npm - nova-terminal-assistant - Versions diffs - 0.1.0 - Mend

nova-terminal-assistant 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of nova-terminal-assistant might be problematic. Click here for more details.

Files changed (192) hide show

package/README.md +358 -0
package/bin/nova +38 -0
package/bin/nova.js +12 -0
package/package.json +67 -0
package/src/cli/commands/SmartCompletion.ts +458 -0
package/src/cli/index.ts +5 -0
package/src/cli/startup/IFlowRepl.ts +212 -0
package/src/cli/startup/InkBasedRepl.ts +1056 -0
package/src/cli/startup/InteractiveRepl.ts +2833 -0
package/src/cli/startup/NovaApp.ts +1861 -0
package/src/cli/startup/index.ts +4 -0
package/src/cli/startup/parseArgs.ts +293 -0
package/src/cli/test-modules.ts +27 -0
package/src/cli/ui/IFlowDropdown.ts +425 -0
package/src/cli/ui/ModernReplUI.ts +276 -0
package/src/cli/ui/SimpleSelector2.ts +215 -0
package/src/cli/ui/components/ConfirmDialog.ts +176 -0
package/src/cli/ui/components/ErrorPanel.ts +364 -0
package/src/cli/ui/components/InkAppRunner.tsx +67 -0
package/src/cli/ui/components/InkComponents.tsx +613 -0
package/src/cli/ui/components/NovaInkApp.tsx +312 -0
package/src/cli/ui/components/ProgressBar.ts +177 -0
package/src/cli/ui/components/ProgressIndicator.ts +298 -0
package/src/cli/ui/components/QuickActions.ts +396 -0
package/src/cli/ui/components/SimpleErrorPanel.ts +231 -0
package/src/cli/ui/components/StatusBar.ts +194 -0
package/src/cli/ui/components/ThinkingBlockRenderer.ts +401 -0
package/src/cli/ui/components/index.ts +27 -0
package/src/cli/ui/ink-prototype.tsx +347 -0
package/src/cli/utils/CliUI.ts +336 -0
package/src/cli/utils/CompletionHelper.ts +388 -0
package/src/cli/utils/EnhancedCompleter.test.ts +226 -0
package/src/cli/utils/EnhancedCompleter.ts +513 -0
package/src/cli/utils/ErrorEnhancer.ts +429 -0
package/src/cli/utils/OutputFormatter.ts +193 -0
package/src/cli/utils/index.ts +9 -0
package/src/core/agents/AgentOrchestrator.ts +515 -0
package/src/core/agents/index.ts +17 -0
package/src/core/audit/AuditLogger.ts +509 -0
package/src/core/audit/index.ts +11 -0
package/src/core/auth/AuthManager.d.ts.map +1 -0
package/src/core/auth/AuthManager.ts +138 -0
package/src/core/auth/index.d.ts.map +1 -0
package/src/core/auth/index.ts +2 -0
package/src/core/config/ConfigManager.d.ts.map +1 -0
package/src/core/config/ConfigManager.test.ts +183 -0
package/src/core/config/ConfigManager.ts +1219 -0
package/src/core/config/index.d.ts.map +1 -0
package/src/core/config/index.ts +1 -0
package/src/core/context/ContextBuilder.d.ts.map +1 -0
package/src/core/context/ContextBuilder.ts +171 -0
package/src/core/context/ContextCompressor.d.ts.map +1 -0
package/src/core/context/ContextCompressor.ts +642 -0
package/src/core/context/LayeredMemoryManager.ts +657 -0
package/src/core/context/MemoryDiscovery.d.ts.map +1 -0
package/src/core/context/MemoryDiscovery.ts +175 -0
package/src/core/context/defaultSystemPrompt.d.ts.map +1 -0
package/src/core/context/defaultSystemPrompt.ts +35 -0
package/src/core/context/index.d.ts.map +1 -0
package/src/core/context/index.ts +22 -0
package/src/core/extensions/SkillGenerator.ts +421 -0
package/src/core/extensions/SkillInstaller.d.ts.map +1 -0
package/src/core/extensions/SkillInstaller.ts +257 -0
package/src/core/extensions/SkillRegistry.d.ts.map +1 -0
package/src/core/extensions/SkillRegistry.ts +361 -0
package/src/core/extensions/SkillValidator.ts +525 -0
package/src/core/extensions/index.ts +15 -0
package/src/core/index.d.ts.map +1 -0
package/src/core/index.ts +42 -0
package/src/core/mcp/McpManager.d.ts.map +1 -0
package/src/core/mcp/McpManager.ts +632 -0
package/src/core/mcp/index.d.ts.map +1 -0
package/src/core/mcp/index.ts +2 -0
package/src/core/model/ModelClient.d.ts.map +1 -0
package/src/core/model/ModelClient.ts +217 -0
package/src/core/model/ModelConnectionTester.ts +363 -0
package/src/core/model/ModelValidator.ts +348 -0
