memento-mori-jester 0.1.39 → 0.1.41

package/CHANGELOG.md

@@ -4,6 +4,31 @@ All notable changes to Memento Mori Jester are tracked here.
 
 ## Unreleased
 
+## 0.1.41
+
+- Added a focused precision-fixture pass for `jester tune` evidence so more sparse rule families now have at least two matching examples.
+- Added new `preset-review-cases.json` fixtures for:
+  - `universal-privileged-command-plan`
+  - `plan-skip-tests-2`
+  - `plan-vibes-based-plan-2`
+  - `diff-test-removal-caution-2`
+  - `diff-ts-ignore-pass-3`
+  - `diff-temporary-marker-pass-3`
+  - `diff-console-debug-pass`
+  - `diff-package-install-script-pass-3`
+  - `command-chmod-777-pass`
+  - `diff-large-removal-pass-2`
+- Updated demo fixture counters in `docs/DEMO.md` to the expanded corpus.
+
+## 0.1.40
+
+- Added more deterministic fixture examples for `jester tune` so sparse signals get stronger, more stable evidence:
+  - additional `ts-ignore` case
+  - additional `temporary-marker` case
+  - additional `package-install-script` case
+  - additional `wildcard-file-operation` case
+- Updated demo fixture statistics in `docs/DEMO.md` to reflect the current fixture corpus.
+
 ## 0.1.39
 
 - Added deterministic fixture support guidance to `jester tune` so each rule now gets a `support` signal:

package/ROADMAP.md

@@ -26,10 +26,11 @@ Memento Mori Jester is usable today as a CLI, MCP server, GitHub Action, and git
 - README demo snapshot generated as a small deterministic SVG.
 - Kind-aware fixture coverage and confidence-triage surface for `jester tune` outputs.
 - Deterministic tune fixture support signal (`none` / `thin` / `limited` / `strong`) for sparse/noisy families.
+- Precision-pass fixture expansion in v0.1.41 to strengthen repeat signal coverage for plan/command/diff families.
 
 ## Product Ideas
 
-- Continue precision pass work by adding custom/example-driven fixture additions for remaining sparse families and a stronger signal ranking before broad rollout.
+- Continue precision pass work by adding example-backed rule-specific fixtures for the remaining thin families, then add a second-pass confidence signal before broad rollout.
 
 ## Quality And Safety
 

package/docs/DEMO.md

@@ -180,16 +180,16 @@ Severity: S3
 Fixture tuning evidence:
 Support: thin
 Confidence: low
-Total fixtures checked: 36
-Weighted fixtures checked: 72.95
+Total fixtures checked: 50
+Weighted fixtures checked: 96.95
 Matching fixtures: 6
 Weighted matches: 13
 Expected-match weight: 2
 Unexpected-match weight: 11
 Edge-case matches: 0
-Fixture coverage: 6/36 (17.8% weighted)
-By kind: command 0, plan 3, diff 3, final 0
-By verdict: pass 0, caution 3, block 3
+Fixture coverage: 6/40 (16.9% weighted)
+By kind: command 0, plan 2, diff 4, final 0
+By verdict: pass 0, caution 5, block 1
 Matched fixture samples:
   web-token-localstorage-block: Token storage in localStorage should block.
   infra-public-ingress-block: Public ingress should block in low-risk-tolerance infra repos.

package/docs/RELEASE_NOTES_v0.1.40.md

@@ -0,0 +1,29 @@
+# v0.1.40 Release Notes
+
+This release is a precision-tuning maintenance update for `jester tune`, adding a few deterministic fixture cases so sparse-rule guidance is less jumpy.
+
+## Added
+
+- Added additional `preset-review-cases.json` fixtures for tune evidence:
+  - `diff-ts-ignore-pass-2`
+  - `diff-temporary-marker-pass-2`
+  - `diff-package-install-script-pass-2`
+  - `command-wildcard-file-operation-pass-2`
+- Updated `docs/DEMO.md` fixture counters to match the current fixture corpus.
+
+## Release Validation
+
+```powershell
+npm.cmd test
+npm.cmd run demo:svg:check
+npm.cmd run pack:dry
+git diff --check
+node .\dist\cli.js tune risky-domain --json
+node .\dist\cli.js tune risky-domain
+```
+
+## Highlights
+
+- No review behavior changes.
+- No CLI command surface changes.
+- No release/workflow behavior changes.

package/docs/RELEASE_NOTES_v0.1.41.md

@@ -0,0 +1,30 @@
+# v0.1.41 Release Notes
+
+This maintenance pass adds fixture-backed precision improvements for `jester tune` so sparse/noisy families have broader deterministic guidance coverage.
+
+## Added
+
+- Added additional deterministic fixtures to `examples/fixtures/preset-review-cases.json`:
+  - `universal-privileged-command-plan`
+  - `plan-skip-tests-2`
+  - `plan-vibes-based-plan-2`
+  - `diff-test-removal-caution-2`
+  - `diff-ts-ignore-pass-3`
+  - `diff-temporary-marker-pass-3`
+  - `diff-console-debug-pass`
+  - `diff-package-install-script-pass-3`
+  - `command-chmod-777-pass`
+  - `diff-large-removal-pass-2`
+- Updated demo fixture counters in `docs/DEMO.md` for the expanded suite.
+- No review logic or CLI behavior changes.
+
+## Release Validation
+
+```powershell
+npm.cmd test
+npm.cmd run demo:svg:check
+npm.cmd run pack:dry
+git diff --check
+node .\dist\cli.js tune risky-domain --json
+node .\dist\cli.js tune risky-domain
+```

