peaks-cli 1.4.2 → 2.0.1

package/dist/src/services/audit/enforcers/lint-style.js

@@ -0,0 +1,173 @@
+/**
+ * P2-a lint-style enforcers — Theme A (section structure) and
+ * Theme B (frontmatter shape).
+ *
+ * These enforcers do NOT block commands; they feed the
+ * `peaks audit red-lines --json` report. The backing-detector
+ * downgrades them to `cli-backed` when the catalog has an
+ * `enforcerRef` (i.e. this file) and the per-skill scan finds a
+ * match. The audit service counts hits + misses and reports the
+ * per-catalog-entry breakdown.
+ *
+ * Pattern-only (no shell-out, no FS writes, no env mutations) so
+ * the enforcer can run inside the `peaks audit red-lines` hot
+ * path without the 5s ECC-AgentShield subprocess budget.
+ */
+import { readFileSync } from 'node:fs';
+import { join } from 'node:path';
+const SECTION_HARD_CONTRACTS_HEADING = /^##\s+(Hard contracts|Hard contract)\b/im;
+const SECTION_MANDATORY_HEADING = /^##\s+Mandatory\b/im;
+const SECTION_DEFAULT_RUNBOOK_HEADING = /^##\s+(Default runbook|Default)\b/im;
+const SECTION_GATE_INDEX_HEADING = /^##\s+(RD gate index|QA gate index|Gate index|gate-index)\b/im;
+const SECTION_NAMING_AXIOM_HEADING = /(Two-axis naming convention|change-id.*session-id|두 가지 직교 축)/i;
+const FRONTMATTER_NAME_LINE = /^name:\s*peaks-/m;
+const FRONTMATTER_DESCRIPTION_LINE = /^description:\s*\S/m;
+const FRONTMATTER_LOAD_STRATEGY = /loadStrategy:\s*(always|on-demand)/i;
+const FRONTMATTER_APPLICABLE_TASK_LEVELS = /applicableTaskLevels/i;
+export function readSkillFiles(skillsRoot, names) {
+    const out = [];
+    for (const name of names) {
+        const path = join(skillsRoot, name, 'SKILL.md');
+        const body = readFileSync(path, 'utf8');
+        out.push({ name, path, body, lines: body.split(/\r?\n/) });
+    }
+    return out;
+}
+function findLine(lines, pattern) {
+    for (let i = 0; i < lines.length; i += 1) {
+        if (pattern.test(lines[i] ?? ''))
+            return i + 1;
+    }
+    return -1;
+}
+function matchedText(lines, line) {
+    if (line <= 0)
+        return '';
+    return (lines[line - 1] ?? '').trim();
+}
+/** Theme A — section structure. Returns lint hits (positive = rule
+ *  satisfied, so a missing heading fires the lint hit; downstream
+ *  audit service decides whether to WARN or pass). */
+export function lintSectionShape(skill) {
+    const hits = [];
+    const rules = [
+        { id: 'rl-section-hard-contracts-001', rule: 'Hard contracts for browser/IO surface', pattern: SECTION_HARD_CONTRACTS_HEADING },
+        { id: 'rl-section-mandatory-artifact-001', rule: 'Mandatory per-request artifact', pattern: SECTION_MANDATORY_HEADING },
+        { id: 'rl-section-default-runbook-001', rule: 'Default runbook pointer', pattern: SECTION_DEFAULT_RUNBOOK_HEADING },
+        { id: 'rl-section-gate-index-001', rule: 'Gate index', pattern: SECTION_GATE_INDEX_HEADING },
+        { id: 'rl-section-naming-axiom-001', rule: 'Two-axis naming axiom', pattern: SECTION_NAMING_AXIOM_HEADING }
+    ];
+    for (const r of rules) {
+        const line = findLine(skill.lines, r.pattern);
+        if (line === -1) {
+            hits.push({
+                catalogId: r.id,
+                rule: r.rule,
+                file: skill.path,
+                line: 1,
+                matchedText: '(missing section)'
+            });
+        }
+    }
+    return hits;
+}
+/**
+ * ASCII wireframe section-order check (spec §5.4 line 647).
+ *
+ * The "ASCII wireframe" lint hint in the spec means: SKILL.md
+ * follows a canonical section ordering. The first 5 sections
+ * must appear in this fixed order:
+ *
+ *   1. Two-axis naming axiom (top-of-file naming convention callout)
+ *   2. Hard contracts for browser/IO surface (when present)