package/src/core/model/index.d.ts.map +1 -0
package/src/core/model/index.ts +6 -0
package/src/core/model/providers/AnthropicProvider.d.ts.map +1 -0
package/src/core/model/providers/AnthropicProvider.ts +279 -0
package/src/core/model/providers/CodingPlanProvider.d.ts.map +1 -0
package/src/core/model/providers/CodingPlanProvider.ts +210 -0
package/src/core/model/providers/OllamaCloudProvider.d.ts.map +1 -0
package/src/core/model/providers/OllamaCloudProvider.ts +405 -0
package/src/core/model/providers/OllamaManager.d.ts.map +1 -0
package/src/core/model/providers/OllamaManager.ts +201 -0
package/src/core/model/providers/OllamaProvider.d.ts.map +1 -0
package/src/core/model/providers/OllamaProvider.ts +73 -0
package/src/core/model/providers/OpenAICompatibleProvider.d.ts.map +1 -0
package/src/core/model/providers/OpenAICompatibleProvider.ts +327 -0
package/src/core/model/providers/OpenAIProvider.d.ts.map +1 -0
package/src/core/model/providers/OpenAIProvider.ts +29 -0
package/src/core/model/providers/index.d.ts.map +1 -0
package/src/core/model/providers/index.ts +12 -0
package/src/core/model/types.d.ts.map +1 -0
package/src/core/model/types.ts +77 -0
package/src/core/security/ApprovalManager.d.ts.map +1 -0
package/src/core/security/ApprovalManager.ts +174 -0
package/src/core/security/FileFilter.d.ts.map +1 -0
package/src/core/security/FileFilter.ts +141 -0
package/src/core/security/HookExecutor.d.ts.map +1 -0
package/src/core/security/HookExecutor.ts +178 -0
package/src/core/security/SandboxExecutor.ts +447 -0
package/src/core/security/index.d.ts.map +1 -0
package/src/core/security/index.ts +8 -0
package/src/core/session/AgentLoop.d.ts.map +1 -0
package/src/core/session/AgentLoop.ts +501 -0
package/src/core/session/SessionManager.d.ts.map +1 -0
package/src/core/session/SessionManager.test.ts +183 -0
package/src/core/session/SessionManager.ts +460 -0
package/src/core/session/index.d.ts.map +1 -0
package/src/core/session/index.ts +3 -0
package/src/core/telemetry/Telemetry.d.ts.map +1 -0
package/src/core/telemetry/Telemetry.ts +90 -0
package/src/core/telemetry/TelemetryService.ts +531 -0
package/src/core/telemetry/index.d.ts.map +1 -0
package/src/core/telemetry/index.ts +12 -0
package/src/core/testing/AutoFixer.ts +385 -0
package/src/core/testing/ErrorAnalyzer.ts +499 -0
package/src/core/testing/TestRunner.ts +265 -0
package/src/core/testing/agent-cli-tests.ts +538 -0
package/src/core/testing/index.ts +11 -0
package/src/core/tools/ToolRegistry.d.ts.map +1 -0
package/src/core/tools/ToolRegistry.test.ts +206 -0
package/src/core/tools/ToolRegistry.ts +260 -0
package/src/core/tools/impl/EditFileTool.d.ts.map +1 -0
package/src/core/tools/impl/EditFileTool.ts +97 -0
package/src/core/tools/impl/ListDirectoryTool.d.ts.map +1 -0
package/src/core/tools/impl/ListDirectoryTool.ts +142 -0
package/src/core/tools/impl/MemoryTool.d.ts.map +1 -0
package/src/core/tools/impl/MemoryTool.ts +102 -0
package/src/core/tools/impl/ReadFileTool.d.ts.map +1 -0
package/src/core/tools/impl/ReadFileTool.ts +58 -0
package/src/core/tools/impl/SearchContentTool.d.ts.map +1 -0
package/src/core/tools/impl/SearchContentTool.ts +94 -0
package/src/core/tools/impl/SearchFileTool.d.ts.map +1 -0
package/src/core/tools/impl/SearchFileTool.ts +61 -0
package/src/core/tools/impl/ShellTool.d.ts.map +1 -0
package/src/core/tools/impl/ShellTool.ts +118 -0
package/src/core/tools/impl/TaskTool.d.ts.map +1 -0
package/src/core/tools/impl/TaskTool.ts +207 -0
package/src/core/tools/impl/TodoTool.d.ts.map +1 -0
package/src/core/tools/impl/TodoTool.ts +122 -0
package/src/core/tools/impl/WebFetchTool.d.ts.map +1 -0
package/src/core/tools/impl/WebFetchTool.ts +103 -0
package/src/core/tools/impl/WebSearchTool.d.ts.map +1 -0
package/src/core/tools/impl/WebSearchTool.ts +89 -0
package/src/core/tools/impl/WriteFileTool.d.ts.map +1 -0
package/src/core/tools/impl/WriteFileTool.ts +49 -0