package/examples/fixtures/preset-review-cases.json

@@ -251,6 +251,18 @@
       "privileged-command"
     ]
   },
+  {
+    "id": "universal-privileged-command-plan",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Plan language requesting elevated command should still be surfaced as privileged.",
+    "content": "This step requires sudo to patch the cert store. Keep it narrow and documented.",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "privileged-command"
+    ]
+  },
   {
     "id": "universal-risky-domain-caution",
     "preset": "default",
@@ -299,6 +311,18 @@
       "vibes-based-plan"
     ]
   },
+  {
+    "id": "plan-vibes-based-plan-2",
+    "preset": "default",
+    "kind": "plan",
+    "description": "A second style of vibes-based language should remain a caution.",
+    "content": "This is just probably should work once the cache warms up.",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "vibes-based-plan"
+    ]
+  },
   {
     "id": "plan-skip-tests",
     "preset": "default",
@@ -311,6 +335,18 @@
       "skip-tests"
     ]
   },
+  {
+    "id": "plan-skip-tests-2",
+    "preset": "default",
+    "kind": "plan",
+    "description": "Explicitly declining tests in a second style should still trigger the skip-tests check.",
+    "content": "Skip tests for this change in the rollout path.",
+    "weight": 2,
+    "expectedVerdict": "block",
+    "expectedRuleIds": [
+      "skip-tests"
+    ]
+  },
   {
     "id": "plan-missing-verification-step",
     "preset": "default",
@@ -371,6 +407,18 @@
       "test-removal"
     ]
   },
+  {
+    "id": "diff-test-removal-caution-2",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Removing another test chunk should also surface the test-removal check.",
+    "content": "diff --git a/src/utils.spec.ts b/src/utils.spec.ts\n--- a/src/utils.spec.ts\n+++ b/src/utils.spec.ts\n@@ -1,3 +1,0 @@\n-it(\"helper helper\", () => {});\n-it(\"edge\", () => {});\n",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "test-removal"
+    ]
+  },
   {
     "id": "diff-ts-ignore-pass",
     "preset": "default",
@@ -383,6 +431,30 @@
       "ts-ignore"
     ]
   },
+  {
+    "id": "diff-ts-ignore-pass-2",
+    "preset": "default",
+    "kind": "diff",
+    "description": "TypeScript ignore markers should stay visible in alternate formatting.",
+    "content": "diff --git a/src/bridge.ts b/src/bridge.ts\n--- a/src/bridge.ts\n+++ b/src/bridge.ts\n@@ -1 +1,2 @@\n+const value: string = 42 as any;\n+// @ts-ignore\n",
+    "expectedVerdict": "pass",
+    "weight": 1,
+    "expectedRuleIds": [
+      "ts-ignore"
+    ]
+  },
+  {
+    "id": "diff-ts-ignore-pass-3",
+    "preset": "default",
+    "kind": "diff",
+    "description": "TS expect-error markers should stay visible in fixture evidence too.",
+    "content": "diff --git a/src/bridge.ts b/src/bridge.ts\n--- a/src/bridge.ts\n+++ b/src/bridge.ts\n@@ -1 +1,2 @@\n+// @ts-expect-error\n+const value: number = \"oops\";\n",
+    "weight": 2,
+    "expectedVerdict": "pass",
+    "expectedRuleIds": [
+      "ts-ignore"
+    ]
+  },
   {
     "id": "diff-temporary-marker-pass",
     "preset": "default",
@@ -395,6 +467,30 @@
       "temporary-marker"
     ]
   },
+  {
+    "id": "diff-temporary-marker-pass-2",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Legacy migration markers should still trigger the temporary marker check.",
+    "content": "diff --git a/src/legacy.ts b/src/legacy.ts\n--- a/src/legacy.ts\n+++ b/src/legacy.ts\n@@ -1 +1,2 @@\n+// FIXME: remove this helper before shipping\n",
+    "expectedVerdict": "pass",
+    "weight": 1,
+    "expectedRuleIds": [
+      "temporary-marker"
+    ]
+  },
+  {
+    "id": "diff-temporary-marker-pass-3",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Hack markers should still be called out.",
+    "content": "diff --git a/src/legacy.ts b/src/legacy.ts\n--- a/src/legacy.ts\n+++ b/src/legacy.ts\n@@ -1 +1,2 @@\n+// HACK: keep this around until partner team updates their integration.\n",
+    "weight": 2,
+    "expectedVerdict": "pass",
+    "expectedRuleIds": [
+      "temporary-marker"
+    ]
+  },
   {
     "id": "diff-console-log-pass",
     "preset": "default",
@@ -407,6 +503,18 @@
       "console-log"
     ]
   },
+  {
+    "id": "diff-console-debug-pass",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Console debug calls should be flagged in alternate method form.",
