npm - opencode-ultra - Versions diffs - 0.7.0 → 0.7.2 - Mend

opencode-ultra 0.7.0 → 0.7.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/hooks/keyword-detector.d.ts +11 -1
package/dist/index.js +25 -24
package/dist/safety/index.d.ts +1 -1
package/dist/safety/trust-score.d.ts +11 -5
package/dist/tools/evolve-filter.d.ts +40 -0
package/package.json +1 -1

package/dist/hooks/keyword-detector.d.ts CHANGED Viewed

@@ -7,4 +7,14 @@ export declare function extractPromptText(parts: Array<{
     type: string;
     text?: string;
 }>): string;
-export declare function detectKeywords(text: string): DetectedKeyword[];
+/** Context for generating dynamic evolve message */
+export interface EvolveContext {
+    agents: Record<string, {
+        model: string;
+        description: string;
+    }>;
+    tools: string[];
+    hooks: string[];
+    features: string[];
+}
+export declare function detectKeywords(text: string, evolveCtx?: EvolveContext): DetectedKeyword[];

package/dist/index.js CHANGED Viewed

@@ -29070,6 +29070,30 @@ var OpenCodeUltra = async (ctx) => {
   const astGrepBin = findAstGrepBinary();
   const astSearch = astGrepBin ? createAstSearchTool(ctx, astGrepBin) : null;
   const evolveApply = createEvolveApplyTool(ctx);
+  const buildEvolveCtx = (toolNames) => ({
+    agents: Object.fromEntries(Object.entries(agents).map(([name, def]) => [name, { model: def.model, description: def.description }])),
+    tools: toolNames,
+    hooks: [
+      ...!disabledHooks.has("keyword-detector") ? ["keyword-detector (ultrawork/search/analyze/think/evolve detection)"] : [],
+      ...!disabledHooks.has("rules-injector") ? ["rules-injector (architecture.md/codestyle.md/rules.md injection)"] : [],
+      ...!disabledHooks.has("fragment-injector") ? ["fragment-injector (conditional context fragments)"] : [],
+      ...!disabledHooks.has("prompt-renderer") ? ["prompt-renderer (template-based prompt rendering)"] : [],
+      ...!disabledHooks.has("todo-enforcer") ? ["todo-enforcer (force completion of unfinished TODOs)"] : [],
+      ...!disabledHooks.has("comment-checker") ? ["comment-checker (detect AI slop comments in code)"] : [],
+      ...!disabledHooks.has("token-truncation") ? ["token-truncation (auto-truncate large tool outputs)"] : [],
+      ...!disabledHooks.has("session-compaction") ? ["session-compaction (auto-compact long sessions)"] : []
+    ],
+    features: [
+      pool ? "concurrency control (semaphore-based per-provider/model limits)" : "no concurrency limits",
+      "prompt injection sanitizer (17 patterns, 6 categories)",
+      "trust score system (5-factor npm package evaluation)",
+      "spawn limit (max concurrent sub-agents)",
+      "agent timeout (per-agent execution timeout)",
+      pluginConfig.categories ? "categories (model/variant routing per task type)" : "no categories configured",
+      "continuity ledger (persistent key-value store across sessions)",
+      "multi-language keyword detection (EN/JP/CN)"
+    ]
+  });
   const todoEnforcer = createTodoEnforcer(ctx, internalSessions, pluginConfig.todo_enforcer?.maxEnforcements);
   const commentCheckerHook = createCommentCheckerHook(internalSessions, pluginConfig.comment_checker?.maxRatio, pluginConfig.comment_checker?.slopThreshold);
   const tokenTruncationHook = createTokenTruncationHook(internalSessions, pluginConfig.token_truncation?.maxChars);
@@ -29152,30 +29176,7 @@ var OpenCodeUltra = async (ctx) => {
       }
       if (!disabledHooks.has("keyword-detector")) {
         const promptText = extractPromptText(output.parts);
-        const evolveCtx = {
-          agents: Object.fromEntries(Object.entries(agents).map(([name, def]) => [name, { model: def.model, description: def.description }])),
-          tools: Object.keys(toolRegistry),
-          hooks: [
-            ...!disabledHooks.has("keyword-detector") ? ["keyword-detector (ultrawork/search/analyze/think/evolve detection)"] : [],
-            ...!disabledHooks.has("rules-injector") ? ["rules-injector (architecture.md/codestyle.md/rules.md injection)"] : [],
-            ...!disabledHooks.has("fragment-injector") ? ["fragment-injector (conditional context fragments)"] : [],
-            ...!disabledHooks.has("prompt-renderer") ? ["prompt-renderer (template-based prompt rendering)"] : [],
-            ...!disabledHooks.has("todo-enforcer") ? ["todo-enforcer (force completion of unfinished TODOs)"] : [],
-            ...!disabledHooks.has("comment-checker") ? ["comment-checker (detect AI slop comments in code)"] : [],
-            ...!disabledHooks.has("token-truncation") ? ["token-truncation (auto-truncate large tool outputs)"] : [],
-            ...!disabledHooks.has("session-compaction") ? ["session-compaction (auto-compact long sessions)"] : []
-          ],
-          features: [
-            pool ? "concurrency control (semaphore-based per-provider/model limits)" : "no concurrency limits",
-            "prompt injection sanitizer (17 patterns, 6 categories)",
-            "trust score system (5-factor npm package evaluation)",
-            "spawn limit (max concurrent sub-agents)",
-            "agent timeout (per-agent execution timeout)",
-            pluginConfig.categories ? "categories (model/variant routing per task type)" : "no categories configured",
-            "continuity ledger (persistent key-value store across sessions)",
-            "multi-language keyword detection (EN/JP/CN)"
-          ]
-        };
+        const evolveCtx = buildEvolveCtx(Object.keys(toolRegistry));
         const detected = detectKeywords(promptText, evolveCtx);
         if (detected.length > 0) {
           const hasUltrawork = detected.some((k) => k.type === "ultrawork");

