prism-pr 1.0.0-alpha.47

package/dist/ai/agents/security-reviewer.d.ts

@@ -0,0 +1,3 @@
+import type { Agent } from '../../types/index.js';
+export declare const securityReviewerAgent: Agent;
+//# sourceMappingURL=security-reviewer.d.ts.map

package/dist/ai/agents/security-reviewer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-reviewer.d.ts","sourceRoot":"","sources":["../../../src/ai/agents/security-reviewer.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,KAAK,EAAgE,MAAM,sBAAsB,CAAC;AAYhH,eAAO,MAAM,qBAAqB,EAAE,KAmEnC,CAAC"}

package/dist/ai/agents/security-reviewer.js

@@ -0,0 +1,69 @@
+import { readFileSync } from 'node:fs';
+import { fileURLToPath } from 'node:url';
+import path from 'node:path';
+import { Logger, LogLevel } from '../../utils/logger.js';
+import { FINDING_TOOL_SCHEMA, normalizeFinding } from './shared/finding-schema.js';
+import { buildSystemPrompt } from './shared/prompt-builder.js';
+import { buildUserContent } from './shared/content-builder.js';
+import { isValidLineNumber } from './shared/line-validator.js';
+// Load the system prompt at module load time (relative to this source file)
+const __filename = fileURLToPath(import.meta.url);
+const __dir = path.dirname(__filename);
+const BASE_SYSTEM_PROMPT = readFileSync(path.resolve(__dir, 'prompts', 'security-reviewer.txt'), 'utf-8');
+export const securityReviewerAgent = {
+    id: 'security-reviewer',
+    displayName: 'Security',
+    description: 'Vulnerability detection, secrets, and auth issues',
+    domain: 'security',
+    contextTags: ['conventions'],
+    contentMode: 'summary',
+    // Security reviewer checks ALL files regardless of extension
+    fileFilter(_filePath) {
+        return true;
+    },
+    async analyze(input, provider) {
+        const logger = new Logger(LogLevel.warn);
+        // Security reviewer reviews all files — no filtering by extension
+        const files = input.files;
+        if (files.length === 0) {
+            return {
+                agentId: this.id,
+                findings: [],
+                usage: { inputTokens: 0, outputTokens: 0 },
+            };
+        }
+        // Support both legacy projectContext and new context field
+        const legacyProjectContext = input.projectContext;
+        const systemPrompt = buildSystemPrompt(BASE_SYSTEM_PROMPT, input.context, legacyProjectContext);
+        const userContent = buildUserContent(files, input.prMetadata, input.context?.contentMode ?? 'full');
+        const result = await provider.analyze({
+            systemPrompt,
+            userContent,
+            toolName: 'report_findings',
+            toolSchema: FINDING_TOOL_SCHEMA,
+        });
+        // Normalize and validate findings using shared schema, drop low severity (spec 6.3.3)
+        const findings = [];
+        for (const raw of result.findings) {
+            const finding = normalizeFinding(raw, this.id);
+            if (finding === null) {
+                logger.warn(`[security-reviewer] Dropping invalid finding — failed schema validation`);
+                continue;
+            }
+            // Drop low severity findings
+            if (finding.severity === 'low') {
+                logger.warn(`[security-reviewer] Dropping low severity finding at ${finding.filePath}:${finding.lineNumber}`);
+                continue;
+            }
+            // Validate line number
+            if (!isValidLineNumber(finding.lineNumber, finding.filePath, files)) {
+                logger.warn(`[security-reviewer] Dropping finding at ${finding.filePath}:${finding.lineNumber} — not an addition line`);
+                continue;
+            }
+            findings.push(finding);
+        }
+        const usage = result.usage;
+        return { agentId: this.id, findings, usage };
+    },
+};
+//# sourceMappingURL=security-reviewer.js.map

