opensip-cli 0.1.0

package/dist/commands/tools/list.js

@@ -0,0 +1,103 @@
+/**
+ * `tools list` — the read-only effective-tool inventory (ADR-0041).
+ *
+ * HARD RULE: this command performs ZERO dynamic imports of tool runtimes. A
+ * listing command that executes plugin code is both slow and a consent
+ * violation (the trust posture reserves code execution for validate/install).
+ * Every row derives from
+ *
+ *   - the CURRENT RUN's admitted set — the provenance + manifest pairs the
+ *     bootstrap recorded, passed in by the command handler from the entered
+ *     RunScope (`currentScope().toolProvenance` / `?.toolManifests`),
+ *     status `loaded`; and
+ *   - marker scans of the two install hosts (user-global + project
+ *     `.runtime`), `loadToolManifest` only (a file read), status
+ *     `manifest-only` — covering installed-but-not-loaded packages (and, by
+ *     construction, a package whose module top-level would throw).
+ *
+ * Shadow-marking: discovery is first-occurrence-wins (project before global in
+ * `buildToolDiscoverySources`), so when a project row and a global row share a
+ * tool id the GLOBAL row is marked shadowed.
+ */
+import { join } from 'node:path';
+import { discoverPackagesInNodeModules, loadToolManifest, resolveProjectPaths, resolveUserPaths, } from '@opensip-cli/core';
+import { TOOL_DOMAIN } from '../plugin/domain-resolution.js';
+/**
+ * Map a loaded tool's provenance to the user-facing source label. Installed
+ * tools resolve their scope by which host dir their package landed in
+ * (project `.runtime` wins ties — it precedes global in discovery order).
+ */
+function sourceLabelFor(provenance, projectHostDir, globalHostDir) {
+    if (provenance.source === 'bundled')
+        return 'bundled';
+    if (provenance.source === 'project-local')
+        return 'project';
+    if (provenance.source === 'user-global')
+        return 'global';
+    const path = provenance.resolvedPath ?? '';
+    if (path.startsWith(projectHostDir))
+        return 'project';
+    if (path.startsWith(globalHostDir))
+        return 'global';
+    // An installed tool discovered via the cwd walk-up or the CLI install dir:
+    // it behaves project-wide for this run; label by where it sits relative to
+    // the project host, defaulting to global (the broader visibility claim).
+    return 'global';
+}
+/** Build the effective tool inventory. Read-only; never imports a runtime. */
+export function toolsList(opts) {
+    const projectHostDir = resolveProjectPaths(opts.cwd).pluginsDir(TOOL_DOMAIN);
+    const globalHostDir = resolveUserPaths().pluginsDir(TOOL_DOMAIN);
+    const provenance = opts.provenance ?? [];
+    const manifests = opts.manifests ?? [];
+    const rows = [];
+    const loadedPackageNames = new Set();
+    // Loaded set — provenance and manifests are pushed pairwise at admission,
+    // so they index together.
+    for (const [i, prov] of provenance.entries()) {
+        const manifest = manifests[i];
+        if (prov.packageName !== undefined)
+            loadedPackageNames.add(prov.packageName);
+        rows.push({
+            id: prov.id,
+            ...(prov.packageName === undefined ? {} : { packageName: prov.packageName }),
+            version: prov.version,
+            source: sourceLabelFor(prov, projectHostDir, globalHostDir),
+            commands: manifest?.commands.map((c) => c.name) ?? [],
+            status: 'loaded',
+        });
+    }
+    // Installed-but-not-loaded set — marker scan + manifest file read per host.
+    const hosts = [
+        { dir: projectHostDir, source: 'project' },
+        { dir: globalHostDir, source: 'global' },
+    ];
+    for (const host of hosts) {
+        for (const pkg of discoverPackagesInNodeModules(join(host.dir, 'node_modules'), 'tool')) {
+            if (loadedPackageNames.has(pkg.name))
+                continue;
+            const manifest = loadToolManifest('installed', pkg.packageDir);
+            rows.push({
+                id: manifest?.id ?? pkg.name,
+                packageName: pkg.name,
+                version: manifest?.version ?? 'unknown',
+                source: host.source,
+                commands: manifest?.commands.map((c) => c.name) ?? [],
+                status: 'manifest-only',
+            });
+        }
+    }
+    // Shadow-marking: a project row shadows a global row with the same tool id
+    // (matches discovery's first-occurrence-wins ordering: project precedes
+    // global). Bundled rows are never shadow-marked — the registry's
+    // first-writer-wins already keeps a duplicate id from loading at all.
+    const projectIds = new Set(rows.filter((r) => r.source === 'project').map((r) => r.id));
+    const marked = rows.map((row) => row.source === 'global' && projectIds.has(row.id) ? { ...row, shadowed: true } : row);
+    let filtered = marked;
+    if (opts.global === true)
+        filtered = marked.filter((r) => r.source === 'global');
+    else if (opts.project === true)
+        filtered = marked.filter((r) => r.source === 'project');
+    return { type: 'tools-list', tools: filtered, totalCount: filtered.length };
+}
+//# sourceMappingURL=list.js.map