+ *   3. Mandatory per-request artifact
+ *   4. Default runbook
+ *   5. RD / QA gate index
+ *
+ * If both sections exist but appear in the wrong order, the
+ * enforcer reports a wireframe-violation hit pointing at the
+ * section that came too early.
+ *
+ * If a section is missing, the per-section enforcer (above)
+ * already fires; this one only handles the **order** invariant
+ * (the wireframe shape).
+ */
+export function lintSectionOrder(skill) {
+    const hits = [];
+    const order = [
+        { id: 'rl-section-naming-axiom-001', rule: 'Two-axis naming axiom must precede Hard contracts', pattern: SECTION_NAMING_AXIOM_HEADING },
+        { id: 'rl-section-hard-contracts-001', rule: 'Hard contracts must precede Default runbook', pattern: SECTION_HARD_CONTRACTS_HEADING },
+        { id: 'rl-section-default-runbook-001', rule: 'Default runbook must precede Gate index', pattern: SECTION_DEFAULT_RUNBOOK_HEADING },
+    ];
+    let lastSeenLine = -1;
+    let lastSeenRule = '';
+    for (const r of order) {
+        const line = findLine(skill.lines, r.pattern);
+        if (line === -1)
+            continue; // missing-section is its own enforcer
+        if (line < lastSeenLine) {
+            hits.push({
+                catalogId: 'rl-section-order-wireframe-001',
+                rule: 'Section wireframe order: each section must appear in the canonical order',
+                file: skill.path,
+                line,
+                matchedText: `(section "${r.rule}" at line ${line} comes after "${lastSeenRule}" at line ${lastSeenLine})`,
+            });
+        }
+        lastSeenLine = line;
+        lastSeenRule = r.rule;
+    }
+    return hits;
+}
+/** Theme B — frontmatter shape. Same convention as Theme A. */
+export function lintFrontmatterShape(skill) {
+    const hits = [];
+    const hasName = FRONTMATTER_NAME_LINE.test(skill.body);
+    const hasDescription = FRONTMATTER_DESCRIPTION_LINE.test(skill.body);
+    if (!hasName || !hasDescription) {
+        hits.push({
+            catalogId: 'rl-frontmatter-skills-md-001',
+            rule: 'skills_md parseable frontmatter',
+            file: skill.path,
+            line: 1,
+            matchedText: '(missing name or description)'
+        });
+    }
+    // The `applicableTaskLevels` field is a body-level annotation, not
+    // strictly YAML frontmatter. We accept either a top-of-file
+    // frontmatter `applicableTaskLevels:` line or an in-body "applies
+    // to <levels>" sentence.
+    if (!FRONTMATTER_APPLICABLE_TASK_LEVELS.test(skill.body)) {
+        hits.push({
+            catalogId: 'rl-frontmatter-applicable-task-levels-001',
+            rule: 'skill applicable task levels',
+            file: skill.path,
+            line: 1,
+            matchedText: '(missing applicableTaskLevels)'
+        });
+    }
+    return hits;
+}
+/**
+ * Reference loadStrategy: scan every `references/*.md` in the
+ * skill's references/ dir for a `loadStrategy: always | on-demand`
+ * line. The audit is invoked per-skill, so this helper takes a
+ * `referencesRoot` (the skill's `references/` dir).
+ */
+export function lintReferenceLoadStrategy(referencesRoot, refs) {
+    const hits = [];
+    for (const ref of refs) {
+        const path = join(referencesRoot, ref);
+        const body = readFileSync(path, 'utf8');
+        if (!FRONTMATTER_LOAD_STRATEGY.test(body)) {
+            hits.push({
+                catalogId: 'rl-frontmatter-references-load-strategy-001',
+                rule: 'references loadStrategy declared',
+                file: path,
+                line: 1,
+                matchedText: '(missing loadStrategy)'
+            });
+        }
+    }
+    return hits;
+}