package/src/core/tools/impl/index.d.ts.map +1 -0
package/src/core/tools/impl/index.ts +16 -0
package/src/core/tools/index.d.ts.map +1 -0
package/src/core/tools/index.ts +7 -0
package/src/core/tools/schemas/execution.d.ts.map +1 -0
package/src/core/tools/schemas/execution.ts +42 -0
package/src/core/tools/schemas/file.d.ts.map +1 -0
package/src/core/tools/schemas/file.ts +119 -0
package/src/core/tools/schemas/index.d.ts.map +1 -0
package/src/core/tools/schemas/index.ts +11 -0
package/src/core/tools/schemas/memory.d.ts.map +1 -0
package/src/core/tools/schemas/memory.ts +52 -0
package/src/core/tools/schemas/orchestration.d.ts.map +1 -0
package/src/core/tools/schemas/orchestration.ts +44 -0
package/src/core/tools/schemas/search.d.ts.map +1 -0
package/src/core/tools/schemas/search.ts +112 -0
package/src/core/tools/schemas/todo.d.ts.map +1 -0
package/src/core/tools/schemas/todo.ts +32 -0
package/src/core/tools/schemas/web.d.ts.map +1 -0
package/src/core/tools/schemas/web.ts +86 -0
package/src/core/types/config.d.ts.map +1 -0
package/src/core/types/config.ts +200 -0
package/src/core/types/errors.d.ts.map +1 -0
package/src/core/types/errors.ts +204 -0
package/src/core/types/index.d.ts.map +1 -0
package/src/core/types/index.ts +8 -0
package/src/core/types/session.d.ts.map +1 -0
package/src/core/types/session.ts +216 -0
package/src/core/types/tools.d.ts.map +1 -0
package/src/core/types/tools.ts +157 -0
package/src/core/utils/CheckpointManager.d.ts.map +1 -0
package/src/core/utils/CheckpointManager.ts +327 -0
package/src/core/utils/Logger.d.ts.map +1 -0
package/src/core/utils/Logger.ts +98 -0
package/src/core/utils/RetryManager.ts +471 -0
package/src/core/utils/TokenCounter.d.ts.map +1 -0
package/src/core/utils/TokenCounter.ts +414 -0
package/src/core/utils/VectorMemoryStore.ts +440 -0
package/src/core/utils/helpers.d.ts.map +1 -0
package/src/core/utils/helpers.ts +89 -0
package/src/core/utils/index.d.ts.map +1 -0
package/src/core/utils/index.ts +19 -0

package/src/core/audit/AuditLogger.ts ADDED Viewed

@@ -0,0 +1,509 @@
+// ============================================================================
+// AuditLogger - Comprehensive audit logging system
+// ============================================================================
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { createLogger } from '../utils/Logger.js';
+import { generateId } from '../utils/helpers.js';
+const logger = createLogger('AuditLogger');
+// ============================================================================
+// Types
+// ============================================================================
+/**
+ * Audit action types
+ */
+export type AuditAction =
+  | 'tool_use'
+  | 'file_read'
+  | 'file_write'
+  | 'file_delete'
+  | 'command_exec'
+  | 'model_call'
+  | 'session_start'
+  | 'session_end'
+  | 'approval_granted'
+  | 'approval_denied'
+  | 'config_change'
+  | 'auth_change';
+/**
+ * Audit log entry
+ */
+export interface AuditEntry {
+  id: string;
+  timestamp: Date;
+  action: AuditAction;
+  actor: 'user' | 'agent' | 'system';
+  resource: string;
+  result: 'success' | 'denied' | 'error' | 'timeout';
+  sessionId?: string;
+  metadata: {
+    model?: string;
+    provider?: string;
+    tokens?: { input: number; output: number };
+    duration?: number;
+    reason?: string;
+    error?: string;
+    input?: Record<string, unknown>;
+    output?: string;
+    diff?: string;
+    ip?: string;
+    userAgent?: string;
+  };
+}
+/**
+ * Audit query filter
+ */
+export interface AuditFilter {
+  startTime?: Date;
+  endTime?: Date;
+  actions?: AuditAction[];
+  actors?: ('user' | 'agent' | 'system')[];
+  results?: AuditEntry['result'][];
+  sessionId?: string;
+  resourcePattern?: string;
+}
+/**
+ * Audit configuration
+ */
+export interface AuditConfig {
+  /** Log file path */
+  logFile: string;