package/dist/commands/tools/list.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list.js","sourceRoot":"","sources":["../../../src/commands/tools/list.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEjC,OAAO,EACL,6BAA6B,EAC7B,gBAAgB,EAChB,mBAAmB,EACnB,gBAAgB,GAGjB,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAuB7D;;;;GAIG;AACH,SAAS,cAAc,CACrB,UAA0B,EAC1B,cAAsB,EACtB,aAAqB;IAErB,IAAI,UAAU,CAAC,MAAM,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IACtD,IAAI,UAAU,CAAC,MAAM,KAAK,eAAe;QAAE,OAAO,SAAS,CAAC;IAC5D,IAAI,UAAU,CAAC,MAAM,KAAK,aAAa;QAAE,OAAO,QAAQ,CAAC;IACzD,MAAM,IAAI,GAAG,UAAU,CAAC,YAAY,IAAI,EAAE,CAAC;IAC3C,IAAI,IAAI,CAAC,UAAU,CAAC,cAAc,CAAC;QAAE,OAAO,SAAS,CAAC;IACtD,IAAI,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC;QAAE,OAAO,QAAQ,CAAC;IACpD,2EAA2E;IAC3E,2EAA2E;IAC3E,yEAAyE;IACzE,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,8EAA8E;AAC9E,MAAM,UAAU,SAAS,CAAC,IAAsB;IAC9C,MAAM,cAAc,GAAG,mBAAmB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IAC7E,MAAM,aAAa,GAAG,gBAAgB,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IAEjE,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC;IACzC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,EAAE,CAAC;IAEvC,MAAM,IAAI,GAAmB,EAAE,CAAC;IAChC,MAAM,kBAAkB,GAAG,IAAI,GAAG,EAAU,CAAC;IAE7C,0EAA0E;IAC1E,0BAA0B;IAC1B,KAAK,MAAM,CAAC,CAAC,EAAE,IAAI,CAAC,IAAI,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC;QAC7C,MAAM,QAAQ,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;QAC9B,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS;YAAE,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC7E,IAAI,CAAC,IAAI,CAAC;YACR,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,GAAG,CAAC,IAAI,CAAC,WAAW,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC;YAC5E,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,MAAM,EAAE,cAAc,CAAC,IAAI,EAAE,cAAc,EAAE,aAAa,CAAC;YAC3D,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE;YACrD,MAAM,EAAE,QAAQ;SACjB,CAAC,CAAC;IACL,CAAC;IAED,4EAA4E;IAC5E,MAAM,KAAK,GAAmD;QAC5D,EAAE,GAAG,EAAE,cAAc,EAAE,MAAM,EAAE,SAAS,EAAE;QAC1C,EAAE,GAAG,EAAE,aAAa,EAAE,MAAM,EAAE,QAAQ,EAAE;KACzC,CAAC;IACF,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,KAAK,MAAM,GAAG,IAAI,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,EAAE,MAAM,CAAC,EAAE,CAAC;YACxF,IAAI,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC;gBAAE,SAAS;YAC/C,MAAM,QAAQ,GAAG,gBAAgB,CAAC,WAAW,EAAE,GAAG,CAAC,UAAU,CAAC,CAAC;YAC/D,IAAI,CAAC,IAAI,CAAC;gBACR,EAAE,EAAE,QAAQ,EAAE,EAAE,IAAI,GAAG,CAAC,IAAI;gBAC5B,WAAW,EAAE,GAAG,CAAC,IAAI;gBACrB,OAAO,EAAE,QAAQ,EAAE,OAAO,IAAI,SAAS;gBACvC,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE;gBACrD,MAAM,EAAE,eAAe;aACxB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,2EAA2E;IAC3E,wEAAwE;IACxE,iEAAiE;IACjE,sEAAsE;IACtE,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACxF,MAAM,MAAM,GAAmB,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAC9C,GAAG,CAAC,MAAM,KAAK,QAAQ,IAAI,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CACrF,CAAC;IAEF,IAAI,QAAQ,GAAG,MAAM,CAAC;IACtB,IAAI,IAAI,CAAC,MAAM,KAAK,IAAI;QAAE,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC;SAC5E,IAAI,IAAI,CAAC,OAAO,KAAK,IAAI;QAAE,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC;IAExF,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC;AAC9E,CAAC"}

package/dist/commands/tools/runtime-probe-entry.d.ts

@@ -0,0 +1,14 @@
+/**
+ * runtime-probe-entry — the child-process side of `tools validate`'s runtime
+ * sections (ADR-0041).
+ *
+ * Spawned as `node <dist>/commands/tools/runtime-probe-entry.js <packageDir>`.
+ * Runs the FULL admission pipeline (the runtime sections dynamic-import the
+ * candidate package — UNTRUSTED code executes here, which is exactly why this
+ * is a separate process: a crashing/hanging/env-mutating candidate cannot
+ * corrupt the parent CLI, and the parent imposes a hard timeout. NOT a
+ * security boundary — same user privileges) and prints a slim JSON report on
+ * stdout. Exit 0 ⇔ report.ok.
+ */
+export {};
+//# sourceMappingURL=runtime-probe-entry.d.ts.map

package/dist/commands/tools/runtime-probe-entry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-probe-entry.d.ts","sourceRoot":"","sources":["../../../src/commands/tools/runtime-probe-entry.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;GAWG"}

