npm - periderm-cli - Versions diffs - 0.1.0 → 0.1.2 - Mend

periderm-cli 0.1.0 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/index.js CHANGED Viewed

@@ -15,6 +15,8 @@ import ora from "ora";
 import { PERIDERM_ASCII } from "./constants.js";
 import { PRE_SCAN_MESSAGES, UPLOAD_MESSAGES, startRotatingMessages, finishRotatingMessages } from "./loading-messages.js";
 import { formatScanPath } from "./scanner/progress.js";
+import { checkUpdate } from "./update-notifier.js";
+const updatePromise = checkUpdate();
 const program = new Command();
 program
     .name("periderm")
@@ -131,6 +133,7 @@ program
             }
         }
     }
+    await updatePromise;
 });
 program
     .command("review")
@@ -148,11 +151,6 @@ program
         console.error(chalk.red("Error: You must be logged in. Run `periderm login` first."));
         process.exit(1);
     }
-    const apiKey = process.env.GROQ_API_KEY?.trim();
-    if (!apiKey) {
-        console.error(chalk.red("Error: Set GROQ_API_KEY in your environment to run deep review."));
-        process.exit(1);
-    }
     const reportPath = path.join(root, ".periderm", "last-report.json");
     let scanResult;
     try {
@@ -175,7 +173,7 @@ program
     }
     verifySpinner.succeed("Plan verified");
     const reviewSpinner = ora({ text: "Starting deep review agent…", color: "cyan" }).start();
-    const { markdown, findings } = await runDeepReview(root, scanResult, apiKey, (msg) => {
+    const { markdown, findings } = await runDeepReview(root, scanResult, cfg.token, cfg.apiUrl, (msg) => {
         reviewSpinner.text = msg;
     });
     scanResult.findings.push(...findings);
@@ -190,6 +188,7 @@ program
     await fs.writeFile(reportPath, JSON.stringify(scanResult, null, 2), "utf8");
     reviewSpinner.succeed(`Deep review complete · ${findings.length} additional finding${findings.length === 1 ? "" : "s"}`);
     console.info(chalk.white(`\nAppended to ${mdPath}\n`));
+    await updatePromise;
 });
 program
     .command("watch")
@@ -353,6 +352,7 @@ program
     console.info(`user:  ${r.user_id}`);
     console.info(`plan:  ${r.plan}`);
     console.info(`quota: ${r.scans_remaining} scans remaining`);
+    await updatePromise;
 });
 program
     .command("logout")
@@ -367,14 +367,28 @@ program
     console.info("");
     console.info(chalk.white("Run ") + chalk.white("$ periderm login") + chalk.white(" to re-authenticate."));
     console.info("");
+    await updatePromise;
 });
 program.parseAsync().catch(async (e) => {
     console.error(e);
     try {
         const formData = new FormData();
         formData.append("name", "Periderm CLI Crash Reporter");
-        formData.append("_replyto", "support@periderm.dev");
-        const marker = "\n\n---\n[System Info: Sent from Periderm CLI]";
+        let userEmail = "support@periderm.dev";
+        try {
+            const cfg = readConfig();
+            if (cfg.token) {
+                const v = await verifyToken(cfg.token);
+                if (v.valid && v.email) {
+                    userEmail = v.email;
+                }
+            }
+        }
+        catch {
+            // ignore token verification errors during crash
+        }
+        formData.append("_replyto", userEmail);
+        const marker = `\n\n---\n[System Info: Sent from Periderm CLI]\n[User Email: ${userEmail === "support@periderm.dev" ? "Unknown" : userEmail}]`;
         const errMsg = e instanceof Error ? `${e.message}\n${e.stack}` : String(e);
         formData.append("message", `CLI Crash:\n\n${errMsg}${marker}`);
         await fetch("https://formspree.io/f/mqakppnn", {

