npm - peaks-cli - Versions diffs - 1.0.12 → 1.0.14 - Mend

peaks-cli 1.0.12 → 1.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (112) hide show

package/dist/src/services/artifacts/request-artifact-service.js ADDED Viewed

@@ -0,0 +1,432 @@
+import { mkdir, readFile, readdir, writeFile } from 'node:fs/promises';
+import { dirname, join } from 'node:path';
+import { isDirectory, listDirectories, pathExists } from '../../shared/fs.js';
+const REQUEST_ID_PATTERN = /^[A-Za-z0-9][A-Za-z0-9._-]*$/;
+const VALID_ROLES = new Set(['prd', 'ui', 'rd', 'qa']);
+function defaultClock() {
+    return new Date().toISOString();
+}
+function dateSlugFromIso(iso) {
+    return iso.slice(0, 10);
+}
+function defaultSessionId(iso) {
+    return `${dateSlugFromIso(iso)}-session`;
+}
+function renderPrdTemplate(requestId, sessionId, timestamp) {
+    return `# PRD Request ${requestId}
+- session: ${sessionId}
+- type: feature | bug | refactor | clarification
+- source: <ticket, message URL, or "verbal" with a short sanitized quote>
+- raw input (sanitized): <one-paragraph restatement of what the user actually asked for>
+## Goals
+- ...
+## Non-goals
+- ...
+## Preserved behavior
+- ...
+## Acceptance criteria
+- ... (browser-verifiable when frontend is in scope)
+## Frontend delta (only when target is frontend)
+- pages / routes / components / states / permissions / data deps / edge cases
+- 待联调态: ...
+- API contracts pending: ...
+## Risks and open questions
+- ...
+## Handoff
+- to peaks-rd: .peaks/${sessionId}/rd/requests/${requestId}.md
+- to peaks-qa: .peaks/${sessionId}/qa/requests/${requestId}.md
+- to peaks-ui: .peaks/${sessionId}/ui/requests/${requestId}.md  (when UI involved)
+## Status
+- created: ${timestamp}
+- last update: ${timestamp}
+- state: draft
+`;
+}
+function renderUiTemplate(requestId, sessionId, timestamp) {
+    return `# UI Request ${requestId}
+- session: ${sessionId}
+- linked-prd: .peaks/${sessionId}/prd/requests/${requestId}.md
+- scope: full new surface | iteration on existing surface | regression fix | visual refresh
+- design direction: editorial | bento | Swiss | luxury | retro-futurist | glass | product-system | other-explicit-name
+## Affected surfaces
+- pages / routes / components / modals / states (loading, empty, error, hover, focus, active, responsive)
+- explicit out-of-scope surfaces (do not modify)
+## UX flow and page states
+- entry points, primary flow, secondary flows, exit points
+- state machine per surface when state transitions matter
+## Visual constraints
+- typography pair: ...
+- palette: ...
+- density and motion intensity dials: ...
