norn-cli 1.10.2 → 1.10.4

package/AGENTS.md

@@ -17,10 +17,10 @@ Before considering any feature complete, verify it works in the CLI. The CLI sha
 **ALWAYS use the local compiled CLI:**
 ```bash
 # Correct - runs your local development version
-node ./dist/cli.js run tests/file.norn --env prelive
+node ./dist/cli.js tests/file.norn --env prelive
 
 # WRONG - runs the published npm package, ignores your changes
-npx norn run tests/file.norn
+npx norn tests/file.norn
 ```
 
 Before testing CLI changes:
@@ -33,6 +33,7 @@ When implementing features, check the `.github/skills/` directory for relevant s
 
 - **If a skill is incorrect or outdated:** Update it with the correct information
 - **If a skill is missing:** Create a new one following the Agent Skills format
+- After creating or editing skills, run `npm run validate:skills`
 
 Skills should capture lessons learned and patterns discovered during implementation to help future development.
 

package/CHANGELOG.md

@@ -4,6 +4,20 @@ All notable changes to the "Norn" extension will be documented in this file.
 
 ## [Unreleased]
 
+## [1.10.4] - 2026-03-21
+
+### Improved
+- **Request Failure Response Panel**:
+  - Refreshed request-failure views with a clearer error summary, request context bar, structured issue cards, and common-cause guidance.
+
+### Changed
+- **Regression + Contributor Tooling**:
+  - Standardized regression test docs and scripts around `node ./dist/cli.js`, added `npm run validate:skills`, and refreshed bundled skill/demo assets.
+
+### Fixed
+- **SQL Server Live Regression Fixture**:
+  - Made the SQL Server Docker regression setup safe to rerun during repeated local release verification.
+
 ## [1.10.2] - 2026-03-15
 
 ### Fixed
@@ -677,8 +691,8 @@ All notable changes to the "Norn" extension will be documented in this file.
 - **Tag Diagnostics**: Warning when tags are placed incorrectly (not before `sequence`)
 
 ### Changed
-- **Regression Test Runner**: `run-all.sh` now supports `--tag` and `--tags` options
-  - Example: `./run-all.sh --tag smoke` runs only smoke-tagged sequences
+- **Regression Test Filtering**: Regression CLI runs support `--tag` and `--tags` options
+  - Example: `node ./dist/cli.js tests/Regression/ --env prelive --tag smoke` runs only smoke-tagged sequences
 
 ## [1.0.25] - 2026-01-28
 

package/demos/tests-showcase/01-single-requests.norn

@@ -0,0 +1,31 @@
+
+GET https://httpbin.org/uuid
+
+GET https://httpbin.org/anything/catalog?region=uk&segment=enterprise
+
+
+
+
+
+POST https://httpbin.org/post
+Content-Type: application/json
+Accept: application/json
+X-Demo-Stage: exploratory-json
+{
+    "customerId": "C-1001",
+    "workspace": "Northwind",
+    "plan": "Enterprise"
+}
+
+
+POST https://httpbin.org/post
+Content-Type: application/json
+Accept: application/json
+X-Demo-Stage: exploratory-quote
+X-Demo-Audience: exploratory-testers
+{
+    "customerId": "C-1001",
+    "step": "quote-preview",
+    "seats": 250,
+    "currency": "GBP"
+}