package/dist/src/services/audit/enforcers/lint-workflow-shape.d.ts

@@ -0,0 +1,5 @@
+import type { LintHit, SkillFile } from './lint-style.js';
+export declare function lintOpenSpecAcceptanceBullets(projectRoot: string): readonly LintHit[];
+export declare function lintOpenSpecSpecReference(projectRoot: string): readonly LintHit[];
+export declare function lintTechDocPresenceShape(projectRoot: string): readonly LintHit[];
+export declare function lintPeaksDoctorAcknowledged(skill: SkillFile): readonly LintHit[];

package/dist/src/services/audit/enforcers/lint-workflow-shape.js

@@ -0,0 +1,141 @@
+/**
+ * P2-a Theme F - workflow-bound shape enforcers.
+ *
+ * Static pattern scans of openspec/changes/STAR/proposal.md, the
+ * rd/tech-doc.md template, and the request-artifact-writing skills
+ * for canonical shape (acceptance bullets, spec reference,
+ * red-line scope, peaks-doctor acknowledgement).
+ */
+import { existsSync, lstatSync, readdirSync, readFileSync, statSync } from 'node:fs';
+import { join } from 'node:path';
+const AC_BULLET_PATTERN = /^\s*-\s+\S/m;
+const SPEC_REFERENCE_HEADING = /^##\s+Spec reference(?:\s+\(canonical\))?\s*$/im;
+const RED_LINE_SCOPE_HEADING = /^##\s+Red-line scope\s*$/im;
+const IMPL_EVIDENCE_HEADING = /^##\s+Implementation evidence\s*$/im;
+const PEAKS_DOCTOR_PATTERN = /\bpeaks[- ]doctor\b/i;
+export function lintOpenSpecAcceptanceBullets(projectRoot) {
+    const openspecDir = join(projectRoot, 'openspec', 'changes');
+    if (!existsSync(openspecDir))
+        return [];
+    const hits = [];
+    for (const entry of readdirSync(openspecDir)) {
+        const stat = statSync(join(openspecDir, entry));
+        if (!stat.isDirectory())
+            continue;
+        const proposal = join(openspecDir, entry, 'proposal.md');
+        if (!existsSync(proposal))
+            continue;
+        const body = readFileSync(proposal, 'utf8');
+        // Slice ## Acceptance Criteria heading.
+        const acMatch = /##\s+Acceptance Criteria\s*$/im.exec(body);
+        if (acMatch === null) {
+            hits.push({
+                catalogId: 'rl-openspec-proposal-has-acceptance-bullets-001',
+                rule: 'openspec proposal has non-empty Acceptance Criteria bullets',
+                file: proposal,
+                line: 1,
+                matchedText: '(missing ## Acceptance Criteria heading)'
+            });
+            continue;
+        }
+        // Capture everything from ## Acceptance Criteria up to the next ## heading.
+        const tail = body.slice(acMatch.index + acMatch[0].length);
+        const nextHeading = tail.search(/^##\s/m);
+        const acBlock = nextHeading === -1 ? tail : tail.slice(0, nextHeading);
+        if (!AC_BULLET_PATTERN.test(acBlock)) {
+            hits.push({
+                catalogId: 'rl-openspec-proposal-has-acceptance-bullets-001',
+                rule: 'openspec proposal has non-empty Acceptance Criteria bullets',
+                file: proposal,
+                line: 1,
+                matchedText: '(no `- ` bullet under ## Acceptance Criteria)'
+            });
+        }
+    }
+    return hits;
+}
+export function lintOpenSpecSpecReference(projectRoot) {
+    const openspecDir = join(projectRoot, 'openspec', 'changes');
+    if (!existsSync(openspecDir))
+        return [];
+    const hits = [];