+- rejected generic patterns
+## Interaction constraints
+- keyboard, focus order, ARIA roles, gesture support, accessibility minima
+## UI regression seeds
+- list of visible regressions QA must check against the prior state
+## Browser evidence
+- sanitized observations only — no login URLs, cookies, headers, tokens, storage state, browser traces, or screenshots/logs with PII / SSO / MFA material
+## Handoff
+- to peaks-rd: .peaks/${sessionId}/rd/requests/${requestId}.md
+- to peaks-qa: .peaks/${sessionId}/qa/requests/${requestId}.md
+## Status
+- created: ${timestamp}
+- last update: ${timestamp}
+- state: draft
+`;
+}
+function renderRdTemplate(requestId, sessionId, timestamp) {
+    return `# RD Request ${requestId}
+- session: ${sessionId}
+- linked-prd: .peaks/${sessionId}/prd/requests/${requestId}.md
+- linked-ui:  .peaks/${sessionId}/ui/requests/${requestId}.md  (when UI involved)
+- type: feature | bug | refactor | clarification
+## Red-line scope
+- in-scope files / routes / API paths / data models
+- explicit out-of-scope surfaces (do not modify, mock, delete, or replace)
+## Standards preflight
+- peaks standards init/update --project <path> --dry-run output paths and status
+- planned application: apply | review-only | blocked
+## OpenSpec linkage (when openspec/ exists)
+- change-id: <openspec change id>
+- entry validate: peaks openspec validate <change-id> data.valid status
+- to-rd projection: peaks openspec to-rd <change-id> artifact path
+- exit validate (after implementation): status
+## Coverage status
+- current total UT coverage: <percent>
+- new/changed code coverage: <percent>
+- gate verdict: pass | legacy-accepted | blocked
+## Slice contract
+- slice id, functional boundary, pre-refactor behavior, target structure, unit-test requirements, acceptance checks, rollback plan, commit boundary
+## Implementation evidence
+- diff paths, test commands + outputs, code review findings + fixes, security review findings + fixes, dry-run output
+## MCP usage (when external docs lookup was used)
+- capabilityId / tool / sanitized args
+- artifact path of stored result
+- no secrets, no full network bodies
+## Handoff
+- to peaks-qa: .peaks/${sessionId}/qa/requests/${requestId}.md
+- to peaks-sc: .peaks/${sessionId}/sc/commit-boundaries/${requestId}.md
+## Status
+- created: ${timestamp}
+- last update: ${timestamp}
+- state: draft
+`;
+}
+function renderQaTemplate(requestId, sessionId, timestamp) {
+    return `# QA Request ${requestId}
+- session: ${sessionId}
+- linked-prd: .peaks/${sessionId}/prd/requests/${requestId}.md
+- linked-rd:  .peaks/${sessionId}/rd/requests/${requestId}.md
+- linked-ui:  .peaks/${sessionId}/ui/requests/${requestId}.md  (when UI involved)
+- type: feature | bug | refactor | clarification
+## Red-line boundary check
+- in-scope changes seen in the diff (match PRD + RD scope)
+- out-of-scope changes flagged (any extra file, route, mock, fixture, behavior)
+- verdict: clean | boundary-violation
+## OpenSpec exit gate (when openspec/ exists)
+- change-id: <id>
+- peaks openspec validate <id> data.valid: true | false
+- issues: ...
+## Acceptance checks
+- per-criterion: check method, result (pass | fail | blocked), evidence path
+## Mandatory validation gates
+- unit tests: command + pass/fail + coverage delta
+- API validation (when applicable): request paths exercised, evidence
+- browser E2E (when frontend): headed gstack/browse/dist/browse visible-browser confirmation, sanitized route/actions, console/network observations
+- browser-error feedback loop: page errors, console exceptions, broken network, hydration failures → return-to-RD evidence
+- security check: tool used, findings, fixes, unresolved risks
+- performance check: tool used, baseline vs after numbers when available
+- validation report path
+## Regression matrix
+- list of surfaces / API paths / browser flows checked
+- pass/fail per row
+## Browser evidence
+- sanitized observations only — no login URLs, cookies, headers, tokens, storage state, browser traces, or screenshots/logs with PII / SSO / MFA material
+## Verdict
+- overall: pass | return-to-rd | blocked
+## Status
+- created: ${timestamp}
+- last update: ${timestamp}
+- state: draft
+`;
+}