package/dist/ai/agents/security-reviewer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-reviewer.js","sourceRoot":"","sources":["../../../src/ai/agents/security-reviewer.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AACnF,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AAC/D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AAE/D,4EAA4E;AAC5E,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AACvC,MAAM,kBAAkB,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,SAAS,EAAE,uBAAuB,CAAC,EAAE,OAAO,CAAC,CAAC;AAE1G,MAAM,CAAC,MAAM,qBAAqB,GAAU;IAC1C,EAAE,EAAE,mBAAmB;IACvB,WAAW,EAAE,UAAU;IACvB,WAAW,EAAE,mDAAmD;IAChE,MAAM,EAAE,UAAU;IAClB,WAAW,EAAE,CAAC,aAAa,CAAC;IAC5B,WAAW,EAAE,SAAS;IAEtB,6DAA6D;IAC7D,UAAU,CAAC,SAAiB;QAC1B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,KAAiB,EAAE,QAAuB;QACtD,MAAM,MAAM,GAAG,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAEzC,kEAAkE;QAClE,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC;QAE1B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO;gBACL,OAAO,EAAE,IAAI,CAAC,EAAE;gBAChB,QAAQ,EAAE,EAAE;gBACZ,KAAK,EAAE,EAAE,WAAW,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE;aAC3C,CAAC;QACJ,CAAC;QAED,2DAA2D;QAC3D,MAAM,oBAAoB,GAAG,KAAK,CAAC,cAAc,CAAC;QAClD,MAAM,YAAY,GAAG,iBAAiB,CAAC,kBAAkB,EAAE,KAAK,CAAC,OAAO,EAAE,oBAAoB,CAAC,CAAC;QAChG,MAAM,WAAW,GAAG,gBAAgB,CAAC,KAAK,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,OAAO,EAAE,WAAW,IAAI,MAAM,CAAC,CAAC;QAEpG,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC;YACpC,YAAY;YACZ,WAAW;YACX,QAAQ,EAAE,iBAAiB;YAC3B,UAAU,EAAE,mBAAmB;SAChC,CAAC,CAAC;QAEH,sFAAsF;QACtF,MAAM,QAAQ,GAAG,EAAE,CAAC;QACpB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClC,MAAM,OAAO,GAAG,gBAAgB,CAAC,GAAG,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;YAC/C,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;gBACrB,MAAM,CAAC,IAAI,CAAC,yEAAyE,CAAC,CAAC;gBACvF,SAAS;YACX,CAAC;YAED,6BAA6B;YAC7B,IAAI,OAAO,CAAC,QAAQ,KAAK,KAAK,EAAE,CAAC;gBAC/B,MAAM,CAAC,IAAI,CAAC,wDAAwD,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;gBAC9G,SAAS;YACX,CAAC;YAED,uBAAuB;YACvB,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,CAAC;gBACpE,MAAM,CAAC,IAAI,CAAC,2CAA2C,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,UAAU,yBAAyB,CAAC,CAAC;gBACxH,SAAS;YACX,CAAC;YAED,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACzB,CAAC;QAED,MAAM,KAAK,GAAe,MAAM,CAAC,KAAK,CAAC;QAEvC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IAC/C,CAAC;CACF,CAAC"}

package/dist/ai/agents/shared/content-builder.d.ts

@@ -0,0 +1,14 @@
+import type { DiffFile } from '../../../types/diff.js';
+import type { PRMetadata } from '../../../types/bitbucket.js';
+import type { ContentMode } from '../../../types/agent.js';
+/**
+ * Build the PR review user content string from a set of diff files and PR metadata.
+ *
+ * @param files - The diff files to include
+ * @param prMetadata - Pull request metadata (id, title, branches, etc.)
+ * @param mode - Content mode: 'full' (default), 'summary', or 'additions-only'
+ * @param tokenBudget - Optional max estimated input tokens; files exceeding the budget are
+ *   dropped (lowest addition-count first). At least 3 files are always kept.
+ */
+export declare function buildUserContent(files: DiffFile[], prMetadata: PRMetadata, mode?: ContentMode, tokenBudget?: number): string;
+//# sourceMappingURL=content-builder.d.ts.map

package/dist/ai/agents/shared/content-builder.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"content-builder.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/shared/content-builder.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,wBAAwB,CAAC;AACvD,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAC9D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAsG3D;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAC9B,KAAK,EAAE,QAAQ,EAAE,EACjB,UAAU,EAAE,UAAU,EACtB,IAAI,GAAE,WAAoB,EAC1B,WAAW,CAAC,EAAE,MAAM,GACnB,MAAM,CAuDR"}