+    for (const entry of readdirSync(openspecDir)) {
+        const stat = statSync(join(openspecDir, entry));
+        if (!stat.isDirectory())
+            continue;
+        const proposal = join(openspecDir, entry, 'proposal.md');
+        if (!existsSync(proposal))
+            continue;
+        const body = readFileSync(proposal, 'utf8');
+        if (!SPEC_REFERENCE_HEADING.test(body)) {
+            hits.push({
+                catalogId: 'rl-openspec-proposal-has-spec-changes-001',
+                rule: 'openspec proposal has Spec reference (canonical) link',
+                file: proposal,
+                line: 1,
+                matchedText: '(missing ## Spec reference (canonical) heading)'
+            });
+        }
+    }
+    return hits;
+}
+export function lintTechDocPresenceShape(projectRoot) {
+    // Scan every session's rd/tech-doc.md for the two required
+    // sections. The session dir is .peaks/_runtime/<sid>/.
+    // .peaks/_runtime/ also contains marker files like
+    // `active-skill.json`, `classify-audit.jsonl`, and a
+    // `current-change` symlink (per slice 2026-06-12-postinstall-
+    // 1x-detector-tdd, the current-change symlink can be broken
+    // across major session boundaries). Use lstatSync (does not
+    // follow symlinks) + isSymbolicLink guard so broken symlinks
+    // and marker files are skipped, not crashed on.
+    const runtimeDir = join(projectRoot, '.peaks', '_runtime');
+    if (!existsSync(runtimeDir))
+        return [];
+    const hits = [];
+    for (const sessionEntry of readdirSync(runtimeDir)) {
+        const sessionDir = join(runtimeDir, sessionEntry);
+        let stat;
+        try {
+            stat = lstatSync(sessionDir);
+        }
+        catch {
+            // broken symlink or unreadable entry — skip
+            continue;
+        }
+        if (stat.isSymbolicLink() || !stat.isDirectory())
+            continue;
+        const techDoc = join(sessionDir, 'rd', 'tech-doc.md');
+        if (!existsSync(techDoc))
+            continue;
+        const body = readFileSync(techDoc, 'utf8');
+        if (!RED_LINE_SCOPE_HEADING.test(body) || !IMPL_EVIDENCE_HEADING.test(body)) {
+            hits.push({
+                catalogId: 'rl-tech-doc-presence-pre-rd-001',
+                rule: 'rd/tech-doc.md has Red-line scope + Implementation evidence',
+                file: techDoc,
+                line: 1,
+                matchedText: '(missing ## Red-line scope or ## Implementation evidence)'
+            });
+        }
+    }
+    return hits;
+}
+export function lintPeaksDoctorAcknowledged(skill) {
+    // The enforcer fires only for skills that write a request
+    // artifact (rd / qa / prd / ui / sc / txt) — detected by the
+    // presence of `peaks request init` or `peaks request show` in
+    // the body.
+    const writesRequestArtifact = /\bpeaks\s+request\s+(init|show|transition)\b/.test(skill.body);
+    if (!writesRequestArtifact)
+        return [];
+    if (PEAKS_DOCTOR_PATTERN.test(skill.body))
+        return [];
+    return [{
+            catalogId: 'rl-peaks-doctor-skill-acknowledged-001',
+            rule: 'skill that writes a request artifact acknowledges peaks doctor',
+            file: skill.path,
+            line: 1,
+            matchedText: '(no peaks doctor / peaks-doctor mention in skill body)'
+        }];
+}