package/demos/tests-showcase/02-sequences.norn

@@ -0,0 +1,54 @@
+
+
+@demo
+test sequence SimpleRequestChain
+    print "Simple requests" | "Bare URLs become a repeatable flow with assertions."
+
+    GET https://httpbin.org/uuid
+    assert $1.status == 200
+    var traceId = $1.body.uuid
+
+    GET https://httpbin.org/anything/catalog?region=uk&segment=enterprise&trace={{traceId}}
+    assert $2.status == 200
+    assert $2.body.args.region == "uk"
+    assert $2.body.args.segment == "enterprise"
+    assert $2.body.url contains "{{traceId}}"
+
+    print "Trace id" | "{{traceId}}"
+end sequence
+
+@demo
+test sequence RichRequestChain
+    print "Headers and payloads" | "The same idea works when the requests carry real data."
+
+    var draft = POST https://httpbin.org/post
+    Content-Type: application/json
+    Accept: application/json
+    X-Demo-Stage: sequence-draft
+    {
+        "customerId": "C-1001",
+        "workspace": "Northwind",
+        "plan": "Enterprise"
+    }
+
+    assert draft.status == 200
+    assert draft.body.json.customerId == "C-1001"
+    var customerId = draft.body.json.customerId
+
+    var quote = POST https://httpbin.org/post
+    Content-Type: application/json
+    Accept: application/json
+    X-Demo-Stage: sequence-quote
+    {
+        "customerId": "{{customerId}}",
+        "step": "quote-preview",
+        "seats": 250,
+        "currency": "GBP"
+    }
+
+    assert quote.status == 200
+    assert quote.body.json.customerId == "C-1001"
+    assert quote.body.json.step == "quote-preview"
+
+    print "Chained value" | "customerId={{customerId}}"
+end sequence

package/demos/tests-showcase/03-sidecars.norn

@@ -0,0 +1,42 @@
+import "./demo-api.nornapi"
+
+@demo
+test sequence CleanerExplorationFlow
+    print "Cleaner requests" | "Shared setup moved into .nornapi and .nornenv."
+
+    var trace = GET GetTraceId
+    assert trace.status == 200
+
+    var catalog = GET BrowseCustomer({{demoCustomerId}}) DemoHeaders
+    assert catalog.status == 200
+    assert catalog.body.args.region == "uk"
+    assert catalog.body.url contains "/customers/C-1001"
+
+    print "Why this helps" | "The request lines stay focused on intent, not plumbing."
+end sequence
+
+@demo
+test sequence CleanerPayloadFlow
+    var draft = POST SaveDraft Json DemoHeaders
+    {
+        "customerId": "{{demoCustomerId}}",
+        "workspace": "{{workspaceName}}",
+        "owner": "{{ownerName}}"
+    }
+
+    assert draft.status == 200
+    assert draft.body.json.workspace == "Northwind-Workspace"
+
+    var quote = POST QuotePreview Json DemoHeaders
+    {
+        "customerId": "{{demoCustomerId}}",
+        "traceId": "{{tracePrefix}}-001",
+        "step": "quote-preview",
+        "seats": 250
+    }
+
+    assert quote.status == 200
+    assert quote.body.json.step == "quote-preview"
+
+    print "Cleaner file" | "Base URL, reusable headers, and shared names are all sidecars now."
+end sequence

package/demos/tests-showcase/04-api-plus-sql.norn

@@ -0,0 +1,27 @@
+import "./demo-api.nornapi"
+import "./db//testDb.nornsql"
+
+@demo
+test sequence ApiPlusSqlDemo
+    print "API plus SQL" | "Show the service call and the data-side check in one workflow."
+
+    var quote = POST QuotePreview Json DemoHeaders
+    {
+        "customerId": "{{demoCustomerId}}",
+        "step": "quote-preview",
+        "seats": 250,
+        "currency": "GBP"
+    }
+
+    assert quote.status == 200
+    assert quote.body.json.customerId == "C-1001"
+
+    var buyers = run sql ListBuyerAccounts("Enterprise")
+    assert buyers[0].Segment == "Enterprise"
+    assert buyers[0].Company == "Northwind Retail"
+
+    var audit = run sql RecordDemoRun("northwind@example.com", "buyer-showcase")
+    assert audit.affectedRows == 1
+
+    print "SQL sidecar" | "HTTP stays in .norn, SQL stays in .nornsql, config stays in sidecars."
+end sequence