package/dist/commands/tools/runtime-probe-entry.js

@@ -0,0 +1,36 @@
+// @fitness-ignore-file one-outcome-shape -- this stdout JSON line is the PRIVATE parent↔child probe wire (runtime-probe.ts parses it), not the CLI's user-facing --json surface; renderOutcome/CommandOutcome govern user machine output, and the probe is never invoked as a CLI command.
+// @fitness-ignore-file only-documented-toolcli-seams -- same rationale: the stdout JSON is the private parent↔child probe IPC wire (parsed by runtime-probe.ts), not user-facing run output through a ToolCliContext seam.
+/**
+ * runtime-probe-entry — the child-process side of `tools validate`'s runtime
+ * sections (ADR-0041).
+ *
+ * Spawned as `node <dist>/commands/tools/runtime-probe-entry.js <packageDir>`.
+ * Runs the FULL admission pipeline (the runtime sections dynamic-import the
+ * candidate package — UNTRUSTED code executes here, which is exactly why this
+ * is a separate process: a crashing/hanging/env-mutating candidate cannot
+ * corrupt the parent CLI, and the parent imposes a hard timeout. NOT a
+ * security boundary — same user privileges) and prints a slim JSON report on
+ * stdout. Exit 0 ⇔ report.ok.
+ */
+import { admitToolPackage } from '../../bootstrap/admit-tool-package.js';
+const dir = process.argv[2];
+if (dir === undefined || dir.length === 0) {
+    process.stderr.write('runtime-probe-entry: missing package dir argument\n');
+    process.exitCode = 2;
+}
+else {
+    const report = await admitToolPackage({
+        dir,
+        source: 'installed',
+        explicitlyRequested: true,
+    });
+    const slim = {
+        ok: report.ok,
+        sections: report.sections,
+        toolConfigNamespace: report.tool?.config?.namespace ?? null,
+        toolId: report.tool?.metadata.name ?? report.tool?.metadata.id ?? null,
+    };
+    process.stdout.write(`${JSON.stringify(slim)}\n`);
+    process.exitCode = report.ok ? 0 : 1;
+}
+//# sourceMappingURL=runtime-probe-entry.js.map

package/dist/commands/tools/runtime-probe-entry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-probe-entry.js","sourceRoot":"","sources":["../../../src/commands/tools/runtime-probe-entry.ts"],"names":[],"mappings":"AAAA,2RAA2R;AAC3R,2NAA2N;AAC3N;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,uCAAuC,CAAC;AAIzE,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAC5B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;IAC1C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,qDAAqD,CAAC,CAAC;IAC5E,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;AACvB,CAAC;KAAM,CAAC;IACN,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC;QACpC,GAAG;QACH,MAAM,EAAE,WAAW;QACnB,mBAAmB,EAAE,IAAI;KAC1B,CAAC,CAAC;IACH,MAAM,IAAI,GAAgB;QACxB,EAAE,EAAE,MAAM,CAAC,EAAE;QACb,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,mBAAmB,EAAE,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,IAAI,IAAI;QAC3D,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,IAAI,IAAI,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,EAAE,IAAI,IAAI;KACvE,CAAC;IACF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAClD,OAAO,CAAC,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AACvC,CAAC"}

package/dist/commands/tools/runtime-probe.d.ts

@@ -0,0 +1,29 @@
+/**
+ * runtime-probe — the parent-process side of `tools validate`'s runtime
+ * sections (ADR-0041).
+ *
+ * Spawns `runtime-probe-entry.js` (compiled sibling in dist) against a staged
+ * candidate dir with a hard timeout. The child dynamic-imports the candidate —
+ * the subprocess is a CRASH/CONTAMINATION boundary (a throwing module
+ * top-level, a hang, a process.env mutation cannot touch the parent), NOT a
+ * security boundary (same user privileges; ADR-0041's trust posture applies).
+ */
+import type { AdmissionSectionResult } from '../../bootstrap/admit-tool-package.js';
+/** The slim, JSON-serializable report the probe child prints. */
+export interface ProbeReport {
+    readonly ok: boolean;
+    readonly sections: readonly AdmissionSectionResult[];
+    /** The runtime `Tool.config.namespace`; `null` = the tool declares no config. */
+    readonly toolConfigNamespace: string | null;
+    /** The runtime tool id, when the tool loaded. */
+    readonly toolId: string | null;
+}
+/** Hard ceiling on candidate module-load time (a hung import must not hang the CLI). */
+export declare const PROBE_TIMEOUT_MS = 30000;
+/**
+ * Run the runtime admission sections against `packageDir` in a child process.
+ * Never throws: a crash/timeout/unparseable child maps to a synthetic failed
+ * `runtime-load` section carrying the child's stderr as diagnostic.
+ */
+export declare function runRuntimeProbe(packageDir: string): ProbeReport;
+//# sourceMappingURL=runtime-probe.d.ts.map

package/dist/commands/tools/runtime-probe.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-probe.d.ts","sourceRoot":"","sources":["../../../src/commands/tools/runtime-probe.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAMH,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,uCAAuC,CAAC;AAEpF,iEAAiE;AACjE,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC;IACrB,QAAQ,CAAC,QAAQ,EAAE,SAAS,sBAAsB,EAAE,CAAC;IACrD,iFAAiF;IACjF,QAAQ,CAAC,mBAAmB,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5C,iDAAiD;IACjD,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CAChC;AAED,wFAAwF;AACxF,eAAO,MAAM,gBAAgB,QAAS,CAAC;AAevC;;;;GAIG;AACH,wBAAgB,eAAe,CAAC,UAAU,EAAE,MAAM,GAAG,WAAW,CAoC/D"}