package/dist/src/services/audit/enforcers/login-gate.d.ts

@@ -0,0 +1,23 @@
+/**
+ * login-gate enforcer (L2.2 P1) — verifies destructive / auth-required
+ * paths require explicit user confirmation.
+ *
+ * Two red lines:
+ *   - rl-login-gate-001: destructive paths (uninstall, drop, force-push) must
+ *     require user confirmation
+ *   - rl-login-gate-002: protected paths (auth-required) must check session
+ *
+ * This is a static-check enforcer: the actual runtime gate is in
+ * `peaks mode-enforcement` (the requireUserConfirmation function). The
+ * catalog entry points to this file; the audit flags it as cli-backed
+ * when the integration is wired (L2.2 ships the wiring).
+ */
+export interface LoginGateInput {
+    readonly command: string;
+}
+export interface LoginGateResult {
+    readonly destructive: boolean;
+    readonly protected: boolean;
+    readonly matchedPattern: string | null;
+}
+export declare function checkLoginGate(input: LoginGateInput): LoginGateResult;

package/dist/src/services/audit/enforcers/login-gate.js

@@ -0,0 +1,40 @@
+/**
+ * login-gate enforcer (L2.2 P1) — verifies destructive / auth-required
+ * paths require explicit user confirmation.
+ *
+ * Two red lines:
+ *   - rl-login-gate-001: destructive paths (uninstall, drop, force-push) must
+ *     require user confirmation
+ *   - rl-login-gate-002: protected paths (auth-required) must check session
+ *
+ * This is a static-check enforcer: the actual runtime gate is in
+ * `peaks mode-enforcement` (the requireUserConfirmation function). The
+ * catalog entry points to this file; the audit flags it as cli-backed
+ * when the integration is wired (L2.2 ships the wiring).
+ */
+const DESTRUCTIVE_PATH_PATTERNS = [
+    /uninstall/i,
+    /\bdrop\b/i,
+    /force-push/i,
+    /--force\b/,
+    /--hard\b/,
+    /rm\s+-rf?\b/,
+];
+const PROTECTED_PATH_PATTERNS = [
+    /auth/i,
+    /login/i,
+    /session/i,
+];
+export function checkLoginGate(input) {
+    for (const pattern of DESTRUCTIVE_PATH_PATTERNS) {
+        if (pattern.test(input.command)) {
+            return { destructive: true, protected: false, matchedPattern: pattern.source };
+        }
+    }
+    for (const pattern of PROTECTED_PATH_PATTERNS) {
+        if (pattern.test(input.command)) {
+            return { destructive: false, protected: true, matchedPattern: pattern.source };
+        }
+    }
+    return { destructive: false, protected: false, matchedPattern: null };
+}

package/dist/src/services/audit/enforcers/mock-placement.d.ts

@@ -0,0 +1,25 @@
+/**
+ * mock-placement enforcer — scans changed files for inline mock-data
+ * patterns and fails the slice check if any changed file under `src/` or
+ * `skills/` contains `mockData: { ... }`, `fixtures = { ... }`, or a
+ * multi-line `const fooMock = { ... }` literal.
+ *
+ * Per L2 redesign §5.4. Mocks belong in `tests/fixtures/`, not inline.
+ * Per `references/mock-data-placement.md` from peaks-rd: framework-aware
+ * mock placement. peaks-cli has no UI framework, but the rule still
+ * applies for non-fixture files.
+ */
+export interface MockPlacementCheckInput {
+    readonly filePath: string;
+    readonly content: string;
+}
+export interface MockPlacementViolation {
+    readonly filePath: string;
+    readonly pattern: string;
+    readonly snippet: string;
+}
+export declare function hasInlineMock(content: string): MockPlacementViolation | null;
+export declare function findMockViolations(changedFiles: readonly {
+    filePath: string;
+    content: string;
+}[]): readonly MockPlacementViolation[];

package/dist/src/services/audit/enforcers/mock-placement.js

@@ -0,0 +1,48 @@
+/**
+ * mock-placement enforcer — scans changed files for inline mock-data
+ * patterns and fails the slice check if any changed file under `src/` or
+ * `skills/` contains `mockData: { ... }`, `fixtures = { ... }`, or a
+ * multi-line `const fooMock = { ... }` literal.
+ *
+ * Per L2 redesign §5.4. Mocks belong in `tests/fixtures/`, not inline.
+ * Per `references/mock-data-placement.md` from peaks-rd: framework-aware
+ * mock placement. peaks-cli has no UI framework, but the rule still
+ * applies for non-fixture files.
+ */
+const MOCK_PATTERNS = [
+    /\bmockData\s*[:=]\s*\{/,
+    /\bfixtures?\s*=\s*\{/,
+    /const\s+\w*[Mm]ock\w*\s*=\s*\{[\s\S]{20,}/,
+];
+export function hasInlineMock(content) {
+    for (const pattern of MOCK_PATTERNS) {
+        const match = pattern.exec(content);
+        if (match) {
+            return {
+                filePath: '',
+                pattern: pattern.source,
+                snippet: match[0].slice(0, 80),
+            };
+        }
+    }
+    return null;
+}
+export function findMockViolations(changedFiles) {
+    const violations = [];
+    for (const { filePath, content } of changedFiles) {
+        // Mocks are allowed in tests/fixtures/. The slice check is invoked
+        // with the diff-vs-scope output, which already filters out
+        // test/fixture paths; this guard is a safety net.
+        if (filePath.includes('tests/fixtures/'))
+            continue;
+        if (filePath.includes('__fixtures__'))
+            continue;
+        if (!filePath.startsWith('src/') && !filePath.startsWith('skills/'))
+            continue;
+        const violation = hasInlineMock(content);
+        if (violation) {
+            violations.push({ ...violation, filePath });
+        }
+    }
+    return violations;
+}

