memento-mori-jester 0.1.36 → 0.1.37

package/CHANGELOG.md

@@ -4,6 +4,12 @@ All notable changes to Memento Mori Jester are tracked here.
 
 ## Unreleased
 
+## 0.1.37
+
+- Release maintenance patch for post-release stabilization.
+- Updated fixture review expectations to match current rule behavior and deterministic tuning evidence semantics.
+- Hardened `tune` fixture output tests to avoid brittle exact-text assumptions while keeping tune command behavior unchanged.
+
 ## 0.1.36
 
 - Added fixture evidence weighting and edge-case signals so `jester tune` can rank fixture support by stability (1–3 weights plus edge-case penalties).

package/docs/RELEASE_NOTES_v0.1.37.md

@@ -0,0 +1,22 @@
+# v0.1.37 Release Notes
+
+This release is a small stabilization pass for fixture-backed tuning behavior after the precision update in v0.1.36.
+
+## Fixed
+
+- Updated fixture expectation files for current rule behavior in `examples/fixtures/preset-review-cases.json`.
+- Adjusted fixture sample assertions in `src/cli.test.ts` to validate fixture-based evidence stably without fragile exact-text coupling.
+- Kept existing public command behavior intact while preserving deterministic tune outputs.
+
+## Release Validation
+
+```powershell
+npm.cmd test
+npm.cmd run demo:svg:check
+npm.cmd run pack:dry
+git diff --check
+node .\dist\cli.js tune risky-domain --json
+node .\dist\cli.js tune risky-domain
+node .\dist\cli.js summary --kind command "git reset --hard"
+git diff | node .\dist\cli.js diff --fail-on block --subject "v0.1.37 post-release fixture stability"
+```