package/dist/commands/tools/runtime-probe.js

@@ -0,0 +1,66 @@
+/**
+ * runtime-probe — the parent-process side of `tools validate`'s runtime
+ * sections (ADR-0041).
+ *
+ * Spawns `runtime-probe-entry.js` (compiled sibling in dist) against a staged
+ * candidate dir with a hard timeout. The child dynamic-imports the candidate —
+ * the subprocess is a CRASH/CONTAMINATION boundary (a throwing module
+ * top-level, a hang, a process.env mutation cannot touch the parent), NOT a
+ * security boundary (same user privileges; ADR-0041's trust posture applies).
+ */
+import { spawnSync } from 'node:child_process';
+import { existsSync } from 'node:fs';
+import { fileURLToPath } from 'node:url';
+/** Hard ceiling on candidate module-load time (a hung import must not hang the CLI). */
+export const PROBE_TIMEOUT_MS = 30_000;
+/**
+ * Resolved against THIS module's location, so it works from dist and when
+ * packed. Under vitest, `import.meta.url` points into `src/` where the
+ * compiled sibling does not exist — fall back to the built `dist/` twin (the
+ * test suites require a build, same as every dist-spawning e2e here).
+ */
+function resolveProbeEntry() {
+    const sibling = fileURLToPath(new URL('runtime-probe-entry.js', import.meta.url));
+    if (existsSync(sibling))
+        return sibling;
+    return sibling.replace(`${'/src/'}`, '/dist/');
+}
+const PROBE_ENTRY = resolveProbeEntry();
+/**
+ * Run the runtime admission sections against `packageDir` in a child process.
+ * Never throws: a crash/timeout/unparseable child maps to a synthetic failed
+ * `runtime-load` section carrying the child's stderr as diagnostic.
+ */
+export function runRuntimeProbe(packageDir) {
+    const child = spawnSync(process.execPath, [PROBE_ENTRY, packageDir], {
+        encoding: 'utf8',
+        timeout: PROBE_TIMEOUT_MS,
+        stdio: ['ignore', 'pipe', 'pipe'],
+    });
+    const failed = (diagnostic) => ({
+        ok: false,
+        sections: [{ section: 'runtime-load', ok: false, diagnostic }],
+        toolConfigNamespace: null,
+        toolId: null,
+    });
+    if (child.error !== undefined) {
+        const timedOut = child.error.code === 'ETIMEDOUT';
+        return failed(timedOut
+            ? `runtime probe timed out after ${PROBE_TIMEOUT_MS}ms (the module load hung)`
+            : `runtime probe failed to spawn: ${child.error.message}`);
+    }
+    const stdout = (child.stdout ?? '').trim();
+    if (stdout.length === 0) {
+        const stderr = (child.stderr ?? '').trim();
+        return failed(stderr.length > 0
+            ? `runtime probe crashed: ${stderr.slice(0, 500)}`
+            : 'runtime probe produced no report');
+    }
+    try {
+        return JSON.parse(stdout.split('\n').at(-1) ?? '');
+    }
+    catch {
+        return failed(`runtime probe printed an unparseable report: ${stdout.slice(0, 200)}`);
+    }
+}
+//# sourceMappingURL=runtime-probe.js.map

package/dist/commands/tools/runtime-probe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-probe.js","sourceRoot":"","sources":["../../../src/commands/tools/runtime-probe.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAC/C,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAczC,wFAAwF;AACxF,MAAM,CAAC,MAAM,gBAAgB,GAAG,MAAM,CAAC;AAEvC;;;;;GAKG;AACH,SAAS,iBAAiB;IACxB,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,GAAG,CAAC,wBAAwB,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IAClF,IAAI,UAAU,CAAC,OAAO,CAAC;QAAE,OAAO,OAAO,CAAC;IACxC,OAAO,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,EAAE,EAAE,QAAQ,CAAC,CAAC;AACjD,CAAC;AACD,MAAM,WAAW,GAAG,iBAAiB,EAAE,CAAC;AAExC;;;;GAIG;AACH,MAAM,UAAU,eAAe,CAAC,UAAkB;IAChD,MAAM,KAAK,GAAG,SAAS,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC,WAAW,EAAE,UAAU,CAAC,EAAE;QACnE,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,gBAAgB;QACzB,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC;KAClC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,CAAC,UAAkB,EAAe,EAAE,CAAC,CAAC;QACnD,EAAE,EAAE,KAAK;QACT,QAAQ,EAAE,CAAC,EAAE,OAAO,EAAE,cAAc,EAAE,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC;QAC9D,mBAAmB,EAAE,IAAI;QACzB,MAAM,EAAE,IAAI;KACb,CAAC,CAAC;IAEH,IAAI,KAAK,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QAC9B,MAAM,QAAQ,GAAI,KAAK,CAAC,KAA+B,CAAC,IAAI,KAAK,WAAW,CAAC;QAC7E,OAAO,MAAM,CACX,QAAQ;YACN,CAAC,CAAC,iCAAiC,gBAAgB,2BAA2B;YAC9E,CAAC,CAAC,kCAAkC,KAAK,CAAC,KAAK,CAAC,OAAO,EAAE,CAC5D,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAG,CAAC,KAAK,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAC3C,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,MAAM,GAAG,CAAC,KAAK,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAC3C,OAAO,MAAM,CACX,MAAM,CAAC,MAAM,GAAG,CAAC;YACf,CAAC,CAAC,0BAA0B,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;YAClD,CAAC,CAAC,kCAAkC,CACvC,CAAC;IACJ,CAAC;IACD,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAgB,CAAC;IACpE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,MAAM,CAAC,gDAAgD,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;IACxF,CAAC;AACH,CAAC"}