+  /** Maximum log file size in bytes (default 10MB) */
+  maxFileSize?: number;
+  /** Maximum number of log files to keep (default 10) */
+  maxFiles?: number;
+  /** Whether to log to console (default false) */
+  console?: boolean;
+  /** Minimum log level */
+  minLevel?: 'debug' | 'info' | 'warn' | 'error';
+}
+// ============================================================================
+// AuditLogger
+// ============================================================================
+/**
+ * Comprehensive audit logging system
+ */
+export class AuditLogger {
+  private config: Required<AuditConfig>;
+  private writeQueue: AuditEntry[] = [];
+  private isWriting = false;
+  private flushInterval: NodeJS.Timeout | null = null;
+  constructor(config: AuditConfig) {
+    this.config = {
+      maxFileSize: config.maxFileSize ?? 10 * 1024 * 1024,  // 10MB
+      maxFiles: config.maxFiles ?? 10,
+      console: config.console ?? false,
+      minLevel: config.minLevel ?? 'info',
+      ...config,
+    };
+    // Ensure log directory exists
+    const logDir = path.dirname(this.config.logFile);
+    if (!fs.existsSync(logDir)) {
+      fs.mkdirSync(logDir, { recursive: true });
+    }
+    // Start periodic flush
+    this.flushInterval = setInterval(() => this.flush(), 5000);
+    // Flush on exit
+    process.on('beforeExit', () => this.flush());
+  }
+  // -----------------------------------------------------------------------
+  // Core Logging
+  // -----------------------------------------------------------------------
+  /**
+   * Log an audit entry
+   */
+  async log(entry: Omit<AuditEntry, 'id' | 'timestamp'>): Promise<AuditEntry> {
+    const fullEntry: AuditEntry = {
+      ...entry,
+      id: generateId(),
+      timestamp: new Date(),
+    };
+    // Add to write queue
+    this.writeQueue.push(fullEntry);
+    // Console output
+    if (this.config.console) {
+      this.logToConsole(fullEntry);
+    }
+    // Flush if queue is getting large
+    if (this.writeQueue.length >= 100) {
+      await this.flush();
+    }
+    return fullEntry;
+  }
+  /**
+   * Log a tool use event
+   */
+  async logToolUse(
+    toolName: string,
+    input: Record<string, unknown>,
+    result: AuditEntry['result'],
+    metadata: Partial<AuditEntry['metadata']> = {}
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: 'tool_use',
+      actor: 'agent',
+      resource: toolName,
+      result,
+      metadata: {
+        input,
+        ...metadata,
+      },
+    });
+  }
+  /**
+   * Log a file operation
+   */
+  async logFileOperation(
+    operation: 'file_read' | 'file_write' | 'file_delete',
+    filePath: string,
+    result: AuditEntry['result'],
+    metadata: Partial<AuditEntry['metadata']> = {}
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: operation,
+      actor: 'agent',
+      resource: filePath,
+      result,
+      metadata,
+    });
+  }
+  /**
+   * Log a command execution
+   */
+  async logCommand(
+    command: string,
+    result: AuditEntry['result'],
+    metadata: Partial<AuditEntry['metadata']> = {}
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: 'command_exec',
+      actor: 'agent',
+      resource: command,
+      result,
+      metadata,
+    });
+  }
+  /**
+   * Log a model API call
+   */
+  async logModelCall(
+    model: string,
+    provider: string,
+    result: AuditEntry['result'],
+    metadata: Partial<AuditEntry['metadata']> = {}
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: 'model_call',
+      actor: 'agent',
+      resource: `${provider}/${model}`,
+      result,
+      metadata: {
+        model,
+        provider,
+        ...metadata,
+      },
+    });
+  }
+  /**
+   * Log an approval decision
+   */
+  async logApproval(
+    resource: string,
+    granted: boolean,
+    reason?: string
