npm - log-llm-config - Versions diffs - 1.2.2 → 1.2.6 - Mend

log-llm-config 1.2.2 → 1.2.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/log_config_files/index.js +1 -1
package/dist/log_config_files/runtime/compliance_check.js +20 -13
package/dist/log_config_files/runtime/main_runner.js +9 -3
package/dist/log_config_files/sender/batch_sender.js +44 -3
package/package.json +1 -1

package/dist/log_config_files/index.js CHANGED Viewed

@@ -1,7 +1,7 @@
 #!/usr/bin/env node
 // Barrel — all public exports. Sub-modules live in this folder.
 export { BATCH_CHUNK_SIZE } from './sender/batch_sender.js';
-export { sendConfigFile, sendConfigFilesBatch } from './sender/batch_sender.js';
+export { sendConfigFile, sendConfigFilesBatch, sendIngestSessionStart, sendIngestSessionFinish } from './sender/batch_sender.js';
 export { createSignature, canonicalizePayload } from './sender/signing.js';
 export { readVSCDBState } from './readers/vscdb_reader.js';
 export { readJSONFile, readMarkdownFile } from './readers/file_readers.js';

package/dist/log_config_files/runtime/compliance_check.js CHANGED Viewed

@@ -206,23 +206,30 @@ export function applyAutofixViolations(violations) {
             fixed++;
             hookRunLog(`autofix: applied uuid=${inst.uuid} path=${inst.config_file_path}`);
             reportPromises.push(reportAutofixApplied(inst.uuid, 'success'));
-            if (inst.file_type) {
-                const authKey = readStoredAuthKey();
-                if (authKey) {
-                    let updatedContent;
-                    try {
-                        updatedContent = JSON.parse(readFileSync(inst.config_file_path, 'utf8'));
-                    }
-                    catch {
-                        updatedContent = undefined;
-                    }
-                    if (updatedContent !== undefined) {
-                        reportPromises.push(sendConfigFile({ file_type: inst.file_type, file_path: inst.config_file_path, raw_content: updatedContent }, resolveHardwareUuid(), authKey).then((ok) => {
-                            hookRunLog(`autofix: re-sent updated file uuid=${inst.uuid} ok=${ok}`);
+            const authKey = readStoredAuthKey();
+            if (authKey) {
+                let updatedContent;
+                try {
+                    updatedContent = JSON.parse(readFileSync(inst.config_file_path, 'utf8'));
+                }
+                catch {
+                    updatedContent = undefined;
+                }
+                if (updatedContent !== undefined) {
+                    const fileType = (inst.file_type ?? '').trim();
+                    if (fileType) {
+                        reportPromises.push(sendConfigFile({ file_type: fileType, file_path: inst.config_file_path, raw_content: updatedContent }, resolveHardwareUuid(), authKey).then((sentOk) => {
+                            hookRunLog(`autofix: uploaded remediated file uuid=${inst.uuid} path=${inst.config_file_path} ok=${sentOk}`);
                         }));
                     }
+                    else {
+                        hookRunLog(`autofix: skip upload uuid=${inst.uuid} — remediation_instructions.json missing file_type (re-sync manifest)`);
+                    }
                 }
             }
+            else {
+                hookRunLog(`autofix: skip re-upload uuid=${inst.uuid} (no stored auth key)`);
+            }
             const spec = remediationFixSpec(inst);
             if (spec?.restart_required && spec.restart_command) {
                 hookRunLog(`autofix: restart required uuid=${inst.uuid} command=${spec.restart_command}`);