package/dist/src/services/audit/enforcers/no-root-pollution.d.ts

@@ -0,0 +1,21 @@
+/**
+ * no-root-pollution enforcer — PreToolUse Write/Edit guard.
+ *
+ * Per L2 redesign §5.4. Deny writes to <project>/root for files NOT in
+ * the documented allowlist. The allowlist is hand-maintained for v1; a
+ * follow-up slice can expose it via `peaks standards`.
+ *
+ * Trust red line: this hook MUST fail-open on registry / FS errors. The
+ * LLM is never bricked by a peaks bug.
+ */
+export interface RootWriteCheckInput {
+    readonly projectRoot: string;
+    readonly filePath: string;
+}
+export interface RootWriteCheckResult {
+    readonly isRoot: boolean;
+    readonly allowed: boolean;
+    readonly topSegment: string;
+    readonly denyReason: string;
+}
+export declare function isRootWrite(input: RootWriteCheckInput): RootWriteCheckResult;

package/dist/src/services/audit/enforcers/no-root-pollution.js

@@ -0,0 +1,56 @@
+/**
+ * no-root-pollution enforcer — PreToolUse Write/Edit guard.
+ *
+ * Per L2 redesign §5.4. Deny writes to <project>/root for files NOT in
+ * the documented allowlist. The allowlist is hand-maintained for v1; a
+ * follow-up slice can expose it via `peaks standards`.
+ *
+ * Trust red line: this hook MUST fail-open on registry / FS errors. The
+ * LLM is never bricked by a peaks bug.
+ */
+import { resolve } from 'node:path';
+const ROOT_FILE_ALLOWLIST = new Set([
+    // Top-level docs
+    'README.md', 'README-en.md', 'LICENSE', 'LICENSE.md', 'NOTICE', 'CONTRIBUTING.md',
+    'CHANGELOG.md', 'AUTHORS', 'CONTRIBUTORS',
+    // Build / package manifests
+    'package.json', 'pnpm-lock.yaml', 'pnpm-workspace.yaml', 'tsconfig.json',
+    'tsconfig.*.json', 'vitest.config.ts', 'vite.config.ts', '.npmrc', '.nvmrc',
+    // VCS / editor
+    '.gitignore', '.gitattributes', '.editorconfig', '.gitkeep',
+    // Project-local config dirs (peaks-cli convention)
+    'openspec', '.peaks', '.claude', '.peaksrc',
+    // Source dirs (writes into them are normal)
+    'src', 'tests', 'bin', 'scripts', 'schemas', 'output-styles', 'docs',
+    // Skills are allowed at root
+    'skills',
+    // Generated / ignored
+    'dist', 'node_modules', 'coverage', '.nyc_output',
+]);
+export function isRootWrite(input) {
+    const projectRoot = resolve(input.projectRoot);
+    const filePath = resolve(input.filePath);
+    const rel = filePath.startsWith(projectRoot)
+        ? filePath.slice(projectRoot.length).replace(/^[\\/]+/, '')
+        : filePath;
+    const topSegment = rel.split(/[\\/]/)[0] ?? '';
+    // If file is NOT at root (e.g. src/foo/bar.ts), the top segment is "src"
+    // which is in the allowlist. This handler only flags FILES AT THE ROOT
+    // (top-level), so check whether the file is exactly at root depth.
+    const segments = rel.split(/[\\/]/).filter(Boolean);
+    const isAtRoot = segments.length === 1;
+    if (!isAtRoot) {
+        return { isRoot: false, allowed: true, topSegment, denyReason: '' };
+    }
+    if (ROOT_FILE_ALLOWLIST.has(topSegment)) {
+        return { isRoot: true, allowed: true, topSegment, denyReason: '' };
+    }
+    return {
+        isRoot: true,
+        allowed: false,
+        topSegment,
+        denyReason: `no-root-pollution: file "${rel}" is not in the root allowlist. ` +
+            `Move it under docs/, tests/, skills/, or another documented directory, ` +
+            `or add it to ROOT_FILE_ALLOWLIST in src/services/audit/enforcers/no-root-pollution.ts.`,
+    };
+}