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: granted ? 'approval_granted' : 'approval_denied',
+      actor: 'user',
+      resource,
+      result: granted ? 'success' : 'denied',
+      metadata: { reason },
+    });
+  }
+  /**
+   * Log a session event
+   */
+  async logSessionEvent(
+    event: 'session_start' | 'session_end',
+    sessionId: string,
+    metadata: Partial<AuditEntry['metadata']> = {}
+  ): Promise<AuditEntry> {
+    return this.log({
+      action: event,
+      actor: 'system',
+      resource: sessionId,
+      result: 'success',
+      sessionId,
+      metadata,
+    });
+  }
+  // -----------------------------------------------------------------------
+  // Querying
+  // -----------------------------------------------------------------------
+  /**
+   * Query audit logs
+   */
+  async query(filter: AuditFilter = {}): Promise<AuditEntry[]> {
+    await this.flush();  // Ensure all entries are written
+    const entries: AuditEntry[] = [];
+    try {
+      // Read all log files
+      const logDir = path.dirname(this.config.logFile);
+      const baseName = path.basename(this.config.logFile, '.jsonl');
+      const files = fs.readdirSync(logDir)
+        .filter(f => f.startsWith(baseName))
+        .sort()
+        .reverse();  // Most recent first
+      for (const file of files) {
+        const filePath = path.join(logDir, file);
+        const content = fs.readFileSync(filePath, 'utf-8');
+        const lines = content.split('\n').filter(l => l.trim());
+        for (const line of lines) {
+          try {
+            const entry = JSON.parse(line) as AuditEntry;
+            entry.timestamp = new Date(entry.timestamp);
+            if (this.matchesFilter(entry, filter)) {
+              entries.push(entry);
+            }
+          } catch {
+            // Skip malformed lines
+          }
+        }
+      }
+    } catch (error) {
+      logger.error('Failed to query audit logs', { error });
+    }
+    return entries;
+  }
+  /**
+   * Check if entry matches filter
+   */
+  private matchesFilter(entry: AuditEntry, filter: AuditFilter): boolean {
+    if (filter.startTime && entry.timestamp < filter.startTime) return false;
+    if (filter.endTime && entry.timestamp > filter.endTime) return false;
+    if (filter.actions && !filter.actions.includes(entry.action)) return false;
+    if (filter.actors && !filter.actors.includes(entry.actor)) return false;
+    if (filter.results && !filter.results.includes(entry.result)) return false;
+    if (filter.sessionId && entry.sessionId !== filter.sessionId) return false;
+    if (filter.resourcePattern && !entry.resource.match(new RegExp(filter.resourcePattern, 'i'))) return false;
+    return true;
+  }
+  // -----------------------------------------------------------------------
+  // Export
+  // -----------------------------------------------------------------------
+  /**
+   * Export logs in various formats
+   */
+  async export(format: 'json' | 'csv' | 'txt', filter: AuditFilter = {}): Promise<string> {
+    const entries = await this.query(filter);
+    if (format === 'json') {
+      return JSON.stringify(entries, null, 2);
+    }
+    if (format === 'csv') {
+      const headers = ['id', 'timestamp', 'action', 'actor', 'resource', 'result', 'sessionId'];
+      const rows = entries.map(e => [
+        e.id,
+        e.timestamp.toISOString(),
+        e.action,
+        e.actor,
+        `"${e.resource.replace(/"/g, '""')}"`,
+        e.result,
+        e.sessionId ?? '',
+      ].join(','));
+      return [headers.join(','), ...rows].join('\n');
+    }
+    // format === 'txt'
+    return entries.map(e => {
+      const time = e.timestamp.toISOString();
+      return `[${time}] ${e.action.toUpperCase()} ${e.actor} ${e.resource} (${e.result})`;
+    }).join('\n');
+  }
+  // -----------------------------------------------------------------------