package/demos/tests-showcase/db/testDb.nornsql

@@ -0,0 +1,12 @@
+connection buyerDemoDb
+
+query ListBuyerAccounts(segment)
+select Id, Company, Email, Segment
+from Buyers
+where Segment = :segment
+end query
+
+command RecordDemoRun(email, scenario)
+insert into DemoAudit (Email, Scenario)
+values (:email, :scenario)
+end command

package/demos/tests-showcase/demo-api.nornapi

@@ -0,0 +1,17 @@
+headers Json
+Content-Type: application/json
+Accept: application/json
+end headers
+
+headers DemoHeaders
+X-Demo-Stage: {{demoStage}}
+X-Demo-Audience: {{audience}}
+X-Demo-Owner: {{ownerName}}
+end headers
+
+endpoints
+    GetTraceId: GET {{baseUrl}}/uuid
+    BrowseCustomer: GET {{baseUrl}}/anything/customers/{customerId}?region={{region}}
+    SaveDraft: POST {{baseUrl}}/post
+    QuotePreview: POST {{baseUrl}}/post
+end endpoints

package/demos/tests-showcase/norn.adapters.json

@@ -0,0 +1,8 @@
+{
+  "version": 1,
+  "adapters": {
+    "buyer-demo-sql-adapter": {
+      "command": ["node", "./scripts/fake-sql-adapter.js"]
+    }
+  }
+}

package/demos/tests-showcase/norn.sql.json

@@ -0,0 +1,9 @@
+{
+  "version": 1,
+  "connections": {
+    "buyerDemoDb": {
+      "adapter": "buyer-demo-sql-adapter",
+      "profile": "buyerDemoDb"
+    }
+  }
+}

package/demos/tests-showcase/scripts/fake-sql-adapter.js

@@ -0,0 +1,70 @@
+const chunks = [];
+
+process.stdin.on('data', chunk => {
+  chunks.push(chunk);
+});
+
+process.stdin.on('end', () => {
+  try {
+    const request = JSON.parse(Buffer.concat(chunks).toString('utf8'));
+    const values = request.connection && request.connection.values ? request.connection.values : {};
+
+    if (!values.server || !values.database || !values.user || !values.password) {
+      process.stdout.write(JSON.stringify({
+        success: false,
+        error: 'Missing expected buyerDemoDb connection values'
+      }));
+      process.exit(0);
+      return;
+    }
+
+    switch (request.operation.name) {
+      case 'ListBuyerAccounts': {
+        const segment = request.params.segment;
+        process.stdout.write(JSON.stringify({
+          success: true,
+          result: {
+            kind: 'rows',
+            rowCount: 2,
+            rows: [
+              {
+                Id: 1,
+                Company: 'Northwind Retail',
+                Email: 'northwind@example.com',
+                Segment: segment
+              },
+              {
+                Id: 2,
+                Company: 'Contoso Services',
+                Email: 'contoso@example.com',
+                Segment: segment
+              }
+            ]
+          }
+        }));
+        return;
+      }
+
+      case 'RecordDemoRun':
+        process.stdout.write(JSON.stringify({
+          success: true,
+          result: {
+            kind: 'exec',
+            affectedRows: 1
+          }
+        }));
+        return;
+
+      default:
+        process.stdout.write(JSON.stringify({
+          success: false,
+          error: `Unknown buyer showcase SQL operation: ${request.operation.name}`
+        }));
+    }
+  } catch (error) {
+    process.stdout.write(JSON.stringify({
+      success: false,
+      error: error instanceof Error ? error.message : String(error)
+    }));
+  }
+});

package/dist/cli.js

@@ -109460,6 +109460,9 @@ function getConnectionValue(values, ...keys) {
 function getConnectionString(values) {
   return getConnectionValue(values, "connectionString");
 }
+function usesWindowsIntegratedSqlServerAuth(connectionString) {
+  return /(?:^|;)\s*Integrated\s+Security\s*=\s*(?:true|yes|sspi)\s*(?:;|$)/i.test(connectionString) || /(?:^|;)\s*Trusted_Connection\s*=\s*(?:true|yes|sspi)\s*(?:;|$)/i.test(connectionString);
+}
 function buildMissingConnectionError(adapterLabel, profile) {
   return `Missing required ${adapterLabel} connection string. Expected 'connectionString ${profile} = ...' in .nornenv.`;
 }
@@ -109517,7 +109520,7 @@ if ([string]::IsNullOrWhiteSpace($raw)) {
     throw 'Missing SQL adapter payload.'
 }
 