package/dist/log_config_files/runtime/main_runner.js CHANGED Viewed

@@ -12,7 +12,7 @@ import { readJSONFile, readMarkdownFile } from '../readers/file_readers.js';
 import { isVscdbVirtualPath, tryReadVscdbVirtualFile } from '../readers/vscdb_config_builder.js';
 import { collectConfigFilesFromPatterns, collectMcpToolFiles, collectConfigFilesFromInstalledPlugins, determineFileTypeFromPath } from '../collection/config_collector.js';
 import { normalizePathSkipPrefixes } from '../paths/pattern_resolver.js';
-import { sendConfigFile, sendConfigFilesBatch, sendHookRequestCreate, sendHookRequestUpdateManifest, BATCH_CHUNK_SIZE } from '../sender/batch_sender.js';
+import { sendConfigFile, sendConfigFilesBatch, sendHookRequestCreate, sendHookRequestUpdateManifest, sendIngestSessionStart, sendIngestSessionFinish, BATCH_CHUNK_SIZE } from '../sender/batch_sender.js';
 import { createSignature, canonicalizePayload } from '../sender/signing.js';
 const PROJECT_ROOT = process.cwd();
 async function collectAllConfigFiles(endpointBase) {
@@ -74,9 +74,11 @@ async function sendAllConfigFiles(configFiles, hardwareUuid, authKey) {
     const manifest = configFiles.map((c) => c.file_path);
     const hookRequestId = await sendHookRequestCreate(hardwareUuid, authKey, hookType, workspaceRepo);
     hookRunLog(`hook-request id=${hookRequestId ?? 'none'}`);
+    const ingestSessionId = await sendIngestSessionStart(hardwareUuid, authKey);
+    hookRunLog(`ingest-session id=${ingestSessionId ?? 'none'}`);
     const estimatedRequests = Math.ceil(configFiles.length / BATCH_CHUNK_SIZE);
-    hookRunLog(`config send: batch ${configFiles.length} file(s) in ~${estimatedRequests} request(s)${hookRequestId != null ? ` hook_request_id=${hookRequestId}` : ''}`);
-    const batchResult = await sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequestId ?? undefined);
+    hookRunLog(`config send: batch ${configFiles.length} file(s) in ~${estimatedRequests} request(s)${hookRequestId != null ? ` hook_request_id=${hookRequestId}` : ''}${ingestSessionId ? ` ingest_session_id=${ingestSessionId}` : ''}`);
+    const batchResult = await sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequestId ?? undefined, ingestSessionId ?? undefined);
     hookRunLog(`config files ${batchResult.accepted}/${configFiles.length} logged (batch)`);
     if (batchResult.failed > 0)
         hookRunLog(`config_failed: ${batchResult.failed} item(s) in batch`);
@@ -84,6 +86,10 @@ async function sendAllConfigFiles(configFiles, hardwareUuid, authKey) {
         const ok = await sendHookRequestUpdateManifest(hardwareUuid, authKey, hookRequestId, manifest);
         hookRunLog(`hook-request update manifest result=${ok ? 'ok' : 'fail'}`);
     }
+    if (ingestSessionId && batchResult.accepted > 0) {
+        const ok = await sendIngestSessionFinish(hardwareUuid, authKey, ingestSessionId);
+        hookRunLog(`ingest-session finish result=${ok ? 'ok' : 'fail'}`);
+    }
     // Exit 0 if anything was persisted so the shell hook keeps last_log and throttles. Exit 1 only when
     // every item failed (e.g. SQLite locked on server) — otherwise partial success used to return 1,
     // the hook deleted last_log, and the next prompt re-uploaded all files every time.