+  // Maintenance
+  // -----------------------------------------------------------------------
+  /**
+   * Flush write queue to disk
+   */
+  async flush(): Promise<void> {
+    if (this.isWriting || this.writeQueue.length === 0) return;
+    this.isWriting = true;
+    const entries = [...this.writeQueue];
+    this.writeQueue = [];
+    try {
+      // Check if log rotation is needed
+      await this.rotateIfNeeded();
+      // Append entries
+      const lines = entries.map(e => JSON.stringify(e)).join('\n') + '\n';
+      fs.appendFileSync(this.config.logFile, lines, 'utf-8');
+      logger.debug(`Flushed ${entries.length} audit entries`);
+    } catch (error) {
+      logger.error('Failed to flush audit entries', { error });
+      // Put entries back in queue
+      this.writeQueue.unshift(...entries);
+    } finally {
+      this.isWriting = false;
+    }
+  }
+  /**
+   * Rotate log file if needed
+   */
+  private async rotateIfNeeded(): Promise<void> {
+    try {
+      if (!fs.existsSync(this.config.logFile)) return;
+      const stats = fs.statSync(this.config.logFile);
+      if (stats.size >= this.config.maxFileSize) {
+        const logDir = path.dirname(this.config.logFile);
+        const baseName = path.basename(this.config.logFile, '.jsonl');
+        const timestamp = new Date().toISOString().replace(/[:.]/g, '-');
+        const newName = `${baseName}.${timestamp}.jsonl`;
+        fs.renameSync(this.config.logFile, path.join(logDir, newName));
+        // Clean up old files
+        const files = fs.readdirSync(logDir)
+          .filter(f => f.startsWith(baseName) && f.endsWith('.jsonl'))
+          .sort();
+        while (files.length > this.config.maxFiles) {
+          const oldFile = files.shift()!;
+          fs.unlinkSync(path.join(logDir, oldFile));
+          logger.debug(`Deleted old audit log: ${oldFile}`);
+        }
+        logger.info(`Rotated audit log to ${newName}`);
+      }
+    } catch (error) {
+      logger.error('Failed to rotate audit log', { error });
+    }
+  }
+  /**
+   * Get statistics about the audit log
+   */
+  async getStats(): Promise<{
+    totalEntries: number;
+    oldestEntry: Date | null;
+    newestEntry: Date | null;
+    byAction: Record<string, number>;
+    byResult: Record<string, number>;
+  }> {
+    const entries = await this.query();
+    const byAction: Record<string, number> = {};
+    const byResult: Record<string, number> = {};
+    let oldest: Date | null = null;
+    let newest: Date | null = null;
+    for (const entry of entries) {
+      byAction[entry.action] = (byAction[entry.action] ?? 0) + 1;
+      byResult[entry.result] = (byResult[entry.result] ?? 0) + 1;
+      if (!oldest || entry.timestamp < oldest) oldest = entry.timestamp;
+      if (!newest || entry.timestamp > newest) newest = entry.timestamp;
+    }
+    return {
+      totalEntries: entries.length,
+      oldestEntry: oldest,
+      newestEntry: newest,
+      byAction,
+      byResult,
+    };
+  }
+  /**
+   * Log to console
+   */
+  private logToConsole(entry: AuditEntry): void {
+    const time = entry.timestamp.toISOString();
+    const level = entry.result === 'error' ? 'error' : entry.result === 'denied' ? 'warn' : 'info';
+    const message = `[AUDIT] ${time} ${entry.action} ${entry.actor} ${entry.resource} (${entry.result})`;
+    switch (level) {
+      case 'error':
+        console.error(message);
+        break;
+      case 'warn':
+        console.warn(message);
+        break;
+      default:
+        console.log(message);
+    }
+  }
+  /**
+   * Shutdown the logger
+   */
+  shutdown(): void {
+    if (this.flushInterval) {
+      clearInterval(this.flushInterval);
+      this.flushInterval = null;
+    }
+    this.flush();
+  }
+}
+// ============================================================================
+// Factory function