package/dist/safety/index.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
 export { sanitizeAgentOutput, sanitizeSpawnResult, type SanitizeResult } from "./sanitizer";
-export { computeTrustScore, isTyposquatSuspect, formatTrustTable, type PackageMetadata, type TrustScoreResult, type TrustFactor, } from "./trust-score";
+export { computeTrustScore, isTyposquatSuspect, isHighPrivilege, formatTrustTable, MAX_TRUST_SCORE, type PackageMetadata, type TrustScoreResult, type TrustFactor, } from "./trust-score";

package/dist/safety/trust-score.d.ts CHANGED Viewed

@@ -2,17 +2,21 @@
  * Trust Score — evaluates npm packages for reliability and safety.
  * Used by evolve mode to rank plugin recommendations.
  *
- * Score 0–100:
- *   90–100  HIGH trust (well-maintained, popular, verified)
- *   70–89   MEDIUM trust (decent maintenance, some usage)
- *   40–69   LOW trust (stale, low usage, or missing metadata)
- *   0–39    RISKY (abandoned, typosquat suspect, no repo)
+ * Factors (max 108):
+ *   recency (25), popularity (25), quality (20), repository (15),
+ *   safety (15), provenance (8), dependency_risk (0 or -5 penalty)
+ *
+ * Levels (by percentage of 108):
+ *   90%+ HIGH | 70-89% MEDIUM | 40-69% LOW | <40% RISKY
  */
+export declare const MAX_TRUST_SCORE = 108;
 export interface PackageMetadata {
     name: string;
     version?: string;
     description?: string;
     license?: string;
+    /** Whether npm provenance/attestation is available */
+    hasProvenance?: boolean;
     /** ISO date string of last publish */
     lastPublished?: string;
     /** Weekly npm downloads */
@@ -42,6 +46,8 @@ export interface TrustFactor {
 }
 export declare function computeTrustScore(meta: PackageMetadata): TrustScoreResult;
 export declare function isTyposquatSuspect(name: string): boolean;
+/** Check if package name suggests high-privilege access (PTY, exec, shell, sudo) */
+export declare function isHighPrivilege(name: string): boolean;
 /**
  * Format trust scores as a markdown table for evolve output.
  */

package/dist/tools/evolve-filter.d.ts ADDED Viewed

@@ -0,0 +1,40 @@
+/**
+ * evolve-filter — Pure scoring and filtering logic for evolve proposals.
+ *
+ * No side effects. All functions are deterministic.
+ */
+export interface EvolveProposal {
+    title: string;
+    priority: "P0" | "P1" | "P2";
+    effort: "Low" | "Medium" | "High";
+    description: string;
+    files?: string[];
+    currentState?: string;
+    inspiration?: string;
+}
+export interface FilteredProposal extends EvolveProposal {
+    score: number;
+    accepted: boolean;
+    reason?: string;
+}
+export interface FilterConfig {
+    minScore?: number;
+    maxProposals?: number;
+}
+export declare function scoreProposal(p: EvolveProposal): number;
+export declare function filterProposals(proposals: EvolveProposal[], config?: FilterConfig): FilteredProposal[];
+/**
+ * Parse Sisyphus evolve output into structured proposals.
+ *
+ * Expected format (from keyword-detector EVOLVE_MESSAGE Phase 3):
+ * ```
+ * ## Improvement: [Feature Name]
+ * **Inspiration**: [Plugin name] — [what it does]
+ * **Current state**: [what opencode-ultra has now]
+ * **Why**: [concrete benefit]
+ * **How**: [which file to modify, what to add]
+ * **Effort**: Low / Medium / High
+ * **Priority**: P0 / P1 / P2
+ * ```
+ */
+export declare function parseProposalsFromMarkdown(markdown: string): EvolveProposal[];

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "opencode-ultra",
-  "version": "0.7.0",
+  "version": "0.7.2",
   "description": "Lightweight OpenCode 1.2.x plugin — ultrawork mode, multi-agent orchestration, rules injection",
   "keywords": [
     "opencode",