package/dist/commands/tools/storage-contract-checks.d.ts

@@ -0,0 +1,37 @@
+/**
+ * Tier A storage-contract static checks (ADR-0042).
+ *
+ * The enforceable-now tier of the tool storage contract: a tool package must
+ * not carry schema-mutation capability against the host-owned SQLite store —
+ * no DDL, no migration runners, no direct datastore-file paths, no imports of
+ * the datastore package's private schema/migration modules. Scans the staged
+ * package's OWN source files (not its node_modules) with string patterns;
+ * a guardrail, not the only lock — the stronger guarantee is that the Tool
+ * runtime context never exposes raw schema-mutation capabilities.
+ *
+ * Pattern-family note: the DDL list deliberately mirrors the
+ * `restrict-raw-db-access` fitness check's vocabulary (checks-universal,
+ * `src/checks/architecture/restrict-raw-db-access.ts`). The two lists are kept
+ * from drifting by a parity test (`tools-validate.test.ts`), NOT by a cli →
+ * check-pack production import (which would couple the host to a tool's pack).
+ */
+/** One Tier A violation: where, what matched, and which contract clause. */
+export interface StorageFinding {
+    /** Path relative to the scanned package dir. */
+    readonly file: string;
+    /** 1-based line of the first match. */
+    readonly line: number;
+    readonly matched: string;
+    readonly clause: string;
+}
+/** The Tier A pattern families (exported for the drift-parity test). */
+export declare const TIER_A_PATTERNS: readonly {
+    readonly pattern: RegExp;
+    readonly clause: string;
+}[];
+/**
+ * Scan one staged package dir for Tier A storage-contract violations.
+ * Returns findings (empty = section passes). Pure file reads; runs no code.
+ */
+export declare function runStorageContractChecks(stagedDir: string): readonly StorageFinding[];
+//# sourceMappingURL=storage-contract-checks.d.ts.map

package/dist/commands/tools/storage-contract-checks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage-contract-checks.d.ts","sourceRoot":"","sources":["../../../src/commands/tools/storage-contract-checks.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAKH,4EAA4E;AAC5E,MAAM,WAAW,cAAc;IAC7B,gDAAgD;IAChD,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,uCAAuC;IACvC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CACzB;AAED,wEAAwE;AACxE,eAAO,MAAM,eAAe,EAAE,SAAS;IAAE,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CAAE,EAyB3F,CAAC;AAsBF;;;GAGG;AACH,wBAAgB,wBAAwB,CAAC,SAAS,EAAE,MAAM,GAAG,SAAS,cAAc,EAAE,CAiBrF"}

package/dist/commands/tools/storage-contract-checks.js

@@ -0,0 +1,91 @@
+/**
+ * Tier A storage-contract static checks (ADR-0042).
+ *
+ * The enforceable-now tier of the tool storage contract: a tool package must
+ * not carry schema-mutation capability against the host-owned SQLite store —
+ * no DDL, no migration runners, no direct datastore-file paths, no imports of
+ * the datastore package's private schema/migration modules. Scans the staged
+ * package's OWN source files (not its node_modules) with string patterns;
+ * a guardrail, not the only lock — the stronger guarantee is that the Tool
+ * runtime context never exposes raw schema-mutation capabilities.
+ *
+ * Pattern-family note: the DDL list deliberately mirrors the
+ * `restrict-raw-db-access` fitness check's vocabulary (checks-universal,
+ * `src/checks/architecture/restrict-raw-db-access.ts`). The two lists are kept
+ * from drifting by a parity test (`tools-validate.test.ts`), NOT by a cli →
+ * check-pack production import (which would couple the host to a tool's pack).
+ */
+import { readdirSync, readFileSync, statSync } from 'node:fs';
+import { join, relative } from 'node:path';
+/** The Tier A pattern families (exported for the drift-parity test). */
+export const TIER_A_PATTERNS = [
+    {
+        pattern: /\b(CREATE|ALTER|DROP)\s+TABLE\b/i,
+        clause: 'no DDL against the OpenSIP datastore (ADR-0042 Tier A)',
+    },
+    {
+        pattern: /\bCREATE\s+(UNIQUE\s+)?INDEX\b/i,
+        clause: 'no DDL against the OpenSIP datastore (ADR-0042 Tier A)',
+    },
+    {
+        pattern: /\bPRAGMA\s+writable_schema\b/i,
+        clause: 'no schema-mutation pragmas (ADR-0042 Tier A)',
+    },
+    {
+        pattern: /\.runtime\/datastore\.sqlite/,
+        clause: 'no direct datastore-file access (ADR-0042 Tier A)',
+    },
+    {
+        pattern: /@opensip-cli\/datastore\/(schema|migrations)\//,
+        clause: 'no datastore-private schema/migration imports (ADR-0042 Tier A)',
+    },
+    {
+        pattern: /drizzle-orm\/[\w/-]*migrator/,
+        clause: 'no migration runners against the OpenSIP datastore (ADR-0042 Tier A)',
+    },
+];
+const SCANNED_EXTENSIONS = new Set(['.js', '.mjs', '.cjs', '.ts', '.mts', '.cts']);
+function* walkSourceFiles(dir, root) {
+    for (const entry of readdirSync(dir)) {
+        // Skip deps and dotdirs; skip test trees + spec files — Tier A gates the
+        // SHIPPABLE surface (same production-only rationale as the dogfood rules;
+        // a DDL string inside a tool's own test fixture is not schema capability).
+        if (entry === 'node_modules' || entry === '__tests__' || entry.startsWith('.'))
+            continue;
+        const abs = join(dir, entry);
+        const stat = statSync(abs);
+        if (stat.isDirectory()) {
+            yield* walkSourceFiles(abs, root);
+            continue;
+        }
+        if (/\.test\.[cm]?[jt]s$/.test(entry))
+            continue;
+        const dot = entry.lastIndexOf('.');
+        if (dot !== -1 && SCANNED_EXTENSIONS.has(entry.slice(dot)))
+            yield abs;
+    }
+}
+/**
+ * Scan one staged package dir for Tier A storage-contract violations.
+ * Returns findings (empty = section passes). Pure file reads; runs no code.
+ */
+export function runStorageContractChecks(stagedDir) {
+    const findings = [];
+    for (const file of walkSourceFiles(stagedDir, stagedDir)) {
+        const content = readFileSync(file, 'utf8');
+        const lines = content.split('\n');
+        for (const { pattern, clause } of TIER_A_PATTERNS) {
+            if (!pattern.test(content))
+                continue;
+            const lineIdx = lines.findIndex((l) => pattern.test(l));
+            findings.push({
+                file: relative(stagedDir, file),
+                line: lineIdx === -1 ? 1 : lineIdx + 1,
+                matched: pattern.source,
+                clause,
+            });
+        }
+    }
+    return findings;
+}
+//# sourceMappingURL=storage-contract-checks.js.map

