npm - opencode-codegraph - Versions diffs - 0.1.1 → 0.1.3 - Mend

opencode-codegraph 0.1.1 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "opencode-codegraph",
-  "version": "0.1.1",
+  "version": "0.1.3",
   "description": "OpenCode plugin for CodeGraph CPG-powered code analysis",
   "type": "module",
   "main": "src/index.ts",

package/src/api.ts CHANGED Viewed

@@ -6,24 +6,31 @@
  */
 export class CodeGraphAPI {
-  private baseUrl: string
-  constructor(baseUrl: string) {
-    this.baseUrl = baseUrl.replace(/\/+$/, "")
+  private baseUrl: string
+  constructor(baseUrl: string) {
+    const trimmed = baseUrl.replace(/\/+$/, "")
+    this.baseUrl = trimmed.replace(/\/api\/v1$/i, "")
   }
   /**
    * Get project summary for system prompt injection.
    * Returns a markdown block with file count, top hotspots, and open security findings.
    */
-  async getProjectSummary(projectId: string): Promise<string | null> {
-    const params = projectId ? `?project_id=${encodeURIComponent(projectId)}` : ""
-    // Fetch multiple endpoints in parallel
-    const [statsRes, findingsRes] = await Promise.allSettled([
-      this.fetch(`/api/v1/cpg/stats${params}`),
-      this.fetch(`/api/v1/cpg/pattern-results${params}&category=security&limit=10`),
-    ])
+  async getProjectSummary(projectId: string): Promise<string | null> {
+    const params = new URLSearchParams()
+    if (projectId) params.set("project_id", projectId)
+    const statsPath = params.toString() ? `/api/v1/cpg/stats?${params}` : "/api/v1/cpg/stats"
+    const findingsParams = new URLSearchParams(params)
+    findingsParams.set("category", "security")
+    findingsParams.set("limit", "10")
+    const findingsPath = `/api/v1/cpg/pattern-results?${findingsParams}`
+    // Fetch multiple endpoints in parallel
+    const [statsRes, findingsRes] = await Promise.allSettled([
+      this.fetch(statsPath),
+      this.fetch(findingsPath),
+    ])
     const stats =
       statsRes.status === "fulfilled" ? statsRes.value : null
@@ -66,14 +73,16 @@ export class CodeGraphAPI {
    * Returns markdown with methods, callers, complexity, and security findings.
    */
   async getFileCPGContext(projectId: string, filePath: string): Promise<string | null> {
-    const params = new URLSearchParams()
-    if (projectId) params.set("project_id", projectId)
-    params.set("filename", filePath)
-    const [methodsRes, findingsRes] = await Promise.allSettled([
-      this.fetch(`/api/v1/cpg/methods?${params}`),
-      this.fetch(`/api/v1/cpg/pattern-results?${params}&category=security`),
-    ])
+    const params = new URLSearchParams()
+    if (projectId) params.set("project_id", projectId)
+    params.set("filename", filePath)
+    const findingsParams = new URLSearchParams(params)
+    findingsParams.set("category", "security")
+    const [methodsRes, findingsRes] = await Promise.allSettled([
+      this.fetch(`/api/v1/cpg/methods?${params}`),
+      this.fetch(`/api/v1/cpg/pattern-results?${findingsParams.toString()}`),
+    ])
     const methods =
       methodsRes.status === "fulfilled" ? methodsRes.value : null
@@ -161,14 +170,18 @@ export class CodeGraphAPI {
         lines.push("")
       }
-      if (result.complexity_changes?.length) {
-        lines.push("### Complexity Changes")
-        for (const c of result.complexity_changes) {
-          const delta = c.new_cc - c.old_cc
-          const sign = delta > 0 ? "+" : ""