package/dist/ai/agents/shared/content-builder.js

@@ -0,0 +1,158 @@
+/**
+ * Estimate token count from a string using a 4-char-per-token heuristic.
+ */
+function estimateTokens(content) {
+    return Math.ceil(content.length / 4);
+}
+/**
+ * Count addition lines in a file.
+ */
+function countAdditions(file) {
+    let count = 0;
+    for (const hunk of file.hunks) {
+        for (const line of hunk.lines) {
+            if (line.type === 'addition')
+                count++;
+        }
+    }
+    return count;
+}
+/**
+ * Build the hunk header string.
+ * Empty header → no trailing space; non-empty → space + header appended.
+ */
+function buildHunkHeader(hunk) {
+    return `@@ -${hunk.oldStart},${hunk.oldCount} +${hunk.newStart},${hunk.newCount} @@${hunk.header ? ' ' + hunk.header : ''}`;
+}
+/**
+ * Determine which line indices in a hunk are adjacent to (within 1 position of)
+ * any addition line. Used for 'additions-only' mode.
+ */
+function adjacentToAdditionIndices(lines) {
+    const additionIndices = new Set();
+    for (let i = 0; i < lines.length; i++) {
+        if (lines[i].type === 'addition')
+            additionIndices.add(i);
+    }
+    const adjacent = new Set();
+    for (const idx of additionIndices) {
+        if (idx > 0)
+            adjacent.add(idx - 1);
+        adjacent.add(idx);
+        if (idx < lines.length - 1)
+            adjacent.add(idx + 1);
+    }
+    return adjacent;
+}
+/**
+ * Build the content block for a single file according to the given mode.
+ * Returns an array of lines (without trailing newline).
+ */
+function buildFileBlock(file, mode) {
+    const lines = [];
+    lines.push(`### ${file.newPath}`);
+    const useFence = mode === 'full' || mode === 'additions-only';
+    if (useFence)
+        lines.push('```diff');
+    for (const hunk of file.hunks) {
+        lines.push(buildHunkHeader(hunk));
+        if (mode === 'full') {
+            for (const line of hunk.lines) {
+                if (line.type === 'addition') {
+                    lines.push(`[L${line.lineNumber}] + ${line.content}`);
+                }
+                else if (line.type === 'deletion') {
+                    lines.push(`       - ${line.content}`);
+                }
+                else {
+                    lines.push(`         ${line.content}`);
+                }
+            }
+        }
+        else if (mode === 'summary') {
+            // Only addition lines
+            for (const line of hunk.lines) {
+                if (line.type === 'addition') {
+                    lines.push(`[L${line.lineNumber}] + ${line.content}`);
+                }
+            }
+        }
+        else {
+            // additions-only: additions + immediately adjacent context lines
+            const included = adjacentToAdditionIndices(hunk.lines);
+            for (let i = 0; i < hunk.lines.length; i++) {
+                if (!included.has(i))
+                    continue;
+                const line = hunk.lines[i];
+                if (line.type === 'addition') {
+                    lines.push(`[L${line.lineNumber}] + ${line.content}`);
+                }
+                else if (line.type === 'context') {
+                    lines.push(`         ${line.content}`);
+                }
+                // deletion lines skipped even if adjacent
+            }
+        }
+    }
+    if (useFence)
+        lines.push('```');
+    lines.push('');
+    return lines;
+}
+/**
+ * Build the PR review user content string from a set of diff files and PR metadata.
+ *
+ * @param files - The diff files to include
+ * @param prMetadata - Pull request metadata (id, title, branches, etc.)
+ * @param mode - Content mode: 'full' (default), 'summary', or 'additions-only'
+ * @param tokenBudget - Optional max estimated input tokens; files exceeding the budget are
+ *   dropped (lowest addition-count first). At least 3 files are always kept.
+ */
+export function buildUserContent(files, prMetadata, mode = 'full', tokenBudget) {
+    const headerLines = [];
+    headerLines.push(`## Pull Request #${prMetadata.id}: ${prMetadata.title}`);
+    headerLines.push(`Branch: ${prMetadata.sourceBranch} → ${prMetadata.targetBranch}`);
+    headerLines.push('');
+    headerLines.push('## Changed Files');
+    headerLines.push('');
+    if (files.length === 0) {
+        return headerLines.join('\n');
+    }
+    // Sort files by addition count descending (highest value first)
+    const sorted = [...files].sort((a, b) => countAdditions(b) - countAdditions(a));
+    let selectedFiles;
+    let truncatedCount = 0;
+    if (tokenBudget === undefined) {
+        selectedFiles = sorted;
+    }
+    else {
+        const headerTokens = estimateTokens(headerLines.join('\n'));
+        let usedTokens = headerTokens;
+        const kept = [];
+        const dropped = [];
+        for (const file of sorted) {
+            const block = buildFileBlock(file, mode).join('\n');
+            const fileTokens = estimateTokens(block);
+            const fitsInBudget = usedTokens + fileTokens <= tokenBudget;
+            const mustKeep = kept.length < 3;
+            if (fitsInBudget || mustKeep) {
+                kept.push(file);
+                usedTokens += fileTokens;
+            }
+            else {
+                dropped.push(file);
+            }
+        }
+        selectedFiles = kept;
+        truncatedCount = dropped.length;
+    }
+    const contentLines = [...headerLines];
+    for (const file of selectedFiles) {
+        contentLines.push(...buildFileBlock(file, mode));
+    }
+    if (truncatedCount > 0) {
+        contentLines.push(`[... ${truncatedCount} file(s) truncated due to token budget (${tokenBudget ?? 0} tokens)]`);
+    }
+    return contentLines.join('\n');
+}
+//# sourceMappingURL=content-builder.js.map