package/dist/review/deep.js CHANGED Viewed

@@ -12,27 +12,23 @@ function stripCodeFences(text) {
     const m = text.match(/```(?:json)?\s*([\s\S]*?)```/);
     return (m?.[1] ?? text).trim();
 }
-async function groqJson(apiKey, system, user) {
-    const res = await fetch("https://api.groq.com/openai/v1/chat/completions", {
+async function groqJson(token, apiUrl, system, user) {
+    const res = await fetch(`${apiUrl}/api/public/deep-review`, {
         method: "POST",
         headers: {
-            Authorization: `Bearer ${apiKey}`,
             "Content-Type": "application/json",
+            "x-periderm-token": token,
         },
-        body: JSON.stringify({
-            model: MODEL,
-            temperature: 0.2,
-            response_format: { type: "json_object" },
-            messages: [
-                { role: "system", content: system },
-                { role: "user", content: user },
-            ],
-        }),
+        body: JSON.stringify({ system, user }),
     });
-    if (!res.ok)
-        throw new Error(`Groq API error ${res.status}: ${(await res.text()).slice(0, 200)}`);
-    const data = (await res.json());
-    return data.choices?.[0]?.message?.content ?? "{}";
+    if (!res.ok) {
+        const text = await res.text();
+        throw new Error(`Deep review API error ${res.status}: ${text.slice(0, 200)}`);
+    }
+    const data = await res.json();
+    if (!data.valid)
+        throw new Error(`Deep review failed: ${data.error}`);
+    return data.content ?? "{}";
 }
 async function readFileSafe(root, rel) {
     const safe = rel.replace(/^(\.\/|\.\.\/)+/, "").replace(/\.\./g, "");
@@ -87,7 +83,7 @@ function parseAction(raw) {
         return null;
     }
 }
-export async function runDeepReview(root, scan, apiKey, onStatus) {
+export async function runDeepReview(root, scan, token, apiUrl, onStatus) {
     const system = `You are Periderm's deep launch reviewer. Respond with JSON only.
 Existing static scan found ${scan.findings.length} issues. Your job: find ADDITIONAL nuanced launch risks the deterministic scanner missed — legal/UX/business logic edge cases, contradictions, deceptive flows, subtle security gaps.
@@ -114,7 +110,7 @@ Rules: max 5 new findings, be specific, cite files, no hallucinated files.`;
     const toolLog = [];
     for (let i = 0; i < MAX_ITERATIONS; i++) {
         onStatus?.(`Deep review · pass ${i + 1}/${MAX_ITERATIONS}…`);
-        const raw = await groqJson(apiKey, system, transcript);
+        const raw = await groqJson(token, apiUrl, system, transcript);
         const action = parseAction(raw);
         if (!action) {
             transcript += `\n\nInvalid JSON. Respond with valid JSON only.\n`;

package/dist/update-notifier.js ADDED Viewed

@@ -0,0 +1,41 @@
+import chalk from "chalk";
+import fs from "node:fs";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+const pkgPath = path.join(__dirname, "..", "package.json");
+export async function checkUpdate() {
+    try {
+        const pkg = JSON.parse(fs.readFileSync(pkgPath, "utf-8"));
+        const currentVersion = pkg.version;
+        const name = pkg.name;
+        // Timeout fetch after 1 second so we never hang the CLI
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), 1000);
+        const res = await fetch(`https://registry.npmjs.org/${name}/latest`, {
+            signal: controller.signal,
+        });
+        clearTimeout(timeoutId);
+        if (!res.ok)
+            return;
+        const data = await res.json();
+        const latestVersion = data.version;
+        if (latestVersion && latestVersion !== currentVersion) {
+            // Basic semver check (only notifies if latest > current simply by string comparison or simple parsing)
+            // Since it's x.y.z, simple comparison works for basic stuff, but a strict semver check is better.
+            // We will just check if they are not equal, since latest is usually higher.
+            const box = `
+  ╭──────────────────────────────────────────────────────────╮
+  │                                                          │
+  │   A new version of Periderm CLI is available: ${chalk.dim(currentVersion)} → ${chalk.green(latestVersion)}   │
+  │   Run ${chalk.cyan(`npm install -g ${name}`)} to update.               │
+  │                                                          │
+  ╰──────────────────────────────────────────────────────────╯
+      `;
+            console.log(box);
+        }
+    }
+    catch (e) {
+        // Ignore any network/parsing errors silently
+    }
+}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "periderm-cli",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "A pre-launch checklist for your codebase.",
   "type": "module",
   "bin": {
@@ -21,7 +21,6 @@
     "@babel/types": "^7.25.0",
     "chalk": "^5.3.0",
     "commander": "^12.1.0",
-    "dotenv": "^17.4.2",
     "fast-glob": "^3.3.2",
     "open": "^10.1.0",
     "ora": "^9.4.1"