package/dist/src/services/audit/enforcers/pre-rd-scan.d.ts

@@ -0,0 +1,22 @@
+/**
+ * pre-rd-scan enforcer (L2.2 P1) — verifies the project has been scanned
+ * before the rd implementation phase begins.
+ *
+ * Two red lines:
+ *   - rl-pre-rd-scan-001: peaks scan archetype must have been run
+ *   - rl-pre-rd-scan-002: peaks standards preflight must have been run
+ *
+ * Detected by checking for the project-scan.md and standards reports in
+ * the session dir. Both are produced by the pre-RD workflow.
+ */
+export interface PreRdScanInput {
+    readonly projectRoot: string;
+    readonly sessionId: string;
+}
+export interface PreRdScanResult {
+    readonly archetypeScanned: boolean;
+    readonly archetypeReportPath: string;
+    readonly standardsPreflightDone: boolean;
+    readonly standardsReportPath: string;
+}
+export declare function checkPreRdScan(input: PreRdScanInput): PreRdScanResult;

package/dist/src/services/audit/enforcers/pre-rd-scan.js

@@ -0,0 +1,23 @@
+/**
+ * pre-rd-scan enforcer (L2.2 P1) — verifies the project has been scanned
+ * before the rd implementation phase begins.
+ *
+ * Two red lines:
+ *   - rl-pre-rd-scan-001: peaks scan archetype must have been run
+ *   - rl-pre-rd-scan-002: peaks standards preflight must have been run
+ *
+ * Detected by checking for the project-scan.md and standards reports in
+ * the session dir. Both are produced by the pre-RD workflow.
+ */
+import { existsSync } from 'node:fs';
+import { join } from 'node:path';
+export function checkPreRdScan(input) {
+    const archetypeReportPath = join(input.projectRoot, '.peaks/_runtime', input.sessionId, 'rd/project-scan.md');
+    const standardsReportPath = join(input.projectRoot, '.peaks/_runtime', input.sessionId, 'standards-preflight.json');
+    return {
+        archetypeScanned: existsSync(archetypeReportPath),
+        archetypeReportPath,
+        standardsPreflightDone: existsSync(standardsReportPath),
+        standardsReportPath,
+    };
+}

package/dist/src/services/audit/enforcers/prototype-fidelity.d.ts

@@ -0,0 +1,25 @@
+/**
+ * prototype-fidelity enforcer (L2.2 P1) — verifies a prototype is
+ * functional (not a stub).
+ *
+ * Two red lines:
+ *   - rl-prototype-fidelity-001: prototype files must not contain TODO/FIXME/XXX
+ *   - rl-prototype-fidelity-002: prototype must have at least 1 passing test
+ *
+ * (L2.2 ships the source-level check; deeper test-running integration is
+ * deferred to a follow-up slice.)
+ */
+export interface PrototypeFidelityInput {
+    readonly projectRoot: string;
+    readonly filePaths: readonly string[];
+}
+export interface PrototypeFidelityResult {
+    readonly stubMarkers: readonly {
+        filePath: string;
+        pattern: string;
+        snippet: string;
+    }[];
+    readonly testFiles: readonly string[];
+}
+export declare function findStubMarkers(input: PrototypeFidelityInput): PrototypeFidelityResult;
+export declare function findTestFiles(projectRoot: string, sourceDir: string): readonly string[];