package/dist/log_config_files/sender/batch_sender.js CHANGED Viewed

@@ -64,7 +64,7 @@ function splitChunk(chunks, chunkIndex) {
     chunks[chunkIndex] = chunk.slice(0, half);
     chunks.splice(chunkIndex + 1, 0, chunk.slice(half));
 }
-async function sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequestId) {
+async function sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequestId, ingestSessionId) {
     const endpoint = loadEndpointBase();
     const apiUrl = `${resolveApiBase(endpoint)}/endpoint_security/log-config-files/`;
     const metadata = { org_identifier: process.env.GITHUB_ORG || process.env.GH_ORG || '', repo_identifier: process.env.GITHUB_REPOSITORY || process.env.GH_REPOSITORY || '' };
@@ -74,7 +74,12 @@ async function sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequ
     let chunkIndex = 0;
     while (chunkIndex < chunks.length) {
         let chunk = chunks[chunkIndex];
-        const body = buildChunkBody(chunk, hardwareUuid, authKey, hookRequestId, metadata);
+        let body = buildChunkBody(chunk, hardwareUuid, authKey, hookRequestId, metadata);
+        if (ingestSessionId) {
+            const payload = { hardware_uuid: hardwareUuid, metadata, config_files: body.config_files, ingest_session_id: ingestSessionId, ...(hookRequestId != null ? { hook_request_id: hookRequestId } : {}) };
+            const signature = createSignature(payload, authKey.key);
+            body = { ...payload, signature, key_id: authKey.key_id || '' };
+        }
         const bodySize = new TextEncoder().encode(JSON.stringify(body)).length;
         // Pre-send size check: split if too large
         if (bodySize > MAX_BATCH_SIZE_BYTES && chunk.length > 1) {
@@ -109,6 +114,42 @@ async function sendConfigFilesBatch(configFiles, hardwareUuid, authKey, hookRequ
     }
     return totals;
 }
+async function sendIngestSessionStart(hardwareUuid, authKey) {
+    const endpoint = loadEndpointBase();
+    const apiUrl = `${resolveApiBase(endpoint)}/endpoint_security/ingest-session/start/`;
+    const payload = { hardware_uuid: hardwareUuid, action: 'ingest_session_start' };
+    const signature = createSignature(payload, authKey.key);
+    const body = { ...payload, signature, key_id: authKey.key_id || '' };
+    try {
+        const response = (await postStartupPayload(apiUrl, body));
+        if (response.status === 'accepted' && typeof response.ingest_session_id === 'string')
+            return response.ingest_session_id;
+        hookRunLog(`ingest-session start failed: ${response.error || response.status || 'unknown'}`);
+        return null;
+    }
+    catch (error) {
+        hookRunLog(`ingest-session start error: ${error instanceof Error ? error.message : String(error)}`);
+        return null;
+    }
+}
+async function sendIngestSessionFinish(hardwareUuid, authKey, ingestSessionId) {
+    const endpoint = loadEndpointBase();
+    const apiUrl = `${resolveApiBase(endpoint)}/endpoint_security/ingest-session/finish/`;
+    const payload = { hardware_uuid: hardwareUuid, action: 'ingest_session_finish', ingest_session_id: ingestSessionId };
+    const signature = createSignature(payload, authKey.key);
+    const body = { ...payload, signature, key_id: authKey.key_id || '' };
+    try {
+        const response = (await postStartupPayload(apiUrl, body, 120000));
+        if (response.status === 'accepted')
+            return true;
+        hookRunLog(`ingest-session finish failed: ${response.error || response.status || 'unknown'}`);
+        return false;
+    }
+    catch (error) {
+        hookRunLog(`ingest-session finish error: ${error instanceof Error ? error.message : String(error)}`);
+        return false;
+    }
+}
 async function sendConfigFile(configFile, hardwareUuid, authKey) {
     const endpoint = loadEndpointBase();
     const apiUrl = `${resolveApiBase(endpoint)}/endpoint_security/log-config-file/`;
@@ -166,4 +207,4 @@ async function sendHookRequestUpdateManifest(hardwareUuid, authKey, hookRequestI
         return false;
     }
 }
-export { sendConfigFilesBatch, sendConfigFile, sendHookRequestCreate, sendHookRequestUpdateManifest, estimateConfigFileSize };
+export { sendConfigFilesBatch, sendConfigFile, sendHookRequestCreate, sendHookRequestUpdateManifest, sendIngestSessionStart, sendIngestSessionFinish, estimateConfigFileSize };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "log-llm-config",
-  "version": "1.2.2",
+  "version": "1.2.6",
   "description": "CLI helpers for logging hardware UUIDs and posting startup payloads to Optimus Security.",
   "type": "module",
   "bin": {