-          lines.push(`- \`${c.method}\`: ${c.old_cc} -> ${c.new_cc} (${sign}${delta})`)
-        }
-      }
+      if (result.complexity_changes?.length) {
+        lines.push("### Complexity Changes")
+        for (const c of result.complexity_changes) {
+          if ((c.old_cc ?? 0) > 0) {
+            const delta = c.new_cc - c.old_cc
+            const sign = delta > 0 ? "+" : ""
+            lines.push(`- \`${c.method}\`: ${c.old_cc} -> ${c.new_cc} (${sign}${delta})`)
+          } else {
+            lines.push(`- \`${c.method}\`: current CC ${c.new_cc}`)
+          }
+        }
+      }
       return lines.length > 2 ? lines.join("\n") : "CodeGraph review: no issues found."
     } catch {
@@ -237,29 +250,60 @@ export class CodeGraphAPI {
     }
   }
-  // -------------------------------------------------------------------
-  // Private helpers
-  // -------------------------------------------------------------------
-  private async fetch(path: string, init?: RequestInit): Promise<any> {
-    const url = `${this.baseUrl}${path}`
-    const headers: Record<string, string> = {
-      "Content-Type": "application/json",
-      ...(init?.headers as Record<string, string> | undefined),
-    }
-    const response = await globalThis.fetch(url, {
-      ...init,
-      headers,
-    })
-    if (!response.ok) {
-      throw new Error(`CodeGraph API ${response.status}: ${response.statusText}`)
-    }
-    const text = await response.text()
-    if (!text) return null
-    return JSON.parse(text)
-  }
-}
+  // -------------------------------------------------------------------
+  // Private helpers
+  // -------------------------------------------------------------------
+  private resolveUrl(path: string): string {
+    const normalizedPath = path.startsWith("/") ? path : `/${path}`
+    return new URL(normalizedPath, `${this.baseUrl}/`).toString()
+  }
+  private async parseJsonBody(response: Response): Promise<any> {
+    const text = await response.text()
+    if (!text) return null
+    return JSON.parse(text)
+  }
+  private async fetch(path: string, init?: RequestInit): Promise<any> {
+    const headers: Record<string, string> = {
+      "Content-Type": "application/json",
+      ...(init?.headers as Record<string, string> | undefined),
+    }
+    const response = await globalThis.fetch(this.resolveUrl(path), {
+      ...init,
+      headers,
+    })
+    if (response.status === 404 && path.startsWith("/api/v1/cpg/pattern-results")) {
+      const fallbackPath = path.replace(
+        "/api/v1/cpg/pattern-results",
+        "/api/v1/patterns/findings",
+      )
+      const fallbackResponse = await globalThis.fetch(this.resolveUrl(fallbackPath), {
+        ...init,
+        headers,
+      })
+      if (fallbackResponse.ok) {
+        const payload = await this.parseJsonBody(fallbackResponse)
+        const findings = Array.isArray(payload?.findings) ? payload.findings : []
+        return {
+          results: findings.map((finding: any) => ({
+            ...finding,
+            line: finding.line ?? finding.line_number ?? 0,
+          })),
+        }
+      }
+      throw new Error(`CodeGraph API ${fallbackResponse.status}: ${fallbackResponse.statusText}`)
+    }
+    if (!response.ok) {
+      throw new Error(`CodeGraph API ${response.status}: ${response.statusText}`)
+    }
+    return this.parseJsonBody(response)
+  }
+}