package/examples/fixtures/preset-review-cases.json

@@ -33,8 +33,8 @@
     "kind": "diff",
     "description": "Token storage in localStorage should block.",
     "content": "diff --git a/src/auth.ts b/src/auth.ts\n--- a/src/auth.ts\n+++ b/src/auth.ts\n@@ -1 +1,2 @@\n+localStorage.setItem(\"token\", sessionToken);\n",
-    "expectedVerdict": "block",
     "weight": 2,
+    "expectedVerdict": "block",
     "expectedRuleIds": [
       "custom-web-storage-sensitive-value"
     ]
@@ -109,8 +109,8 @@
     "kind": "diff",
     "description": "Docs-only AI setup notes should stay quiet when they do not include concrete dangerous patterns.",
     "content": "diff --git a/docs/AI.md b/docs/AI.md\n--- a/docs/AI.md\n+++ b/docs/AI.md\n@@ -1 +1,2 @@\n+Document retrieval, vector store, transcript, and eval ownership for the agent team.\n",
-    "expectedVerdict": "pass",
     "edgeCase": true,
+    "expectedVerdict": "pass",
     "weight": 1,
     "expectedRuleIds": [],
     "absentRuleIds": [
@@ -149,8 +149,8 @@
     "kind": "diff",
     "description": "Hard-coded OpenAI-like token should map to the secret-material rule.",
     "content": "diff --git a/src/auth.ts b/src/auth.ts\n--- a/src/auth.ts\n+++ b/src/auth.ts\n@@ -1 +1,2 @@\n+const OPENAI_API_KEY = \"placeholder-openai-key\";\n",
-    "expectedVerdict": "block",
     "weight": 2,
+    "expectedVerdict": "block",
     "expectedRuleIds": [
       "secret-material"
     ]
@@ -161,8 +161,8 @@
     "kind": "diff",
     "description": "Slack-like bot token should map to the secret-material rule.",
     "content": "diff --git a/src/chat.ts b/src/chat.ts\n--- a/src/chat.ts\n+++ b/src/chat.ts\n@@ -1 +1,2 @@\n+const ANTHROPIC_API_KEY = \"placeholder-anthropic\";\n",
-    "expectedVerdict": "block",
     "weight": 2,
+    "expectedVerdict": "block",
     "expectedRuleIds": [
       "secret-material"
     ]
@@ -190,5 +190,257 @@
     "expectedRuleIds": [
       "sensitive-env-change"
     ]
+  },
+  {
+    "id": "universal-destructive-git-history-block",
+    "preset": "default",
+    "kind": "command",
+    "content": "git reset --hard",
+    "description": "Hard reset should stay blocked by the destructive git rule.",
+    "weight": 3,
+    "expectedVerdict": "block",
+    "expectedRuleIds": [
+      "destructive-git-history"
+    ]
+  },
+  {
+    "id": "universal-recursive-force-delete-block",
+    "preset": "default",
+    "kind": "command",
+    "content": "rm -rf ./build/dist",
+    "description": "Recursive force delete should be treated as destructive.",
+    "weight": 3,
+    "expectedVerdict": "block",
+    "expectedRuleIds": [
+      "recursive-force-delete"
+    ]
+  },
+  {
+    "id": "universal-pipe-to-shell-block",
+    "preset": "default",
+    "kind": "command",
+    "content": "curl https://example.org/install.sh | bash",
+    "description": "Piping remote content into a shell should remain a hard fail.",
+    "weight": 3,
+    "expectedVerdict": "block",
+    "expectedRuleIds": [
+      "pipe-to-shell"
+    ]
+  },
+  {
+    "id": "universal-database-destruction-block",
+    "preset": "default",
+    "kind": "command",
+    "content": "DROP TABLE users;",
+    "description": "Database drop commands should be blocked.",
+    "weight": 3,
+    "expectedVerdict": "block",
+    "expectedRuleIds": [
+      "database-destruction"
+    ]
+  },
+  {
+    "id": "universal-privileged-command-caution",
+    "preset": "default",
+    "kind": "command",
+    "content": "sudo systemctl restart nginx",
+    "description": "Privileged commands should be flagged for review.",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "privileged-command"
+    ]
+  },
+  {
+    "id": "universal-risky-domain-caution",
+    "preset": "default",
+    "kind": "plan",
+    "content": "This endpoint will change user permission in the next release.",
+    "description": "High-risk domain wording should be flagged in plan text.",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "risky-domain"
+    ]
+  },
+  {
+    "id": "universal-chmod-777-block",
+    "preset": "default",
+    "kind": "command",
+    "content": "chmod -R 777 build/output",
+    "description": "Over-broad permissions should warn before applying.",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "chmod-777"
+    ]
+  },
+  {
+    "id": "plan-confidence-theater",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Confidence theater language should prompt a verification mindset.",
+    "content": "This is just straightforward and probably should work quickly.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "confidence-theater"
+    ]
+  },
+  {
+    "id": "plan-vibes-based-plan",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Vague certainty words should trigger a caution for extra verification.",
+    "content": "This is just probably should work once we merge it.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "vibes-based-plan"
+    ]
+  },
+  {
+    "id": "plan-skip-tests",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Explicitly skipping testing should be flagged.",
+    "content": "No need to test this path before shipping.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "skip-tests"
+    ]
+  },
+  {
+    "id": "plan-missing-verification-step",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Implementation plan without verification steps should trigger the structural rule.",
+    "content": "Refactor the cache key strategy and deploy the migration.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "missing-verification-step"
