maiass 5.9.18 → 5.9.19

package/lib/commit.js

@@ -1,6 +1,6 @@
 // Commit functionality for MAIASS - port of maiass.sh commit behavior
 import { execSync } from 'child_process';
-import { log } from './logger.js';
+import { log, redact } from './logger.js';
 import { SYMBOLS } from './symbols.js';
 import { getGitInfo, getGitStatus } from './git-info.js';
 import readline from 'readline';
@@ -171,7 +171,7 @@ async function createAnonymousSubscriptionIfNeeded() {
     
     if (debugMode) {
       log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Creating anonymous subscription at: ${endpoint}/v1/token`);
-      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Machine fingerprint: ${JSON.stringify(machineFingerprint, null, 2)}`);
+      log.trace(SYMBOLS.INFO, `[MAIASS TRACE] Machine fingerprint: ${JSON.stringify(machineFingerprint, null, 2)}`);
     }
     
     log.info(SYMBOLS.INFO, 'Requesting anonymous subscription...');
@@ -209,7 +209,8 @@ async function createAnonymousSubscriptionIfNeeded() {
     const data = await response.json();
     
     if (debugMode) {
-      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Anonymous subscription response: ${JSON.stringify(data, null, 2)}`);
+      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Anonymous subscription: api_key=${redact(data.apiKey || data.api_key || data.token)}, credits=${data.creditsRemaining || data.credits_remaining || data.credits}`);
+      log.trace(SYMBOLS.INFO, `[MAIASS TRACE] Anonymous subscription response: ${JSON.stringify(data, null, 2)}`);
     }
     
     // Extract fields - try multiple field names for compatibility
@@ -294,7 +295,7 @@ async function getAICommitSuggestion(gitInfo) {
     log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] AI Endpoint: ${aiEndpoint}`);
     log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Token available: ${maiassToken ? 'Yes' : 'No'}`);
     if (maiassToken) {
-      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Token preview: ${maiassToken.substring(0, 8)}...`);
+      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Token: ${redact(maiassToken)}`);
     }
   }
   
@@ -416,7 +417,8 @@ ${gitDiff}`;
     if (debugMode) {
       log.debug(SYMBOLS.INFO, '[MAIASS DEBUG] --- Making AI API Request ---');
       log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Request URL: ${aiEndpoint}`);
-      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Request body: ${JSON.stringify(requestBody, null, 2)}`);
+      log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Request model=${requestBody.model} max_tokens=${requestBody.max_tokens}`);
+      log.trace(SYMBOLS.INFO, `[MAIASS TRACE] Request body: ${JSON.stringify(requestBody, null, 2)}`);
     }
 
     // Set timeout for API call (default 30 seconds)
@@ -456,7 +458,7 @@ ${gitDiff}`;
       
       if (debugMode) {
         log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Response status: ${response.status} ${response.statusText}`);
-        log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Response headers: ${JSON.stringify(Object.fromEntries(response.headers), null, 2)}`);
+        log.trace(SYMBOLS.INFO, `[MAIASS TRACE] Response headers: ${JSON.stringify(Object.fromEntries(response.headers), null, 2)}`);
       }
       
       if (!response.ok) {
@@ -472,7 +474,8 @@ ${gitDiff}`;
       const data = await response.json();
       
       if (debugMode) {
-        log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Response data: ${JSON.stringify(data, null, 2)}`);
+        log.debug(SYMBOLS.INFO, `[MAIASS DEBUG] Response status: ${data.choices?.length || 0} choices, model=${data.model || 'unknown'}`);
+        log.trace(SYMBOLS.INFO, `[MAIASS TRACE] Response data: ${JSON.stringify(data, null, 2)}`);
       }
       
       if (data.choices && data.choices.length > 0) {

package/lib/logger.js

@@ -12,6 +12,60 @@ let env = {};
 let debugBuffer = [];
 let sessionId = null;
 