+    "content": "diff --git a/src/trace.ts b/src/trace.ts\n--- a/src/trace.ts\n+++ b/src/trace.ts\n@@ -1 +1,2 @@\n+console.debug(\"Trace path entered\");\n",
+    "weight": 1,
+    "expectedVerdict": "pass",
+    "expectedRuleIds": [
+      "console-log"
+    ]
+  },
   {
     "id": "diff-package-install-script-pass",
     "preset": "default",
@@ -419,6 +527,30 @@
       "package-install-script"
     ]
   },
+  {
+    "id": "diff-package-install-script-pass-3",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Prepare/install scripts are still high-risk and should remain a fixture signal.",
+    "content": "diff --git a/package.json b/package.json\n--- a/package.json\n+++ b/package.json\n@@ -3,6 +3,7 @@\n   \"scripts\": {\n+    \"prepare\": \"node scripts/prepare.js\"\n   }\n ",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "package-install-script"
+    ]
+  },
+  {
+    "id": "diff-package-install-script-pass-2",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Postinstall script additions should share the same install-script caution.",
+    "content": "diff --git a/package.json b/package.json\n--- a/package.json\n+++ b/package.json\n@@ -3,6 +3,7 @@\n   \"scripts\": {\n+    \"postinstall\": \"node scripts/verify.js\"\n   }\n ",
+    "expectedVerdict": "caution",
+    "weight": 1,
+    "expectedRuleIds": [
+      "package-install-script"
+    ]
+  },
   {
     "id": "diff-large-removal-pass",
     "preset": "default",
@@ -442,5 +574,41 @@
     "expectedRuleIds": [
       "wildcard-file-operation"
     ]
+  },
+  {
+    "id": "command-chmod-777-pass",
+    "preset": "default",
+    "kind": "command",
+    "description": "Another over-broad permissions command should keep the same caution signal alive.",
+    "content": "chmod -R 777 ./tmp/secrets",
+    "weight": 2,
+    "expectedVerdict": "caution",
+    "expectedRuleIds": [
+      "chmod-777"
+    ]
+  },
+  {
+    "id": "command-wildcard-file-operation-pass-2",
+    "preset": "default",
+    "kind": "command",
+    "description": "Wildcard copies can also over-match files in command surfaces.",
+    "content": "cp *.md ./docs/",
+    "expectedVerdict": "pass",
+    "weight": 1,
+    "expectedRuleIds": [
+      "wildcard-file-operation"
+    ]
+  },
+  {
+    "id": "diff-large-removal-pass-2",
+    "preset": "default",
+    "kind": "diff",
+    "description": "Another large deletion example for structural coverage.",
+    "content": "diff --git a/src/big-cleanup.ts b/src/big-cleanup.ts\n--- a/src/big-cleanup.ts\n+++ b/src/big-cleanup.ts\n@@ -1,90 +1,4 @@\n-old-item-01\n-old-item-02\n-old-item-03\n-old-item-04\n-old-item-05\n-old-item-06\n-old-item-07\n-old-item-08\n-old-item-09\n-old-item-10\n-old-item-11\n-old-item-12\n-old-item-13\n-old-item-14\n-old-item-15\n-old-item-16\n-old-item-17\n-old-item-18\n-old-item-19\n-old-item-20\n-old-item-21\n-old-item-22\n-old-item-23\n-old-item-24\n-old-item-25\n-old-item-26\n-old-item-27\n-old-item-28\n-old-item-29\n-old-item-30\n-old-item-31\n-old-item-32\n-old-item-33\n-old-item-34\n-old-item-35\n-old-item-36\n-old-item-37\n-old-item-38\n-old-item-39\n-old-item-40\n-old-item-41\n-old-item-42\n-old-item-43\n-old-item-44\n-old-item-45\n-old-item-46\n-old-item-47\n-old-item-48\n-old-item-49\n-old-item-50\n-old-item-51\n-old-item-52\n-old-item-53\n-old-item-54\n-old-item-55\n-old-item-56\n-old-item-57\n-old-item-58\n-old-item-59\n-old-item-60\n-old-item-61\n-old-item-62\n-old-item-63\n-old-item-64\n-old-item-65\n-old-item-66\n-old-item-67\n-old-item-68\n-old-item-69\n-old-item-70\n-old-item-71\n-old-item-72\n-old-item-73\n-old-item-74\n-old-item-75\n-old-item-76\n-old-item-77\n-old-item-78\n-old-item-79\n-old-item-80\n-old-item-81\n-old-item-82\n-old-item-83\n-old-item-84\n-old-item-85\n+// intentional cleanup with replacement notes\n+// review replacement path separately\n",
+    "weight": 3,
+    "expectedVerdict": "pass",
+    "expectedRuleIds": [
+      "large-removal"
+    ]
   }
 ]

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "memento-mori-jester",
-  "version": "0.1.39",
+  "version": "0.1.41",
   "description": "A local court-jester sidecar for AI coding agents: review plans, commands, diffs, and final claims before they get too pleased with themselves.",
   "type": "module",
   "repository": {