package/dist/ai/agents/shared/content-builder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"content-builder.js","sourceRoot":"","sources":["../../../../src/ai/agents/shared/content-builder.ts"],"names":[],"mappings":"AAIA;;GAEG;AACH,SAAS,cAAc,CAAC,OAAe;IACrC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AACvC,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,IAAc;IACpC,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QAC9B,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YAC9B,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU;gBAAE,KAAK,EAAE,CAAC;QACxC,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;GAGG;AACH,SAAS,eAAe,CAAC,IAAgG;IACvH,OAAO,OAAO,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,QAAQ,KAAK,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,QAAQ,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;AAC9H,CAAC;AAED;;;GAGG;AACH,SAAS,yBAAyB,CAAC,KAAyC;IAC1E,MAAM,eAAe,GAAG,IAAI,GAAG,EAAU,CAAC;IAC1C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,KAAK,CAAC,CAAC,CAAE,CAAC,IAAI,KAAK,UAAU;YAAE,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;IAC5D,CAAC;IACD,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;IACnC,KAAK,MAAM,GAAG,IAAI,eAAe,EAAE,CAAC;QAClC,IAAI,GAAG,GAAG,CAAC;YAAE,QAAQ,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;QACnC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClB,IAAI,GAAG,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC;YAAE,QAAQ,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;GAGG;AACH,SAAS,cAAc,CAAC,IAAc,EAAE,IAAiB;IACvD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;IAElC,MAAM,QAAQ,GAAG,IAAI,KAAK,MAAM,IAAI,IAAI,KAAK,gBAAgB,CAAC;IAC9D,IAAI,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC;QAElC,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;YACpB,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBAC9B,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC7B,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACxD,CAAC;qBAAM,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBACpC,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACzC,CAAC;qBAAM,CAAC;oBACN,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACzC,CAAC;YACH,CAAC;QACH,CAAC;aAAM,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,sBAAsB;YACtB,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBAC9B,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC7B,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACxD,CAAC;YACH,CAAC;QACH,CAAC;aAAM,CAAC;YACN,iEAAiE;YACjE,MAAM,QAAQ,GAAG,yBAAyB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACvD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;oBAAE,SAAS;gBAC/B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC;gBAC5B,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC7B,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACxD,CAAC;qBAAM,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;oBACnC,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBACzC,CAAC;gBACD,0CAA0C;YAC5C,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAChC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAC9B,KAAiB,EACjB,UAAsB,EACtB,OAAoB,MAAM,EAC1B,WAAoB;IAEpB,MAAM,WAAW,GAAa,EAAE,CAAC;IACjC,WAAW,CAAC,IAAI,CAAC,oBAAoB,UAAU,CAAC,EAAE,KAAK,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC;IAC3E,WAAW,CAAC,IAAI,CAAC,WAAW,UAAU,CAAC,YAAY,MAAM,UAAU,CAAC,YAAY,EAAE,CAAC,CAAC;IACpF,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACrB,WAAW,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACrC,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAErB,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvB,OAAO,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,gEAAgE;IAChE,MAAM,MAAM,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhF,IAAI,aAAyB,CAAC;IAC9B,IAAI,cAAc,GAAG,CAAC,CAAC;IAEvB,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,aAAa,GAAG,MAAM,CAAC;IACzB,CAAC;SAAM,CAAC;QACN,MAAM,YAAY,GAAG,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,UAAU,GAAG,YAAY,CAAC;QAC9B,MAAM,IAAI,GAAe,EAAE,CAAC;QAC5B,MAAM,OAAO,GAAe,EAAE,CAAC;QAE/B,KAAK,MAAM,IAAI,IAAI,MAAM,EAAE,CAAC;YAC1B,MAAM,KAAK,GAAG,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpD,MAAM,UAAU,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;YACzC,MAAM,YAAY,GAAG,UAAU,GAAG,UAAU,IAAI,WAAW,CAAC;YAC5D,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;YAEjC,IAAI,YAAY,IAAI,QAAQ,EAAE,CAAC;gBAC7B,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChB,UAAU,IAAI,UAAU,CAAC;YAC3B,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACrB,CAAC;QACH,CAAC;QAED,aAAa,GAAG,IAAI,CAAC;QACrB,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC;IAClC,CAAC;IAED,MAAM,YAAY,GAAa,CAAC,GAAG,WAAW,CAAC,CAAC;IAEhD,KAAK,MAAM,IAAI,IAAI,aAAa,EAAE,CAAC;QACjC,YAAY,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC;IACnD,CAAC;IAED,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;QACvB,YAAY,CAAC,IAAI,CAAC,QAAQ,cAAc,2CAA2C,WAAW,IAAI,CAAC,WAAW,CAAC,CAAC;IAClH,CAAC;IAED,OAAO,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACjC,CAAC"}