package/dist/commands/tools/storage-contract-checks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage-contract-checks.js","sourceRoot":"","sources":["../../../src/commands/tools/storage-contract-checks.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC9D,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAY3C,wEAAwE;AACxE,MAAM,CAAC,MAAM,eAAe,GAAqE;IAC/F;QACE,OAAO,EAAE,kCAAkC;QAC3C,MAAM,EAAE,wDAAwD;KACjE;IACD;QACE,OAAO,EAAE,iCAAiC;QAC1C,MAAM,EAAE,wDAAwD;KACjE;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,MAAM,EAAE,8CAA8C;KACvD;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,MAAM,EAAE,mDAAmD;KAC5D;IACD;QACE,OAAO,EAAE,gDAAgD;QACzD,MAAM,EAAE,iEAAiE;KAC1E;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,MAAM,EAAE,sEAAsE;KAC/E;CACF,CAAC;AAEF,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;AAEnF,QAAQ,CAAC,CAAC,eAAe,CAAC,GAAW,EAAE,IAAY;IACjD,KAAK,MAAM,KAAK,IAAI,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;QACrC,yEAAyE;QACzE,0EAA0E;QAC1E,2EAA2E;QAC3E,IAAI,KAAK,KAAK,cAAc,IAAI,KAAK,KAAK,WAAW,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QACzF,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC;QAC3B,IAAI,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC;YACvB,KAAK,CAAC,CAAC,eAAe,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;YAClC,SAAS;QACX,CAAC;QACD,IAAI,qBAAqB,CAAC,IAAI,CAAC,KAAK,CAAC;YAAE,SAAS;QAChD,MAAM,GAAG,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;QACnC,IAAI,GAAG,KAAK,CAAC,CAAC,IAAI,kBAAkB,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAAE,MAAM,GAAG,CAAC;IACxE,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,wBAAwB,CAAC,SAAiB;IACxD,MAAM,QAAQ,GAAqB,EAAE,CAAC;IACtC,KAAK,MAAM,IAAI,IAAI,eAAe,CAAC,SAAS,EAAE,SAAS,CAAC,EAAE,CAAC;QACzD,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,KAAK,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,eAAe,EAAE,CAAC;YAClD,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC;gBAAE,SAAS;YACrC,MAAM,OAAO,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;YACxD,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,QAAQ,CAAC,SAAS,EAAE,IAAI,CAAC;gBAC/B,IAAI,EAAE,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,GAAG,CAAC;gBACtC,OAAO,EAAE,OAAO,CAAC,MAAM;gBACvB,MAAM;aACP,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/commands/tools/uninstall.d.ts

@@ -0,0 +1,29 @@
+/**
+ * `tools uninstall` — scope-aware, identity-resolving removal (ADR-0041).
+ *
+ * Accepts a tool id OR a package name; resolves it against manifest scans of
+ * the two install hosts (file reads only — no runtime import), displays the
+ * resolved identity, and removes the package install state. Rules (spec):
+ * one uninstallable scope → plain uninstall works; both scopes → require
+ * `--global`/`--project`; bundled ids are rejected; SQLite data is never
+ * touched here (`tools data purge` owns that).
+ */
+import { type ToolProvenance } from '@opensip-cli/core';
+import type { ToolsUninstallResult } from '@opensip-cli/contracts';
+/** Options for {@link toolsUninstall}. */
+export interface ToolsUninstallOptions {
+    /** Tool id or npm package name. */
+    readonly target: string;
+    readonly cwd: string;
+    readonly global?: boolean;
+    readonly project?: boolean;
+    /**
+     * The admitted-tool provenance for this run, read by the command handler from
+     * the entered RunScope and passed in (keeps this function pure). Used only to
+     * reject uninstalling a bundled tool. Default `[]`.
+     */
+    readonly provenance?: readonly ToolProvenance[];
+}
+/** Resolve + remove one installed tool. Never touches the datastore. */
+export declare function toolsUninstall(opts: ToolsUninstallOptions): ToolsUninstallResult;
+//# sourceMappingURL=uninstall.d.ts.map

package/dist/commands/tools/uninstall.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"uninstall.d.ts","sourceRoot":"","sources":["../../../src/commands/tools/uninstall.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,OAAO,EAKL,KAAK,cAAc,EACpB,MAAM,mBAAmB,CAAC;AAK3B,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAEnE,0CAA0C;AAC1C,MAAM,WAAW,qBAAqB;IACpC,mCAAmC;IACnC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC;IAC1B,QAAQ,CAAC,OAAO,CAAC,EAAE,OAAO,CAAC;IAC3B;;;;OAIG;IACH,QAAQ,CAAC,UAAU,CAAC,EAAE,SAAS,cAAc,EAAE,CAAC;CACjD;AA4BD,wEAAwE;AACxE,wBAAgB,cAAc,CAAC,IAAI,EAAE,qBAAqB,GAAG,oBAAoB,CAyDhF"}