-$payload = $raw | ConvertFrom-Json -Depth 100
+$payload = $raw | ConvertFrom-Json
 $connectionString = [string]$payload.connection.values.connectionString
 if ([string]::IsNullOrWhiteSpace($connectionString)) {
     throw 'Missing SQL Server Integrated Auth connection string.'
@@ -109548,9 +109551,13 @@ $resolveHandler = [System.ResolveEventHandler]{
 $sqlText = [string]$payload.operation.sql
 $mode = [string]$payload.mode
 $paramsObject = $payload.params
+$connectionStringHasUserId = $connectionString -match '(?i)(?:^|;)s*(?:User ID|UID)s*='
+$connectionStringHasPassword = $connectionString -match '(?i)(?:^|;)s*(?:Password|PWD)s*='
 
 $connection = $null
+$connectionBuilder = $null
 try {
+    $connectionBuilder = New-Object Microsoft.Data.SqlClient.SqlConnectionStringBuilder $connectionString
     $connection = New-Object Microsoft.Data.SqlClient.SqlConnection $connectionString
     $command = $connection.CreateCommand()
     $command.CommandText = $sqlText
@@ -109622,18 +109629,97 @@ try {
     $response | ConvertTo-Json -Depth 100 -Compress
 }
 catch {
-    $details = @()
+    $details = New-Object System.Collections.Generic.List[string]
     if ($_.Exception -and $_.Exception.GetType()) {
-        $details += "type: $($_.Exception.GetType().FullName)"
+        $details.Add("type: $($_.Exception.GetType().FullName)")
     }
     if ($_.InvocationInfo -and $_.InvocationInfo.ScriptLineNumber) {
-        $details += "line: $($_.InvocationInfo.ScriptLineNumber)"
+        $details.Add("line: $($_.InvocationInfo.ScriptLineNumber)")
     }
     if ($_.FullyQualifiedErrorId) {
-        $details += "id: $($_.FullyQualifiedErrorId)"
+        $details.Add("id: $($_.FullyQualifiedErrorId)")
+    }
+
+    try {
+        $details.Add("adapter: sqlserver-windows")
+        $details.Add("powershell: $($PSVersionTable.PSVersion)")
+        $details.Add("sqlClientVersion: $(([Microsoft.Data.SqlClient.SqlConnection]).Assembly.GetName().Version)")
+        $details.Add("windowsIdentity: $([System.Security.Principal.WindowsIdentity]::GetCurrent().Name)")
+    } catch {
+    }
+
+    if ($null -ne $connectionBuilder) {
+        if (-not [string]::IsNullOrWhiteSpace([string]$connectionBuilder.DataSource)) {
+            $details.Add("dataSource: $($connectionBuilder.DataSource)")
+        }
+        if (-not [string]::IsNullOrWhiteSpace([string]$connectionBuilder.InitialCatalog)) {
+            $details.Add("database: $($connectionBuilder.InitialCatalog)")
+        }
+        $details.Add("integratedSecurity: $($connectionBuilder.IntegratedSecurity)")
+        $details.Add("encrypt: $($connectionBuilder.Encrypt)")
+        $details.Add("trustServerCertificate: $($connectionBuilder.TrustServerCertificate)")
+        $details.Add("applicationIntent: $($connectionBuilder.ApplicationIntent)")
+        $details.Add("multiSubnetFailover: $($connectionBuilder.MultiSubnetFailover)")
+
+        try {
+            $hostNameInCertificate = [string]$connectionBuilder['HostNameInCertificate']
+            if (-not [string]::IsNullOrWhiteSpace($hostNameInCertificate)) {
+                $details.Add("hostNameInCertificate: $hostNameInCertificate")
+            }
+        } catch {
+        }
+    }
+
+    $details.Add("userIdPresent: $connectionStringHasUserId")
+    $details.Add("passwordPresent: $connectionStringHasPassword")
+
+    $sqlException = $null
+    if ($_.Exception -is [Microsoft.Data.SqlClient.SqlException]) {
+        $sqlException = [Microsoft.Data.SqlClient.SqlException]$_.Exception