package/src/index.ts CHANGED Viewed

@@ -10,11 +10,17 @@
  * - Toast notifications on CPG update completion
  */
-import type { Plugin } from "@opencode-ai/plugin"
-import { tool } from "@opencode-ai/plugin/tool"
-import { CodeGraphAPI } from "./api"
-import { extractFileRefs, isGitCommit } from "./util"
+import type { Plugin } from "@opencode-ai/plugin"
+import { tool } from "@opencode-ai/plugin/tool"
+import { CodeGraphAPI } from "./api"
+import {
+  extractFileRefs,
+  formatReviewTraceSummary,
+  getHeadCommit,
+  isGitCommit,
+  readReviewTraceSnapshot,
+} from "./util"
 const codegraphPlugin: Plugin = async (input) => {
   const { client, directory, $ } = input
@@ -48,39 +54,63 @@ const codegraphPlugin: Plugin = async (input) => {
       const files = extractFileRefs(output.parts)
       if (files.length === 0) return
-      try {
-        for (const file of files.slice(0, 5)) {
-          const context = await api.getFileCPGContext(projectId, file)
-          if (context) {
-            output.parts.push({
-              type: "text",
-              text: context,
-            })
-          }
-        }
-      } catch {
-        // CodeGraph API not available — skip silently
-      }
-    },
+      try {
+        for (const file of files.slice(0, 5)) {
+          const context = await api.getFileCPGContext(projectId, file)
+          if (context) {
+            output.parts.push({
+              type: "text",
+              text: context,
+            } as any)
+          }
+        }
+      } catch {
+        // CodeGraph API not available — skip silently
+      }
+    },
     // -----------------------------------------------------------------
     // 3. Post-commit: trigger incremental CPG update
     // -----------------------------------------------------------------
-    "tool.execute.after": async (inp, output) => {
-      if (inp.tool !== "bash") return
-      if (!isGitCommit(output.output)) return
-      try {
-        await api.triggerIncrementalUpdate(projectId, directory)
-        // Notify user via output metadata (visible in OpenCode UI)
-        output.title = "CodeGraph: CPG update triggered"
-        output.metadata = {
-          ...output.metadata,
-          codegraph_cpg_update: "triggered",
-        }
-      } catch {
-        // Best-effort — don't break the workflow
-      }
+    "tool.execute.after": async (inp, output) => {
+      if (inp.tool !== "bash") return
+      if (!isGitCommit(output.output)) return
+      try {
+        const commit = await getHeadCommit($)
+        await api.triggerIncrementalUpdate(projectId, directory)
+        let traceSummary: string | null = null
+        if (commit) {
+          const traceSnapshot = await readReviewTraceSnapshot(directory, commit)
+          if (traceSnapshot) {
+            traceSummary = formatReviewTraceSummary(traceSnapshot)
+            output.metadata = {
+              ...output.metadata,
+              codegraph_review_trace_status: traceSnapshot.status || "unknown",
+              codegraph_review_trace_phase: traceSnapshot.phase || "unknown",
+              codegraph_review_trace_findings: traceSnapshot.review_findings_count ?? null,
+              codegraph_review_trace_recommendations:
+                traceSnapshot.review_recommendations?.slice(0, 3) || [],
+            }
+          }
+        }
+        // Notify user via output metadata (visible in OpenCode UI)
+        output.title = traceSummary
+          ? "CodeGraph: CPG update triggered + review trace found"
+          : "CodeGraph: CPG update triggered"
+        output.metadata = {
+          ...output.metadata,
+          codegraph_cpg_update: "triggered",
+        }
+        if (traceSummary) {
+          const existingOutput = output.output?.trimEnd() || ""
+          output.output = existingOutput ? `${existingOutput}\n\n${traceSummary}` : traceSummary
+        }
+      } catch {
+        // Best-effort — don't break the workflow
+      }
     },
     // -----------------------------------------------------------------
@@ -123,14 +153,15 @@ const codegraphPlugin: Plugin = async (input) => {
       }),
     },
-    // -----------------------------------------------------------------
-    // 5. Permissions: auto-allow codegraph_* MCP tools
-    // -----------------------------------------------------------------
-    "permission.ask": async (inp, output) => {
-      if (inp.tool?.startsWith("codegraph_")) {
-        output.status = "allow"
-      }
-    },
+    // -----------------------------------------------------------------
+    // 5. Permissions: auto-allow codegraph_* MCP tools
+    // -----------------------------------------------------------------
+    "permission.ask": async (inp, output) => {
+      const toolName = (inp as any)?.tool as string | undefined
+      if (toolName?.startsWith("codegraph_")) {
+        output.status = "allow"
+      }
+    },
   }
 }