package/dist/commands/tools/uninstall.js

@@ -0,0 +1,77 @@
+/**
+ * `tools uninstall` — scope-aware, identity-resolving removal (ADR-0041).
+ *
+ * Accepts a tool id OR a package name; resolves it against manifest scans of
+ * the two install hosts (file reads only — no runtime import), displays the
+ * resolved identity, and removes the package install state. Rules (spec):
+ * one uninstallable scope → plain uninstall works; both scopes → require
+ * `--global`/`--project`; bundled ids are rejected; SQLite data is never
+ * touched here (`tools data purge` owns that).
+ */
+import { join } from 'node:path';
+import { discoverPackagesInNodeModules, loadToolManifest, resolveProjectPaths, resolveUserPaths, } from '@opensip-cli/core';
+import { TOOL_DOMAIN } from '../plugin/domain-resolution.js';
+import { removeToolPlugin } from '../plugin-host-ops.js';
+/** Manifest-scan both install hosts for removable candidates (no imports). */
+function scanInstalledCandidates(cwd) {
+    const hosts = [
+        { dir: resolveProjectPaths(cwd).pluginsDir(TOOL_DOMAIN), scope: 'project' },
+        { dir: resolveUserPaths().pluginsDir(TOOL_DOMAIN), scope: 'global' },
+    ];
+    const candidates = [];
+    for (const host of hosts) {
+        for (const pkg of discoverPackagesInNodeModules(join(host.dir, 'node_modules'), 'tool')) {
+            const manifest = loadToolManifest('installed', pkg.packageDir);
+            candidates.push({ id: manifest?.id ?? pkg.name, packageName: pkg.name, scope: host.scope });
+        }
+    }
+    return candidates;
+}
+function failed(target, error) {
+    return { type: 'tools-uninstall', target, success: false, error };
+}
+/** Resolve + remove one installed tool. Never touches the datastore. */
+export function toolsUninstall(opts) {
+    // Bundled tools are not uninstallable — resolve the bundled id set from the
+    // run's provenance (always present: bundled admission is fail-closed).
+    const bundledIds = new Set((opts.provenance ?? []).filter((p) => p.source === 'bundled').map((p) => p.id));
+    if (bundledIds.has(opts.target)) {
+        return failed(opts.target, `'${opts.target}' is a bundled tool — it ships with the CLI and cannot be uninstalled`);
+    }
+    const matches = scanInstalledCandidates(opts.cwd).filter((c) => c.id === opts.target || c.packageName === opts.target);
+    if (matches.length === 0) {
+        return failed(opts.target, `no installed tool matches '${opts.target}' (by id or package name)`);
+    }
+    const distinctIds = new Set(matches.map((c) => c.id));
+    if (distinctIds.size > 1) {
+        const listing = matches.map((c) => `${c.id} (${c.packageName}, ${c.scope})`).join('; ');
+        return failed(opts.target, `'${opts.target}' is ambiguous across different tools: ${listing}`);
+    }
+    const scopes = new Set(matches.map((c) => c.scope));
+    let chosen;
+    if (opts.global === true || opts.project === true) {
+        const want = opts.global === true ? 'global' : 'project';
+        chosen = matches.find((c) => c.scope === want);
+        if (chosen === undefined) {
+            return failed(opts.target, `'${opts.target}' is not installed in the ${want} scope`);
+        }
+    }
+    else if (scopes.size > 1) {
+        return failed(opts.target, `'${opts.target}' is installed in BOTH scopes — pass --global or --project to choose`);
+    }
+    else {
+        chosen = matches[0];
+    }
+    const removal = removeToolPlugin(chosen.packageName, opts.cwd, chosen.scope === 'project');
+    if (removal.type !== 'plugin-remove' || removal.success !== true) {
+        const error = 'error' in removal ? (removal.error ?? 'removal failed') : 'removal failed';
+        return failed(opts.target, error);
+    }
+    return {
+        type: 'tools-uninstall',
+        target: opts.target,
+        success: true,
+        removed: { id: chosen.id, packageName: chosen.packageName, scope: chosen.scope },
+    };
+}
+//# sourceMappingURL=uninstall.js.map