+// ============================================================================
+/**
+ * Create an audit logger with default configuration
+ */
+export function createAuditLogger(
+  storageDir?: string
+): AuditLogger {
+  const defaultDir = storageDir ?? path.join(process.env.HOME ?? '~', '.nova', 'logs');
+  return new AuditLogger({
+    logFile: path.join(defaultDir, 'audit.jsonl'),
+  });
+}

package/src/core/audit/index.ts ADDED Viewed

@@ -0,0 +1,11 @@
+// ============================================================================
+// Audit Module - Audit logging system
+// ============================================================================
+export { AuditLogger, createAuditLogger } from './AuditLogger.js';
+export type {
+  AuditAction,
+  AuditEntry,
+  AuditFilter,
+  AuditConfig,
+} from './AuditLogger.js';

package/src/core/auth/AuthManager.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AuthManager.d.ts","sourceRoot":"","sources":["AuthManager.ts"],"names":[],"mappings":"AAQA,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,eAAe,CAAS;IAChC,OAAO,CAAC,WAAW,CAAsC;;IAMzD,oCAAoC;IAC9B,eAAe,IAAI,OAAO,CAAC,IAAI,CAAC;IAYtC,qCAAqC;IACrC,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,IAAI;IAiBtG,gDAAgD;IAChD,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAKzC,qCAAqC;IAC/B,cAAc,CAAC,KAAK,EAAE;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAe3H,wCAAwC;IAClC,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAM3D,oCAAoC;IACpC,aAAa,IAAI,MAAM,EAAE;IAIzB,kCAAkC;YACpB,eAAe;IAiB7B,OAAO,CAAC,aAAa;CA6BtB"}

package/src/core/auth/AuthManager.ts ADDED Viewed

@@ -0,0 +1,138 @@
+// ============================================================================
+// AuthManager - Manages API credentials
+// ============================================================================
+import fs from 'node:fs/promises';
+import path from 'node:path';
+import os from 'node:os';
+export interface CredentialEntry {
+  provider: string;
+  apiKey: string;
+  baseUrl?: string;
+  organizationId?: string;
+  createdAt: number;
+  updatedAt: number;
+}
+export class AuthManager {
+  private credentialsPath: string;
+  private credentials = new Map<string, CredentialEntry>();
+  constructor() {
+    this.credentialsPath = path.join(os.homedir(), '.nova', 'credentials.json');
+  }
+  /** Load credentials from storage */
+  async loadCredentials(): Promise<void> {
+    try {
+      const content = await fs.readFile(this.credentialsPath, 'utf-8');
+      const data = JSON.parse(content) as Record<string, CredentialEntry>;
+      for (const [provider, entry] of Object.entries(data)) {
+        this.credentials.set(provider, entry);
+      }
+    } catch {
+      // No credentials file yet
+    }
+  }
+  /** Get credentials for a provider */
+  getCredentials(provider: string): { apiKey: string; baseUrl?: string; organizationId?: string } | null {
+    const entry = this.credentials.get(provider);
+    if (!entry) {
+      const envKey = this.getEnvKeyName(provider);
+      const envValue = process.env[envKey];
+      if (envValue) {
+        return { apiKey: envValue };
+      }
+      return null;
+    }
+    return {
+      apiKey: entry.apiKey,
+      baseUrl: entry.baseUrl,
+      organizationId: entry.organizationId,
+    };
+  }
+  /** Check if credentials exist for a provider */
+  hasCredentials(provider: string): boolean {
+    if (this.credentials.has(provider)) return true;
+    return !!process.env[this.getEnvKeyName(provider)];
+  }
+  /** Set credentials for a provider */
+  async setCredentials(entry: { provider: string; apiKey: string; baseUrl?: string; organizationId?: string }): Promise<void> {
+    const existing = this.credentials.get(entry.provider);
+    const credential: CredentialEntry = {
+      provider: entry.provider,
+      apiKey: entry.apiKey,
+      baseUrl: entry.baseUrl,