+function renderTemplate(role, requestId, sessionId, timestamp) {
+    switch (role) {
+        case 'prd':
+            return renderPrdTemplate(requestId, sessionId, timestamp);
+        case 'ui':
+            return renderUiTemplate(requestId, sessionId, timestamp);
+        case 'rd':
+            return renderRdTemplate(requestId, sessionId, timestamp);
+        case 'qa':
+            return renderQaTemplate(requestId, sessionId, timestamp);
+    }
+}
+export async function createRequestArtifact(options) {
+    if (!VALID_ROLES.has(options.role)) {
+        throw new Error(`Invalid role: ${String(options.role)} (expected prd, ui, rd, or qa)`);
+    }
+    if (!REQUEST_ID_PATTERN.test(options.requestId)) {
+        throw new Error(`Invalid request id: ${options.requestId} (expected letters, digits, dots, underscores, or dashes)`);
+    }
+    const clock = options.clock ?? defaultClock;
+    const timestamp = clock();
+    const sessionId = options.sessionId ?? defaultSessionId(timestamp);
+    const path = join(options.projectRoot, '.peaks', sessionId, options.role, 'requests', `${options.requestId}.md`);
+    const content = renderTemplate(options.role, options.requestId, sessionId, timestamp);
+    if (options.apply !== true) {
+        return { role: options.role, requestId: options.requestId, sessionId, path, content, applied: false };
+    }
+    if (await pathExists(path)) {
+        throw new Error(`Refusing to write: ${path} already exists. Update it in place or remove it before re-running peaks request init.`);
+    }
+    await mkdir(dirname(path), { recursive: true });
+    await writeFile(path, content, 'utf8');
+    return { role: options.role, requestId: options.requestId, sessionId, path, content, applied: true };
+}
+function extractStateAndCreated(markdown) {
+    let state = 'unknown';
+    let createdAt;
+    for (const rawLine of markdown.split(/\r?\n/)) {
+        const line = rawLine.trim();
+        const stateMatch = /^-\s*state:\s*(.+?)\s*$/.exec(line);
+        if (stateMatch !== null && stateMatch[1] !== undefined) {
+            state = stateMatch[1];
+            continue;
+        }
+        const createdMatch = /^-\s*created:\s*(.+?)\s*$/.exec(line);
+        if (createdMatch !== null && createdMatch[1] !== undefined) {
+            createdAt = createdMatch[1];
+        }
+    }
+    return createdAt === undefined ? { state } : { state, createdAt };
+}
+async function readSummary(projectRoot, sessionId, role, fileName) {
+    const path = join(projectRoot, '.peaks', sessionId, role, 'requests', fileName);
+    const body = await readFile(path, 'utf8');
+    const { state, createdAt } = extractStateAndCreated(body);
+    const requestId = fileName.replace(/\.md$/, '');
+    const summary = { role, sessionId, requestId, path, state };
+    if (createdAt !== undefined) {
+        summary.createdAt = createdAt;
+    }
+    return summary;
+}
+async function listMarkdownFiles(dir) {
+    if (!(await isDirectory(dir))) {
+        return [];
+    }
+    const entries = await readdir(dir, { withFileTypes: true });
+    return entries
+        .filter((entry) => entry.isFile() && entry.name.endsWith('.md'))
+        .map((entry) => entry.name)
+        .sort();
+}
+export async function listRequestArtifacts(options) {
+    const peaksRoot = join(options.projectRoot, '.peaks');
+    if (!(await isDirectory(peaksRoot))) {
+        return [];
+    }
+    const sessions = options.sessionId !== undefined ? [options.sessionId] : await listDirectories(peaksRoot);
+    const roles = options.role !== undefined ? [options.role] : Array.from(VALID_ROLES);
+    const summaries = [];
+    for (const sessionId of sessions) {
+        for (const role of roles) {
+            const dir = join(peaksRoot, sessionId, role, 'requests');
+            const fileNames = await listMarkdownFiles(dir);
+            for (const fileName of fileNames) {
+                summaries.push(await readSummary(options.projectRoot, sessionId, role, fileName));
+            }
+        }
+    }
+    return summaries;
+}
+export async function showRequestArtifact(options) {
+    if (!VALID_ROLES.has(options.role)) {
+        throw new Error(`Invalid role: ${String(options.role)} (expected prd, ui, rd, or qa)`);