+/**
+ * Get the effective verbosity level, accounting for MAIASS_DEBUG
+ * @returns {string} 'brief' | 'normal' | 'verbose' | 'debug' | 'trace'
+ */
+function getVerbosity() {
+  return env.MAIASS_VERBOSITY || process.env.MAIASS_VERBOSITY || 'brief';
+}
+
+/**
+ * Check if trace mode is active (MAIASS_VERBOSITY=trace)
+ * Trace-level output goes to the log file only, never stdout/stderr.
+ */
+function isTrace() {
+  return getVerbosity() === 'trace';
+}
+
+/**
+ * Check if debug mode is active (MAIASS_DEBUG=true, or verbosity is debug/trace)
+ */
+function isDebug() {
+  if (env.MAIASS_DEBUG === 'true' || env.MAIASS_DEBUG === true ||
+      process.env.MAIASS_DEBUG === 'true' || process.env.MAIASS_DEBUG === true) return true;
+  const v = getVerbosity();
+  return v === 'debug' || v === 'trace';
+}
+
+/**
+ * Redact a sensitive value for safe display.
+ * "anon_b5bf3eb9-26b9-4c67-99c3-4fd1737ef6a4" → "anon_b5b...a4"
+ */
+export function redact(value) {
+  if (value == null) return 'null';
+  const s = String(value);
+  if (s.length <= 8) return '***';
+  return `${s.slice(0, 8)}...${s.slice(-2)}`;
+}
+
+/**
+ * Write a message to maiass.log (append).
+ * Respects MAIASS_LOGGING and MAIASS_LOG_FILE.
+ */
+function writeToLogFile(message) {
+  const loggingEnabled = env.MAIASS_LOGGING || process.env.MAIASS_LOGGING;
+  if (loggingEnabled !== 'true' && loggingEnabled !== true) return;
+  
+  const logFile = env.MAIASS_LOG_FILE || process.env.MAIASS_LOG_FILE || 'maiass.log';
+  try {
+    const timestamp = new Date().toISOString().replace('T', ' ').replace(/\.\d+Z$/, '');
+    fs.appendFileSync(logFile, `[${timestamp}] ${message}\n`);
+  } catch (e) {
+    // Silently ignore log write failures
+  }
+}
+
 /**
  * Initialize debug collection session
  */
@@ -86,7 +140,7 @@ export function initLogger(environment) {
  * @returns {boolean} - Whether to show the message
  */
 function shouldLog(level) {
-  const verbosity = env.MAIASS_VERBOSITY || process.env.MAIASS_VERBOSITY || 'brief';
+  const verbosity = getVerbosity();
   
   // Always show errors, prompts, and critical messages
   if (['error', 'critical', 'prompt'].includes(level)) return true;
@@ -101,8 +155,8 @@ function shouldLog(level) {
     return ['error', 'warning', 'success', 'info', 'critical', 'prompt'].includes(level);
   }
   
-  // For verbose/debug: show everything
-  if (verbosity === 'verbose' || verbosity === 'debug') {
+  // For verbose/debug/trace: show everything
+  if (verbosity === 'verbose' || verbosity === 'debug' || verbosity === 'trace') {
     return true;
   }
   
@@ -209,34 +263,39 @@ export const log = {
     console.log(colorFn(message));
   },
 
-  // debug message (with MAIASS branding)
+  // debug message (with MAIASS branding) — shown on stderr, redacted
   debug: (label, data) => {
-    const debugEnabled = env.MAIASS_DEBUG === 'true' || env.MAIASS_DEBUG === true || 
-                        process.env.MAIASS_DEBUG === 'true' || process.env.MAIASS_DEBUG === true;
-    if (!debugEnabled) return;
+    if (!isDebug()) return;
     
     const timestamp = new Date().toISOString();
     const debugPrefix = colors.BSoftPink('|))  ') + colors.Blue('🐛  ');
     const timestampStr = colors.Gray(`[${timestamp}]`);
     
-    // Ensure we're writing to stderr to avoid mixing with other output
     const output = process.stderr;
-    
-    // Write the debug message header
     output.write(`${debugPrefix} ${timestampStr} ${colors.Blue(label)}\n`);
     
-    // If we have data, pretty-print it with 2-space indentation
     if (data !== undefined) {
       const jsonStr = typeof data === 'string' ? data : JSON.stringify(data, null, 2);
-      // Split into lines and indent each line
       const lines = jsonStr.split('\n');
       for (const line of lines) {
         output.write(`  ${colors.Gray(line)}\n`);
       }
     }
     
-    // Ensure everything is flushed
     output.write('');
+    
+    // Also write to log file (unredacted) if logging is enabled
+    const dataStr = data !== undefined ? (typeof data === 'string' ? data : JSON.stringify(data)) : '';
+    writeToLogFile(`DEBUG: ${label} ${dataStr}`);
+  },
+
+  // trace message — log file ONLY, never stdout/stderr.
+  // Use for full API responses, .env dumps, fingerprint details, etc.
+  trace: (label, data) => {
+    if (!isTrace()) return;
+    
+    const dataStr = data !== undefined ? (typeof data === 'string' ? data : JSON.stringify(data, null, 2)) : '';
+    writeToLogFile(`TRACE: ${label} ${dataStr}`);
   },
 
   // Indented with arrow (for config values, etc.)

package/lib/machine-fingerprint.js

@@ -156,7 +156,7 @@ export function generateMachineFingerprintV1() {
     
     const hash = crypto.createHash('sha256').update(fingerprintInput).digest('hex');
     
-    logger.debug('Machine fingerprint V1 components:', {
+    logger.trace('Machine fingerprint V1 components:', {
       mac: mac,
       cpu: cpu,
       disk: disk,
@@ -193,7 +193,7 @@ export function generateMachineFingerprint() {
     // Generate SHA-256 hash in hex format to match bashmaiass
     const hash = crypto.createHash('sha256').update(fingerprintInput).digest('hex');
     
-    logger.debug('Machine fingerprint V2 components:', {
+    logger.trace('Machine fingerprint V2 components:', {
       mac: mac,
       cpu: cpu,
       disk: disk,

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "maiass",
   "type": "module",
-  "version": "5.9.18",
+  "version": "5.9.19",
   "description": "MAIASS - Modular AI-Augmented Semantic Scribe - Intelligent Git workflow automation",
   "main": "maiass.mjs",
   "bin": {