+    } elseif ($_.Exception -and $_.Exception.InnerException -is [Microsoft.Data.SqlClient.SqlException]) {
+        $sqlException = [Microsoft.Data.SqlClient.SqlException]$_.Exception.InnerException
+    }
+
+    if ($null -ne $sqlException) {
+        $details.Add("sqlNumber: $($sqlException.Number)")
+        $details.Add("sqlState: $($sqlException.State)")
+        $details.Add("sqlClass: $($sqlException.Class)")
+        if (-not [string]::IsNullOrWhiteSpace([string]$sqlException.Server)) {
+            $details.Add("sqlServer: $($sqlException.Server)")
+        }
+        if (-not [string]::IsNullOrWhiteSpace([string]$sqlException.Procedure)) {
+            $details.Add("sqlProcedure: $($sqlException.Procedure)")
+        }
+        if ($sqlException.LineNumber -gt 0) {
+            $details.Add("sqlLineNumber: $($sqlException.LineNumber)")
+        }
+        if ($sqlException.ClientConnectionId -ne [guid]::Empty) {
+            $details.Add("clientConnectionId: $($sqlException.ClientConnectionId)")
+        }
+        if ($sqlException.Errors -and $sqlException.Errors.Count -gt 0) {
+            $messages = @()
+            foreach ($sqlError in $sqlException.Errors) {
+                if ($sqlError -and -not [string]::IsNullOrWhiteSpace([string]$sqlError.Message)) {
+                    $messages += [string]$sqlError.Message
+                }
+            }
+            if ($messages.Count -gt 0) {
+                $details.Add("sqlErrors: $($messages -join ' | ')")
+            }
+        }
+    }
+
+    if ($_.Exception -and $_.Exception.InnerException) {
+        $details.Add("innerType: $($_.Exception.InnerException.GetType().FullName)")
+        if (-not [string]::IsNullOrWhiteSpace([string]$_.Exception.InnerException.Message)) {
+            $details.Add("innerMessage: $($_.Exception.InnerException.Message)")
+        }
+    }
+
+    [Console]::Error.WriteLine("$($_.Exception.Message)")
+    foreach ($detail in $details) {
+        [Console]::Error.WriteLine("  $detail")
     }
-    $suffix = if ($details.Count -gt 0) { " ($($details -join ', '))" } else { '' }
-    [Console]::Error.WriteLine("$($_.Exception.Message)$suffix")
     exit 1
 }
 finally {
@@ -109794,6 +109880,9 @@ async function runBuiltInSqlServerAdapter(request) {
   if (!connectionString) {
     fail(buildMissingConnectionError("SQL Server", request.connection.profile));
   }
+  if (usesWindowsIntegratedSqlServerAuth(connectionString)) {
+    fail("This SQL Server connection string uses Windows/Integrated authentication. Use adapter 'sqlserver-windows' in norn.sql.json.");
+  }
   const pool = new mssql.ConnectionPool(connectionString);
   try {
     await pool.connect();
@@ -109832,7 +109921,7 @@ async function runBuiltInSqlServerIntegratedAdapter(request) {
   const values = request.connection.values;
   const connectionString = getConnectionString(values);
   if (!connectionString) {
-    fail(buildMissingConnectionError("SQL Server Integrated Auth", request.connection.profile));
+    fail(buildMissingConnectionError("SQL Server (Windows)", request.connection.profile));
   }
   const compiled = compileSqlServerSql(request.operation.sql, request.params || {});
   const compiledRequest = {
@@ -109846,7 +109935,7 @@ async function runBuiltInSqlServerIntegratedAdapter(request) {
   try {
     return await runSqlServerIntegratedViaPowerShell(compiledRequest);
   } catch (error) {
-    throw formatBuiltInDriverError("SQL Server Integrated Auth", error);
+    throw formatBuiltInDriverError("SQL Server (Windows)", error);
   }
 }
 function isBuiltInSqlAdapter(adapterId) {