+    }
+    if (!REQUEST_ID_PATTERN.test(options.requestId)) {
+        throw new Error(`Invalid request id: ${options.requestId} (expected letters, digits, dots, underscores, or dashes)`);
+    }
+    const fileName = `${options.requestId}.md`;
+    if (options.sessionId !== undefined) {
+        const path = join(options.projectRoot, '.peaks', options.sessionId, options.role, 'requests', fileName);
+        if (!(await pathExists(path))) {
+            return null;
+        }
+        const summary = await readSummary(options.projectRoot, options.sessionId, options.role, fileName);
+        const content = await readFile(path, 'utf8');
+        return { ...summary, content };
+    }
+    const peaksRoot = join(options.projectRoot, '.peaks');
+    if (!(await isDirectory(peaksRoot))) {
+        return null;
+    }
+    const sessions = await listDirectories(peaksRoot);
+    for (const sessionId of sessions) {
+        const path = join(peaksRoot, sessionId, options.role, 'requests', fileName);
+        if (await pathExists(path)) {
+            const summary = await readSummary(options.projectRoot, sessionId, options.role, fileName);
+            const content = await readFile(path, 'utf8');
+            return { ...summary, content };
+        }
+    }
+    return null;
+}
+const ALLOWED_STATES_PER_ROLE = {
+    prd: ['draft', 'confirmed-by-user', 'handed-off', 'blocked'],
+    ui: ['draft', 'direction-locked', 'handed-off', 'blocked'],
+    rd: ['draft', 'spec-locked', 'implemented', 'qa-handoff', 'handed-off', 'blocked'],
+    qa: ['draft', 'running', 'verdict-issued', 'blocked']
+};
+export function allowedStatesForRole(role) {
+    return ALLOWED_STATES_PER_ROLE[role];
+}
+function updateStatusBlock(markdown, newState, timestamp, reason) {
+    const lines = markdown.split(/\r?\n/);
+    let previousState = 'unknown';
+    let stateLineIndex = -1;
+    let lastUpdateLineIndex = -1;
+    for (const [index, raw] of lines.entries()) {
+        const trimmed = raw.trim();
+        const stateMatch = /^-\s*state:\s*(.+?)\s*$/.exec(trimmed);
+        if (stateMatch !== null && stateMatch[1] !== undefined) {
+            previousState = stateMatch[1];
+            stateLineIndex = index;
+            continue;
+        }
+        if (/^-\s*last update:\s*/.test(trimmed)) {
+            lastUpdateLineIndex = index;
+        }
+    }
+    if (stateLineIndex >= 0) {
+        lines[stateLineIndex] = `- state: ${newState}`;
+    }
+    else {
+        lines.push('', '## Status', '', `- state: ${newState}`);
+    }
+    if (lastUpdateLineIndex >= 0) {
+        lines[lastUpdateLineIndex] = `- last update: ${timestamp}`;
+    }
+    else if (stateLineIndex >= 0) {
+        lines.splice(stateLineIndex, 0, `- last update: ${timestamp}`);
+    }
+    else {
+        lines.push(`- last update: ${timestamp}`);
+    }
+    if (reason !== undefined && reason.length > 0) {
+        lines.push(`- transition note (${timestamp}): ${reason}`);
+    }
+    return { updated: lines.join('\n'), previousState };
+}
+export async function transitionRequestArtifact(options) {
+    if (!VALID_ROLES.has(options.role)) {
+        throw new Error(`Invalid role: ${String(options.role)} (expected prd, ui, rd, or qa)`);
+    }
+    if (!REQUEST_ID_PATTERN.test(options.requestId)) {
+        throw new Error(`Invalid request id: ${options.requestId} (expected letters, digits, dots, underscores, or dashes)`);
+    }
+    const allowed = ALLOWED_STATES_PER_ROLE[options.role];
+    if (!allowed.includes(options.newState)) {
+        throw new Error(`Invalid state for role ${options.role}: ${options.newState} (expected one of ${allowed.join(', ')})`);
+    }
+    const showOptions = {
+        projectRoot: options.projectRoot,
+        role: options.role,
+        requestId: options.requestId
+    };
+    if (options.sessionId !== undefined) {
+        showOptions.sessionId = options.sessionId;
+    }
+    const existing = await showRequestArtifact(showOptions);
+    if (existing === null) {
+        return null;
+    }
+    const clock = options.clock ?? defaultClock;
+    const timestamp = clock();
+    const { updated, previousState } = updateStatusBlock(existing.content, options.newState, timestamp, options.reason);
