-      const selectedIndustries = industryInput.split(',').map(s => s.trim()).filter(Boolean).map(s => {
-        const num = parseInt(s, 10);
+      // Parse user input: accept numbers, industry IDs, industry names (fuzzy), or pack IDs
+      const rawTokens = industryInput.split(',').map(s => s.trim()).filter(Boolean);
+      const selectedIndustries = [];
+      const directPacks = [];
+
+      for (const token of rawTokens) {
+        const lower = token.toLowerCase();
+
+        // Strategy 1: Number (e.g., "8" for Finance)
+        const num = parseInt(token, 10);
         if (!isNaN(num) && num >= 1 && num <= sortedIndustries.length) {
-          return sortedIndustries[num - 1][0];
+          selectedIndustries.push(sortedIndustries[num - 1][0]);
+          continue;
+        }
+
+        // Strategy 2: Industry ID exact match (e.g., "finance")
+        if (taxonomy.industries[lower]) {
+          selectedIndustries.push(lower);
+          continue;
+        }
+
+        // Strategy 3: Industry label fuzzy match (e.g., "Finance", "health", "aero")
+        const labelMatch = sortedIndustries.find(([id, group]) =>
+          group.label.toLowerCase().startsWith(lower)
+        );
+        if (labelMatch) {
+          selectedIndustries.push(labelMatch[0]);
+          console.log(chalk.dim(`  "${token}" matched industry: ${labelMatch[1].label}`));
+          continue;
+        }
+
+        // Strategy 4: Direct pack ID (e.g., "web", "pci-dss-v1", "security")
+        const allPackIds = Object.keys(defs.packs);
+        if (allPackIds.includes(lower)) {
+          directPacks.push(lower);
+          console.log(chalk.dim(`  "${token}" is a pack ID, adding directly.`));
+          continue;
         }
-        return s.toLowerCase();
-      }).filter(id => taxonomy.industries[id]);
 
-      if (selectedIndustries.length === 0) {
+        // Nothing matched
+        console.log(chalk.yellow(`  Unknown input: "${token}" (not an industry, pack ID, or name)`));
+      }
+
+      // If user typed only pack IDs (e.g., "web" or "web, security"), skip region prompt
+      if (selectedIndustries.length === 0 && directPacks.length > 0) {
+        const config = {
+          targetPacks: directPacks,
+          exclude: ['node_modules', 'dist', 'build', '.next']
+        };
+        fs.writeFileSync(outputPath, JSON.stringify(config, null, 2));
+        console.log(chalk.green(`\n  Created ${outputPath} with packs: ${directPacks.join(', ')}\n`));
+        console.log(chalk.dim(`  Run: ${chalk.green('korext enforce .')} to enforce these packs.\n`));
+        rl.close();
+        process.exit(0);
+      }
+
+      if (selectedIndustries.length === 0 && directPacks.length === 0) {
         console.log(chalk.yellow('\n  No valid industries selected. Using default: web\n'));
         const config = {
           targetPacks: ['web'],
@@ -655,22 +723,25 @@ program
         }
       }
 
-      // Resolve packs
+      // Resolve packs from industries
       const resolvedPacks = resolvePacksForIndustryRegion(
         selectedIndustries.join(','),
         selectedRegion,
         taxonomy
       );
 
-      console.log(chalk.green(`\n  Resolved ${resolvedPacks.length} packs for ${selectedIndustries.map(id => INDUSTRY_LABELS[id]).join(', ')}${selectedRegion ? ` (${REGION_LABELS[selectedRegion] || selectedRegion})` : ''}:`));
-      for (const pid of resolvedPacks) {
+      // Merge any direct pack IDs the user typed alongside industries
+      const allPacks = [...new Set([...resolvedPacks, ...directPacks])];
+
+      console.log(chalk.green(`\n  Resolved ${allPacks.length} packs for ${selectedIndustries.map(id => INDUSTRY_LABELS[id]).join(', ')}${selectedRegion ? ` (${REGION_LABELS[selectedRegion] || selectedRegion})` : ''}${directPacks.length > 0 ? ` + ${directPacks.join(', ')}` : ''}:`));
+      for (const pid of allPacks) {
         console.log(`    ${chalk.cyan(pid)}`);
       }
 
       const config = {
         industry: selectedIndustries.join(','),
         ...(selectedRegion && { region: selectedRegion }),
-        targetPacks: resolvedPacks,
+        targetPacks: allPacks,
         exclude: ['node_modules', 'dist', 'build', '.next']
       };
 
@@ -823,6 +894,22 @@ program
       // Priority 1: User explicitly passed --pack
       packIds = options.pack.split(',').map(s => s.trim()).filter(Boolean);
       packSource = 'flag';
+
+      // Validate pack IDs against cached definitions
+      const valDefs = getRuleDefinitionsCache();
+      if (valDefs && valDefs.packs) {
+        const unknownPacks = packIds.filter(pid => !valDefs.packs[pid]);
+        if (unknownPacks.length > 0) {
+          if (isText) {
+            console.error(chalk.red(`\n✖ Unknown pack ID${unknownPacks.length > 1 ? 's' : ''}: ${unknownPacks.join(', ')}`));
+            console.error(chalk.dim(`  Run ${chalk.green('korext packs list')} to see available packs.`));
+            console.error(chalk.dim(`  Run ${chalk.green('korext rules sync')} to update cached definitions.\n`));
+          } else {
+            console.error(JSON.stringify({ error: `Unknown pack ID(s): ${unknownPacks.join(', ')}` }));
+          }
+          process.exit(1);
+        }
+      }
     } else if (options.industry) {
       // Priority 2: --industry (and optional --region) flags
       const taxonomy = tryBuildTaxonomy();
@@ -958,6 +1045,14 @@ program
       console.log(chalk.dim(`Run ${chalk.green('korext login')} to authenticate for unlimited CI/CD analytics.\n`));
     }
 
+    // BUG-002 fix: Warn when --sign is used without valid auth
+    if (options.sign && !token) {
+      if (isText) {
+        console.log(chalk.red('⚠ --sign requires authentication. Proof bundles will not be signed.'));
+        console.log(chalk.dim(`  Run ${chalk.green('korext login <token>')} first, then retry with --sign.\n`));
+      }
+    }
+
     const report = {
       version,
       packId: Array.isArray(pack) ? pack[0] : pack,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "korext",
-  "version": "0.9.9",
+  "version": "0.9.11",
   "mcpName": "io.github.Korext/governance",
   "description": "Korext Command Line Interface",
   "type": "module",