package/package.json

@@ -2,7 +2,7 @@
   "name": "norn-cli",
   "displayName": "Norn - REST Client",
   "description": "A powerful REST client for making HTTP requests with sequences, variables, scripts, and cookie support",
-  "version": "1.10.2",
+  "version": "1.10.4",
   "publisher": "Norn-PeterKrustanov",
   "author": {
     "name": "Peter Krastanov"
@@ -386,8 +386,9 @@
     "pretest": "npm run compile-tests && npm run compile && npm run lint",
     "check-types": "tsc --noEmit",
     "lint": "eslint src",
+    "validate:skills": "node ./scripts/validate-skills.mjs",
     "test": "vscode-test",
-    "test:regression": "./tests/Regression/run-all.sh",
+    "test:regression": "node ./dist/cli.js ./tests/Regression/ -e prelive",
     "publish:npm": "node -e \"const p=require('./package.json');p.name='norn-cli';require('fs').writeFileSync('package.json',JSON.stringify(p,null,2))\" && npm publish && node -e \"const p=require('./package.json');p.name='norn';require('fs').writeFileSync('package.json',JSON.stringify(p,null,2))\"",
     "publish:vsce": "node -e \"const p=require('./package.json');p.name='norn';require('fs').writeFileSync('package.json',JSON.stringify(p,null,2))\" && npx vsce publish",
     "publish:all": "npm run publish:npm && npm run publish:vsce"

package/scripts/validate-skills.mjs

@@ -0,0 +1,50 @@
+#!/usr/bin/env node
+
+import { spawnSync } from 'node:child_process';
+import { existsSync, readdirSync, statSync } from 'node:fs';
+import os from 'node:os';
+import path from 'node:path';
+
+const repoRoot = process.cwd();
+const skillsRoot = path.join(repoRoot, '.github', 'skills');
+const codexHome = process.env.CODEX_HOME || path.join(os.homedir(), '.codex');
+const validatorPath = path.join(
+  codexHome,
+  'skills',
+  '.system',
+  'skill-creator',
+  'scripts',
+  'quick_validate.py'
+);
+
+if (!existsSync(skillsRoot)) {
+  console.error(`Skills directory not found: ${skillsRoot}`);
+  process.exit(1);
+}
+
+if (!existsSync(validatorPath)) {
+  console.error(`Skill validator not found: ${validatorPath}`);
+  console.error('Install the Codex skill-creator system skill or set CODEX_HOME correctly.');
+  process.exit(1);
+}
+
+const skillDirs = readdirSync(skillsRoot)
+  .map((name) => path.join(skillsRoot, name))
+  .filter((dir) => statSync(dir).isDirectory() && existsSync(path.join(dir, 'SKILL.md')))
+  .sort();
+
+if (skillDirs.length === 0) {
+  console.log('No skills found to validate.');
+  process.exit(0);
+}
+
+for (const skillDir of skillDirs) {
+  const label = path.relative(repoRoot, skillDir);
+  console.log(`Validating ${label}`);
+  const result = spawnSync('python3', [validatorPath, skillDir], { stdio: 'inherit' });
+  if (result.status !== 0) {
+    process.exit(result.status ?? 1);
+  }
+}
+
+console.log(`Validated ${skillDirs.length} skills.`);