+    await writeFile(existing.path, updated, 'utf8');
+    const result = {
+        role: options.role,
+        sessionId: existing.sessionId,
+        requestId: options.requestId,
+        path: existing.path,
+        state: options.newState,
+        previousState,
+        content: updated
+    };
+    if (existing.createdAt !== undefined) {
+        result.createdAt = existing.createdAt;
+    }
+    return result;
+}

package/dist/src/services/codegraph/codegraph-process-runner.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import type { CodegraphExecutionResult, CodegraphInvocation } from './codegraph-service.js';
2	+ export declare function defaultCodegraphProcessRunner(invocation: CodegraphInvocation): Promise<CodegraphExecutionResult>;

package/dist/src/services/codegraph/codegraph-process-runner.js ADDED Viewed

@@ -0,0 +1,93 @@
+import { spawn } from 'node:child_process';
+import { join } from 'node:path';
+const CODEGRAPH_PROCESS_TIMEOUT_MS = 600_000;
+const CODEGRAPH_OUTPUT_LIMIT_BYTES = 10 * 1024 * 1024;
+function createCodegraphEnvironment(sourceEnv = process.env) {
+    const preservedKeys = ['PATH', 'Path', 'HOME', 'USERPROFILE', 'APPDATA', 'LOCALAPPDATA', 'TEMP', 'TMP', 'SystemRoot', 'WINDIR'];
+    const environment = {};
+    for (const key of preservedKeys) {
+        const value = sourceEnv[key];
+        if (value !== undefined) {
+            environment[key] = value;
+        }
+    }
+    return environment;
+}
+function assertOutputLimit(currentSize, chunkSize) {
+    const nextSize = currentSize + chunkSize;
+    if (nextSize > CODEGRAPH_OUTPUT_LIMIT_BYTES) {
+        throw new Error(`codegraph output exceeded ${CODEGRAPH_OUTPUT_LIMIT_BYTES} bytes`);
+    }
+    return nextSize;
+}
+function terminateCodegraphProcess(childProcess) {
+    if (childProcess.pid === undefined) {
+        childProcess.kill();
+        return;
+    }
+    if (process.platform === 'win32') {
+        if (process.env.SystemRoot) {
+            spawn(join(process.env.SystemRoot, 'System32', 'taskkill.exe'), ['/pid', String(childProcess.pid), '/T', '/F'], { shell: false, stdio: 'ignore' });
+        }
+        else {
+            childProcess.kill();
+        }
+        return;
+    }
+    try {
+        process.kill(-childProcess.pid, 'SIGTERM');
+    }
+    catch {
+        childProcess.kill('SIGTERM');
+    }
+}
+export function defaultCodegraphProcessRunner(invocation) {
+    return new Promise((resolveResult, reject) => {
+        const childProcess = spawn(invocation.executable, invocation.args, {
+            cwd: invocation.cwd,
+            detached: process.platform !== 'win32',
+            env: createCodegraphEnvironment(),
+            shell: false
+        });
+        const timeout = setTimeout(() => {
+            terminateCodegraphProcess(childProcess);
+            reject(new Error(`codegraph process timed out after ${CODEGRAPH_PROCESS_TIMEOUT_MS}ms`));
+        }, CODEGRAPH_PROCESS_TIMEOUT_MS);
+        const stdoutChunks = [];
+        const stderrChunks = [];
+        let stdoutSize = 0;
+        let stderrSize = 0;
+        childProcess.stdout.on('data', (chunk) => {
+            try {
+                stdoutSize = assertOutputLimit(stdoutSize, chunk.length);
+                stdoutChunks.push(chunk);
+            }
+            catch (error) {
+                terminateCodegraphProcess(childProcess);
+                reject(error);
+            }
+        });
+        childProcess.stderr.on('data', (chunk) => {
+            try {
+                stderrSize = assertOutputLimit(stderrSize, chunk.length);
+                stderrChunks.push(chunk);
+            }
+            catch (error) {
+                terminateCodegraphProcess(childProcess);
+                reject(error);
+            }
+        });
+        childProcess.on('error', (error) => {
+            clearTimeout(timeout);
+            reject(error);
+        });
+        childProcess.on('close', (exitCode) => {
+            clearTimeout(timeout);
+            resolveResult({
+                exitCode,
+                stdout: Buffer.concat(stdoutChunks).toString('utf8'),
+                stderr: Buffer.concat(stderrChunks).toString('utf8')
+            });
+        });
+    });
+}