package/src/util.ts CHANGED Viewed

@@ -1,6 +1,20 @@
-/**
- * Utility functions for the CodeGraph OpenCode plugin.
- */
+import { readFile } from "node:fs/promises"
+import path from "node:path"
+/**
+ * Utility functions for the CodeGraph OpenCode plugin.
+ */
+export type ReviewTraceSnapshot = {
+  commit?: string
+  status?: string
+  phase?: string
+  updated_at?: string
+  review_findings_count?: number
+  review_severity_counts?: Record<string, number>
+  review_recommendations?: string[]
+  error?: string | null
+}
 /**
  * Extract file references from message parts.
@@ -43,7 +57,7 @@ export function extractFileRefs(parts: Array<{ type: string; text?: string }>):
 /**
  * Check if a shell command output indicates a git commit was made.
  */
-export function isGitCommit(output: string): boolean {
+export function isGitCommit(output: string): boolean {
   if (!output) return false
   // Common git commit success patterns
@@ -52,10 +66,77 @@ export function isGitCommit(output: string): boolean {
     /^\s*create mode/m.test(output) || // create mode 100644
     /^\s*\d+ files? changed/m.test(output) // 3 files changed, 42 insertions
   )
-}
-// File extensions recognized as source code
-const SOURCE_EXTENSIONS = new Set([
+}
+export async function getHeadCommit($: any): Promise<string | null> {
+  try {
+    const sha = (await $`git rev-parse HEAD`.quiet().text()).trim()
+    return sha || null
+  } catch {
+    return null
+  }
+}
+export async function readReviewTraceSnapshot(
+  directory: string,
+  commit: string,
+  attempts = 4,
+  delayMs = 500,
+): Promise<ReviewTraceSnapshot | null> {
+  const statusPath = path.join(directory, "data", "reviews", `${commit}.status.json`)
+  for (let attempt = 0; attempt < attempts; attempt += 1) {
+    try {
+      const raw = await readFile(statusPath, "utf-8")
+      return JSON.parse(raw) as ReviewTraceSnapshot
+    } catch {
+      if (attempt === attempts - 1) return null
+      await new Promise((resolve) => setTimeout(resolve, delayMs))
+    }
+  }
+  return null
+}
+export function formatReviewTraceSummary(snapshot: ReviewTraceSnapshot): string | null {
+  const status = snapshot.status || "unknown"
+  const phase = snapshot.phase || "unknown"
+  const findingsCount = snapshot.review_findings_count
+  const recommendations = Array.isArray(snapshot.review_recommendations)
+    ? snapshot.review_recommendations.filter(Boolean)
+    : []
+  const lines = ["## CodeGraph Review Trace", "", `- Status: ${status}`, `- Phase: ${phase}`]
+  if (typeof findingsCount === "number") {
+    lines.push(`- Findings: ${findingsCount}`)
+  }
+  const severityCounts = snapshot.review_severity_counts || {}
+  const severitySummary = Object.entries(severityCounts)
+    .filter(([, count]) => typeof count === "number" && count > 0)
+    .map(([severity, count]) => `${severity}:${count}`)
+    .join(", ")
+  if (severitySummary) {
+    lines.push(`- Severity: ${severitySummary}`)
+  }
+  if (snapshot.error) {
+    lines.push(`- Error: ${snapshot.error}`)
+  }
+  if (recommendations.length) {
+    lines.push("", "### Recommendations")
+    for (const recommendation of recommendations.slice(0, 3)) {
+      lines.push(`- ${recommendation}`)
+    }
+  }
+  return lines.length > 2 ? lines.join("\n") : null
+}
+// File extensions recognized as source code
+const SOURCE_EXTENSIONS = new Set([
   "py",
   "go",
   "js",