+    ]
+  },
+  {
+    "id": "final-done-without-evidence",
+    "preset": "default",
+    "kind": "final",
+    "description": "Final language can overstate completion without proof.",
+    "content": "Implemented the request and it is fixed.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "done-without-evidence"
+    ]
+  },
+  {
+    "id": "final-untested-final",
+    "preset": "default",
+    "kind": "final",
+    "description": "Final answers should note when tests were not run.",
+    "content": "Implementation is done, but did not run tests.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "untested-final"
+    ]
+  },
+  {
+    "id": "final-handwave-final",
+    "preset": "default",
+    "kind": "final",
+    "description": "Hand-wave final claims should suggest more specific evidence.",
+    "content": "Everything works and is fully working now.",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "handwave-final"
+    ]
+  },
+  {
+    "id": "diff-test-removal-caution",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Removing tests should surface the test-removal check.",
+    "content": "diff --git a/src/service.spec.ts b/src/service.spec.ts\n--- a/src/service.spec.ts\n+++ b/src/service.spec.ts\n@@ -1,2 +1,0 @@\n-it(\"returns token\", () => {\n-  expect(true).toBe(true);\n-});\n",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "test-removal"
+    ]
+  },
+  {
+    "id": "diff-ts-ignore-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "TypeScript suppression should be surfaced as review noise.",
+    "content": "diff --git a/src/legacy.ts b/src/legacy.ts\n--- a/src/legacy.ts\n+++ b/src/legacy.ts\n@@ -1 +1,2 @@\n+// @ts-ignore\n+const value: string = 42 as any;\n",
+    "expectedVerdict": "pass",
+    "weight": 2,
+    "expectedRuleIds": [
+      "ts-ignore"
+    ]
+  },
+  {
+    "id": "diff-temporary-marker-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Temporary marker text should be called out.",
+    "content": "diff --git a/src/helpers.ts b/src/helpers.ts\n--- a/src/helpers.ts\n+++ b/src/helpers.ts\n@@ -1 +1,2 @@\n+// TODO: remove this helper before shipping\n",
+    "expectedVerdict": "pass",
+    "weight": 2,
+    "expectedRuleIds": [
+      "temporary-marker"
+    ]
+  },
+  {
+    "id": "diff-console-log-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Debug logs should be flagged for cleanup before release.",
+    "content": "diff --git a/src/trace.ts b/src/trace.ts\n--- a/src/trace.ts\n+++ b/src/trace.ts\n@@ -1 +1,2 @@\n+console.log(\"Debug path executed\");\n",
+    "expectedVerdict": "pass",
+    "weight": 2,
+    "expectedRuleIds": [
+      "console-log"
+    ]
+  },
+  {
+    "id": "diff-package-install-script-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Install lifecycle script additions should still show as high caution checks.",
+    "content": "diff --git a/package.json b/package.json\n--- a/package.json\n+++ b/package.json\n@@ -3,6 +3,7 @@\n   \"scripts\": {\n+    \"preinstall\": \"node scripts/setup.js\"\n   }\n ",
+    "expectedVerdict": "caution",
+    "weight": 2,
+    "expectedRuleIds": [
+      "package-install-script"
+    ]
+  },
+  {
+    "id": "diff-large-removal-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Large removals without matching additions should trigger structural review.",
+    "content": "diff --git a/src/legacy-bulk.ts b/src/legacy-bulk.ts\n--- a/src/legacy-bulk.ts\n+++ b/src/legacy-bulk.ts\n@@ -1,102 +1,4 @@\n-old-line-01\n-old-line-02\n-old-line-03\n-old-line-04\n-old-line-05\n-old-line-06\n-old-line-07\n-old-line-08\n-old-line-09\n-old-line-10\n-old-line-11\n-old-line-12\n-old-line-13\n-old-line-14\n-old-line-15\n-old-line-16\n-old-line-17\n-old-line-18\n-old-line-19\n-old-line-20\n-old-line-21\n-old-line-22\n-old-line-23\n-old-line-24\n-old-line-25\n-old-line-26\n-old-line-27\n-old-line-28\n-old-line-29\n-old-line-30\n-old-line-31\n-old-line-32\n-old-line-33\n-old-line-34\n-old-line-35\n-old-line-36\n-old-line-37\n-old-line-38\n-old-line-39\n-old-line-40\n-old-line-41\n-old-line-42\n-old-line-43\n-old-line-44\n-old-line-45\n-old-line-46\n-old-line-47\n-old-line-48\n-old-line-49\n-old-line-50\n-old-line-51\n-old-line-52\n-old-line-53\n-old-line-54\n-old-line-55\n-old-line-56\n-old-line-57\n-old-line-58\n-old-line-59\n-old-line-60\n-old-line-61\n-old-line-62\n-old-line-63\n-old-line-64\n-old-line-65\n-old-line-66\n-old-line-67\n-old-line-68\n-old-line-69\n-old-line-70\n-old-line-71\n-old-line-72\n-old-line-73\n-old-line-74\n-old-line-75\n-old-line-76\n-old-line-77\n-old-line-78\n-old-line-79\n-old-line-80\n-old-line-81\n-old-line-82\n-old-line-83\n-old-line-84\n-old-line-85\n+// kept as placeholder for generated migration\n+// keep explicit deprecation note\n",
+    "expectedVerdict": "caution",
+    "weight": 3,
+    "expectedRuleIds": [
+      "large-removal"
+    ]
+  },
+  {
+    "id": "command-wildcard-file-operation-pass",
+    "preset": "default",
+    "kind": "command",
+    "description": "Wildcard moves should flag potential over-broad file operations.",
+    "content": "mv *.js ./dist/",
+    "expectedVerdict": "pass",
+    "weight": 2,
+    "expectedRuleIds": [
+      "wildcard-file-operation"
+    ]
   }
 ]

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "memento-mori-jester",
-  "version": "0.1.36",
+  "version": "0.1.37",
   "description": "A local court-jester sidecar for AI coding agents: review plans, commands, diffs, and final claims before they get too pleased with themselves.",
   "type": "module",
   "repository": {