loki-mode 6.27.1 → 6.27.2

package/README.md

@@ -14,7 +14,7 @@
 
 ### Traction
 
-**737 stars** | **150 forks** | **10,500+ Docker pulls** | **19,000+ npm downloads** | **588 commits** | **173 npm versions published** | **17 releases in a single day (March 18, 2026)**
+**737 stars** | **150 forks** | **10,600+ Docker pulls** | **19,000+ npm downloads** | **590 commits** | **252 releases published** | **18 releases in a single day (March 18, 2026)**
 
 ---
 

package/VERSION

@@ -1 +1 @@
-6.27.1
+6.27.2

package/dashboard/__init__.py

@@ -7,7 +7,7 @@ Modules:
     control: Session control API (start/stop/pause/resume)
 """
 
-__version__ = "6.27.1"
+__version__ = "6.27.2"
 
 # Expose the control app for easy import
 try:

package/docs/INSTALLATION.md

@@ -2,7 +2,7 @@
 
 The flagship product of [Autonomi](https://www.autonomi.dev/). Complete installation instructions for all platforms and use cases.
 
-**Version:** v6.27.1
+**Version:** v6.27.2
 
 ---
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "loki-mode",
-  "version": "6.27.1",
+  "version": "6.27.2",
   "description": "Loki Mode by Autonomi - Multi-agent autonomous startup system for Claude Code, Codex CLI, and Gemini CLI",
   "keywords": [
     "agent",

package/templates/rest-api.md

@@ -0,0 +1,43 @@
+# PRD: REST API Service
+
+## Overview
+A production-ready RESTful API backend with authentication, CRUD operations, pagination, filtering, rate limiting, and comprehensive documentation.
+
+## Target Users
+- Backend developers building API-first applications
+- Teams needing a structured API for frontend or mobile clients
+- Developers learning REST API best practices
+
+## Core Features
+1. **Authentication** - JWT-based auth with access and refresh tokens, password hashing with bcrypt
+2. **Resource CRUD** - Full create, read, update, delete operations with proper HTTP methods and status codes
+3. **Pagination and Filtering** - Cursor-based pagination, field filtering, sorting, and search across resources
+4. **Rate Limiting** - Per-endpoint and per-user rate limits with configurable windows and limits
+5. **Input Validation** - Request body and query parameter validation with detailed error messages
+6. **API Documentation** - Auto-generated OpenAPI/Swagger documentation with interactive testing
+7. **Error Handling** - Consistent error response format with appropriate HTTP status codes
+
+## Technical Requirements
+- Node.js with Express and TypeScript
+- Prisma ORM with SQLite (dev) / PostgreSQL (prod)
+- JSON Web Tokens for stateless authentication
+- Express middleware architecture
+- Environment-based configuration
+- Structured logging with request correlation IDs
+- Database migrations and seed data
+
+## Quality Gates
+- Unit tests for middleware, validators, and business logic
+- Integration tests for all API endpoints
+- Authentication flow tested end-to-end
+- Rate limiter tested under concurrent requests
+- OpenAPI spec validates against schema
+- No N+1 query issues in list endpoints
+
+## Success Metrics
+- All CRUD endpoints return correct status codes and response shapes
+- JWT auth flow works: register, login, refresh, logout
+- Pagination returns correct pages with proper metadata
+- Rate limiter blocks excessive requests with 429 responses
+- Swagger UI serves interactive documentation
+- All tests pass

package/templates/saas-app.md

@@ -0,0 +1,42 @@
+# PRD: SaaS Application
+
+## Overview
+A modern SaaS web application with user authentication, subscription billing, team management, and an admin dashboard.
+
+## Target Users
+- Indie developers launching subscription-based products
+- Small teams needing a billing-ready web application
+- Founders validating a SaaS idea quickly
+
+## Core Features
+1. **User Authentication** - Email/password signup and login with session management and email verification
+2. **OAuth Integration** - Sign in with Google and GitHub for frictionless onboarding
+3. **Subscription Billing** - Stripe integration with Free, Pro, and Enterprise pricing tiers
+4. **Admin Dashboard** - User management, subscription metrics, revenue analytics, and system health monitoring
+5. **User Settings** - Profile editing, password changes, avatar upload, and plan management
+6. **Team Management** - Invite members by email, assign roles (owner, admin, member), manage permissions
+7. **API Layer** - RESTful API with authentication middleware, rate limiting, and input validation
+
+## Technical Requirements
+- Next.js 14 with App Router and TypeScript
+- TailwindCSS with shadcn/ui components
+- Prisma ORM with PostgreSQL
+- NextAuth.js v5 for authentication
+- Stripe SDK for payment processing
+- Server-side rendering for authenticated pages
+- Middleware-based route protection
+
+## Quality Gates
+- Unit tests for business logic and utilities (Vitest)
+- API integration tests for auth flow and billing webhooks
+- E2E tests for signup, subscribe, and cancellation flow (Playwright)
+- All API routes validated with zod schemas
+- Stripe webhook signature verification
+- CSRF protection on all mutations
+
+## Success Metrics
+- User can sign up, verify email, and log in via email or OAuth
+- Subscription checkout and cancellation work end-to-end
+- Admin dashboard displays accurate user and revenue data
+- Role-based access control enforced on all routes
+- All tests pass with zero console errors

package/web-app/server.py

@@ -46,7 +46,7 @@ app = FastAPI(title="Purple Lab", docs_url=None, redoc_url=None)
 
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["*"],
+    allow_origins=["http://127.0.0.1:57375", "http://localhost:57375"],
     allow_methods=["*"],
     allow_headers=["*"],
 )