package/dist/commands/tools/uninstall.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"uninstall.js","sourceRoot":"","sources":["../../../src/commands/tools/uninstall.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEjC,OAAO,EACL,6BAA6B,EAC7B,gBAAgB,EAChB,mBAAmB,EACnB,gBAAgB,GAEjB,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AAyBzD,8EAA8E;AAC9E,SAAS,uBAAuB,CAAC,GAAW;IAC1C,MAAM,KAAK,GAAmE;QAC5E,EAAE,GAAG,EAAE,mBAAmB,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE;QAC3E,EAAE,GAAG,EAAE,gBAAgB,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE;KACrE,CAAC;IACF,MAAM,UAAU,GAAyB,EAAE,CAAC;IAC5C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,KAAK,MAAM,GAAG,IAAI,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,EAAE,MAAM,CAAC,EAAE,CAAC;YACxF,MAAM,QAAQ,GAAG,gBAAgB,CAAC,WAAW,EAAE,GAAG,CAAC,UAAU,CAAC,CAAC;YAC/D,UAAU,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,IAAI,GAAG,CAAC,IAAI,EAAE,WAAW,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;QAC9F,CAAC;IACH,CAAC;IACD,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,SAAS,MAAM,CAAC,MAAc,EAAE,KAAa;IAC3C,OAAO,EAAE,IAAI,EAAE,iBAAiB,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC;AACpE,CAAC;AAED,wEAAwE;AACxE,MAAM,UAAU,cAAc,CAAC,IAA2B;IACxD,4EAA4E;IAC5E,uEAAuE;IACvE,MAAM,UAAU,GAAG,IAAI,GAAG,CACxB,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAC/E,CAAC;IACF,IAAI,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QAChC,OAAO,MAAM,CACX,IAAI,CAAC,MAAM,EACX,IAAI,IAAI,CAAC,MAAM,uEAAuE,CACvF,CAAC;IACJ,CAAC;IAED,MAAM,OAAO,GAAG,uBAAuB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,MAAM,CACtD,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,WAAW,KAAK,IAAI,CAAC,MAAM,CAC7D,CAAC;IACF,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,MAAM,CACX,IAAI,CAAC,MAAM,EACX,8BAA8B,IAAI,CAAC,MAAM,2BAA2B,CACrE,CAAC;IACJ,CAAC;IAED,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACtD,IAAI,WAAW,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,WAAW,KAAK,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxF,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,MAAM,0CAA0C,OAAO,EAAE,CAAC,CAAC;IACjG,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;IACpD,IAAI,MAAsC,CAAC;IAC3C,IAAI,IAAI,CAAC,MAAM,KAAK,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;QAClD,MAAM,IAAI,GAAgC,IAAI,CAAC,MAAM,KAAK,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;QACtF,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,IAAI,CAAC,CAAC;QAC/C,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;YACzB,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,MAAM,6BAA6B,IAAI,QAAQ,CAAC,CAAC;QACvF,CAAC;IACH,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QAC3B,OAAO,MAAM,CACX,IAAI,CAAC,MAAM,EACX,IAAI,IAAI,CAAC,MAAM,sEAAsE,CACtF,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACtB,CAAC;IAED,MAAM,OAAO,GAAG,gBAAgB,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC;IAC3F,IAAI,OAAO,CAAC,IAAI,KAAK,eAAe,IAAI,OAAO,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;QACjE,MAAM,KAAK,GAAG,OAAO,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,IAAI,gBAAgB,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC;QAC1F,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IACpC,CAAC;IACD,OAAO;QACL,IAAI,EAAE,iBAAiB;QACvB,MAAM,EAAE,IAAI,CAAC,MAAM;QACnB,OAAO,EAAE,IAAI;QACb,OAAO,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE;KACjF,CAAC;AACJ,CAAC"}

package/dist/commands/tools/validate.d.ts

@@ -0,0 +1,44 @@
+/**
+ * `tools validate` — user-invocable tool conformance (ADR-0041).
+ *
+ * The SAME admission pipeline bootstrap runs (`admitToolPackage` — one
+ * validator, four consumers), rendered as a sectioned report, plus the
+ * Tier A storage-contract scan (ADR-0042) and the config-contract checks.
+ *
+ * EXECUTION MODEL (the trust posture, stated plainly): validating a package
+ * is trusting it to execute — the runtime sections import the candidate's
+ * module. Mitigations, not promises: staging installs run npm with
+ * `--ignore-scripts` (install-time hooks never fire), and the module import
+ * happens in a child-process probe with a hard timeout (a crash boundary,
+ * NOT a security boundary).
+ *
+ * Staging: an npm/tarball spec installs into a TEMP host dir (removed in
+ * `finally`); a local directory path validates IN PLACE by default, or via a
+ * temp-host install with `--install-deps` (which also resolves the package's
+ * dependencies so the runtime sections can load it).
+ */
+import type { ToolsValidateResult } from '@opensip-cli/contracts';
+/** The one-line execution notice printed before any candidate code can run. */
+export declare const VALIDATE_EXECUTION_NOTICE: string;
+/** Options for {@link runToolValidation}. */
+export interface ToolValidationOptions {
+    /** Package spec: npm name/range/tarball/git spec, or a local directory path. */
+    readonly spec: string;
+    readonly cwd: string;
+    /** For LOCAL PATH specs: stage via temp-host npm install (resolves deps). */
+    readonly installDeps?: boolean;
+}
+/**
+ * Run every validation section against one candidate spec. Shared by
+ * `tools validate` (renders it) and `tools install` (gates activation on it).
+ * `keepStaged` hands ownership of the staged dir to the caller (install
+ * activates from the validated bytes — never a re-download).
+ */
+export declare function runToolValidation(opts: ToolValidationOptions, { keepStaged }?: {
+    keepStaged?: boolean;
+}): Promise<{
+    result: ToolsValidateResult;
+    stagedPkgDir?: string;
+    cleanup: () => void;
+}>;
+//# sourceMappingURL=validate.d.ts.map

package/dist/commands/tools/validate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate.d.ts","sourceRoot":"","sources":["../../../src/commands/tools/validate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAaH,OAAO,KAAK,EAAE,mBAAmB,EAAwB,MAAM,wBAAwB,CAAC;AAExF,+EAA+E;AAC/E,eAAO,MAAM,yBAAyB,QAG2B,CAAC;AAElE,6CAA6C;AAC7C,MAAM,WAAW,qBAAqB;IACpC,gFAAgF;IAChF,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,6EAA6E;IAC7E,QAAQ,CAAC,WAAW,CAAC,EAAE,OAAO,CAAC;CAChC;AAoKD;;;;;GAKG;AACH,wBAAsB,iBAAiB,CACrC,IAAI,EAAE,qBAAqB,EAC3B,EAAE,UAAkB,EAAE,GAAE;IAAE,UAAU,CAAC,EAAE,OAAO,CAAA;CAAO,GACpD,OAAO,CAAC;IAAE,MAAM,EAAE,mBAAmB,CAAC;IAAC,YAAY,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,IAAI,CAAA;CAAE,CAAC,CAyDtF"}