package/dist/ai/agents/shared/finding-schema.d.ts

@@ -0,0 +1,54 @@
+import type { ReviewFinding } from '../../../types/review-finding.js';
+export declare const FINDING_CATEGORIES: readonly ["bug", "security", "performance", "style", "maintainability", "accessibility", "testing", "architecture", "documentation", "other"];
+export type FindingCategory = (typeof FINDING_CATEGORIES)[number];
+/**
+ * Anthropic tool schema for reporting findings.
+ * Shared across all agents (spec 6.2.4).
+ */
+export declare const FINDING_TOOL_SCHEMA: {
+    readonly type: "object";
+    readonly properties: {
+        readonly findings: {
+            readonly type: "array";
+            readonly items: {
+                readonly type: "object";
+                readonly required: readonly ["filePath", "lineNumber", "severity", "category", "title", "problem", "rationale", "suggestion"];
+                readonly properties: {
+                    readonly filePath: {
+                        readonly type: "string";
+                    };
+                    readonly lineNumber: {
+                        readonly type: "integer";
+                        readonly minimum: 1;
+                    };
+                    readonly severity: {
+                        readonly enum: readonly ["critical", "high", "medium", "low", "info"];
+                    };
+                    readonly category: {
+                        readonly enum: readonly ["bug", "security", "performance", "style", "maintainability", "accessibility", "testing", "architecture", "documentation", "other"];
+                    };
+                    readonly title: {
+                        readonly type: "string";
+                        readonly maxLength: 100;
+                    };
+                    readonly problem: {
+                        readonly type: "string";
+                    };
+                    readonly rationale: {
+                        readonly type: "string";
+                    };
+                    readonly suggestion: {
+                        readonly type: "string";
+                    };
+                };
+            };
+        };
+    };
+    readonly required: readonly ["findings"];
+};
+/**
+ * Normalize a raw AI-returned finding object into a typed ReviewFinding,
+ * assigning the given agentId. Returns null if the raw object is invalid.
+ */
+export declare function normalizeFinding(raw: unknown, agentId: string): ReviewFinding | null;
+//# sourceMappingURL=finding-schema.d.ts.map

package/dist/ai/agents/shared/finding-schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-schema.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/shared/finding-schema.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kCAAkC,CAAC;AAEtE,eAAO,MAAM,kBAAkB,+IAWrB,CAAC;AAEX,MAAM,MAAM,eAAe,GAAG,CAAC,OAAO,kBAAkB,CAAC,CAAC,MAAM,CAAC,CAAC;AAElE;;;GAGG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAsBtB,CAAC;AAgBX;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,GAAG,aAAa,GAAG,IAAI,CAMpF"}