+      organizationId: entry.organizationId,
+      createdAt: existing?.createdAt || Date.now(),
+      updatedAt: Date.now(),
+    };
+    this.credentials.set(entry.provider, credential);
+    await this.saveCredentials();
+  }
+  /** Remove credentials for a provider */
+  async removeCredentials(provider: string): Promise<boolean> {
+    const deleted = this.credentials.delete(provider);
+    if (deleted) await this.saveCredentials();
+    return deleted;
+  }
+  /** List all configured providers */
+  listProviders(): string[] {
+    return Array.from(this.credentials.keys());
+  }
+  /** Save credentials to storage */
+  private async saveCredentials(): Promise<void> {
+    const dir = path.dirname(this.credentialsPath);
+    await fs.mkdir(dir, { recursive: true });
+    const data: Record<string, CredentialEntry> = {};
+    for (const [provider, entry] of this.credentials) {
+      data[provider] = entry;
+    }
+    await fs.writeFile(this.credentialsPath, JSON.stringify(data, null, 2), 'utf-8');
+    try {
+      await fs.chmod(this.credentialsPath, 0o600);
+    } catch {
+      // chmod may fail on some systems
+    }
+  }
+  private getEnvKeyName(provider: string): string {
+    const envMap: Record<string, string> = {
+      // Built-in
+      anthropic: 'ANTHROPIC_API_KEY',
+      openai: 'OPENAI_API_KEY',
+      azure: 'AZURE_OPENAI_API_KEY',
+      ollama: 'OLLAMA_HOST',
+      'ollama-cloud': 'OLLAMA_API_KEY',
+      // Major cloud providers
+      google: 'GOOGLE_API_KEY',
+      deepseek: 'DEEPSEEK_API_KEY',
+      // Chinese providers
+      qwen: 'DASHSCOPE_API_KEY',
+      glm: 'ZHIPU_API_KEY',
+      zhipu: 'ZHIPU_API_KEY',
+      moonshot: 'MOONSHOT_API_KEY',
+      baichuan: 'BAICHUAN_API_KEY',
+      minimax: 'MINIMAX_API_KEY',
+      yi: 'YI_API_KEY',
+      siliconflow: 'SILICONFLOW_API_KEY',
+      // International providers
+      groq: 'GROQ_API_KEY',
+      mistral: 'MISTRAL_API_KEY',
+      together: 'TOGETHER_API_KEY',
+      cohere: 'COHERE_API_KEY',
+      perplexity: 'PERPLEXITY_API_KEY',
+    };
+    return envMap[provider] || `${provider.toUpperCase().replace(/-/g, '_')}_API_KEY`;
+  }
+}

package/src/core/auth/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/C,YAAY,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC"}

package/src/core/auth/index.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { AuthManager } from './AuthManager.js';
2	+ export type { CredentialEntry } from './AuthManager.js';

package/src/core/config/ConfigManager.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"ConfigManager.d.ts","sourceRoot":"","sources":["ConfigManager.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,UAAU,EAAE,UAAU,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AA+7BnG,qBAAa,aAAa;IACxB,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,UAAU,CAAS;IAC3B,OAAO,CAAC,iBAAiB,CAAuB;;IAMhD,0DAA0D;IACpD,IAAI,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAqCpD,mCAAmC;IACnC,SAAS,IAAI,UAAU;IAOvB,sBAAsB;IACtB,aAAa,IAAI,UAAU;IAI3B,8BAA8B;IAC9B,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG;QAAE,QAAQ,EAAE,mBAAmB,CAAC;QAAC,KAAK,EAAE,WAAW,CAAA;KAAE,GAAG,IAAI;IA6C7F;;;;OAIG;IACH,aAAa,CACX,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,MAAM,EACf,WAAW,EAAE,WAAW,EACxB,iBAAiB,CAAC,EAAE,OAAO,CAAC,mBAAmB,CAAC,GAC/C,OAAO;IAuBV;;OAEG;IACH,gBAAgB,CAAC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,mBAAmB,GAAG,OAAO;IAMpF;;OAEG;IACH,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,IAAI;IAQzD,2BAA2B;IAC3B,aAAa,IAAI,MAAM;IAIvB,4BAA4B;IAC5B,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAKtC,yBAAyB;IACnB,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,UAAU,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAOtD,oCAAoC;IACpC,OAAO,CAAC,WAAW;IAYnB,2CAA2C;IAC3C,OAAO,CAAC,iBAAiB;IAkBzB,+CAA+C;IAC/C,OAAO,CAAC,WAAW;IA6BnB,2BAA2B;IAC3B,OAAO,CAAC,UAAU;CAWnB"}