package/dist/ai/agents/shared/finding-schema.js

@@ -0,0 +1,65 @@
+import { z } from 'zod';
+export const FINDING_CATEGORIES = [
+    'bug',
+    'security',
+    'performance',
+    'style',
+    'maintainability',
+    'accessibility',
+    'testing',
+    'architecture',
+    'documentation',
+    'other',
+];
+/**
+ * Anthropic tool schema for reporting findings.
+ * Shared across all agents (spec 6.2.4).
+ */
+export const FINDING_TOOL_SCHEMA = {
+    type: 'object',
+    properties: {
+        findings: {
+            type: 'array',
+            items: {
+                type: 'object',
+                required: ['filePath', 'lineNumber', 'severity', 'category', 'title', 'problem', 'rationale', 'suggestion'],
+                properties: {
+                    filePath: { type: 'string' },
+                    lineNumber: { type: 'integer', minimum: 1 },
+                    severity: { enum: ['critical', 'high', 'medium', 'low', 'info'] },
+                    category: { enum: FINDING_CATEGORIES },
+                    title: { type: 'string', maxLength: 100 },
+                    problem: { type: 'string' },
+                    rationale: { type: 'string' },
+                    suggestion: { type: 'string' },
+                },
+            },
+        },
+    },
+    required: ['findings'],
+};
+/**
+ * Zod schema for validating a single raw finding from an AI response.
+ */
+const rawFindingSchema = z.object({
+    filePath: z.string().min(1),
+    lineNumber: z.number().int().min(1),
+    severity: z.enum(['critical', 'high', 'medium', 'low', 'info']),
+    category: z.enum(FINDING_CATEGORIES),
+    title: z.string().min(1).max(100),
+    problem: z.string().min(1),
+    rationale: z.string().min(1),
+    suggestion: z.string().min(1),
+});
+/**
+ * Normalize a raw AI-returned finding object into a typed ReviewFinding,
+ * assigning the given agentId. Returns null if the raw object is invalid.
+ */
+export function normalizeFinding(raw, agentId) {
+    const result = rawFindingSchema.safeParse(raw);
+    if (!result.success) {
+        return null;
+    }
+    return { ...result.data, agentId };
+}
+//# sourceMappingURL=finding-schema.js.map

package/dist/ai/agents/shared/finding-schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-schema.js","sourceRoot":"","sources":["../../../../src/ai/agents/shared/finding-schema.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,MAAM,CAAC,MAAM,kBAAkB,GAAG;IAChC,KAAK;IACL,UAAU;IACV,aAAa;IACb,OAAO;IACP,iBAAiB;IACjB,eAAe;IACf,SAAS;IACT,cAAc;IACd,eAAe;IACf,OAAO;CACC,CAAC;AAIX;;;GAGG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,IAAI,EAAE,QAAQ;IACd,UAAU,EAAE;QACV,QAAQ,EAAE;YACR,IAAI,EAAE,OAAO;YACb,KAAK,EAAE;gBACL,IAAI,EAAE,QAAQ;gBACd,QAAQ,EAAE,CAAC,UAAU,EAAE,YAAY,EAAE,UAAU,EAAE,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,YAAY,CAAC;gBAC3G,UAAU,EAAE;oBACV,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBAC5B,UAAU,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,EAAE;oBAC3C,QAAQ,EAAE,EAAE,IAAI,EAAE,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,EAAE;oBACjE,QAAQ,EAAE,EAAE,IAAI,EAAE,kBAAkB,EAAE;oBACtC,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,GAAG,EAAE;oBACzC,OAAO,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBAC3B,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBAC7B,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;iBAC/B;aACF;SACF;KACF;IACD,QAAQ,EAAE,CAAC,UAAU,CAAC;CACd,CAAC;AAEX;;GAEG;AACH,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IAChC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3B,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACnC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;IAC/D,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC;IACpC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACjC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC5B,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC9B,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,GAAY,EAAE,OAAe;IAC5D,MAAM,MAAM,GAAG,gBAAgB,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IAC/C,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,EAAE,GAAG,MAAM,CAAC,IAAI,EAAE,OAAO,EAAE,CAAC;AACrC,CAAC"}

package/dist/ai/agents/shared/line-validator.d.ts

@@ -0,0 +1,8 @@
+import type { DiffFile } from '../../../types/diff.js';
+/**
+ * Validate that a finding's lineNumber corresponds to an actual addition line
+ * in the given diff file. Returns false if the file is not found, the line
+ * does not exist, or the line is not an addition.
+ */
+export declare function isValidLineNumber(lineNumber: number, filePath: string, files: DiffFile[]): boolean;
+//# sourceMappingURL=line-validator.d.ts.map

package/dist/ai/agents/shared/line-validator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"line-validator.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/shared/line-validator.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,wBAAwB,CAAC;AAEvD;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,OAAO,CAIlG"}

package/dist/ai/agents/shared/line-validator.js

@@ -0,0 +1,12 @@
+/**
+ * Validate that a finding's lineNumber corresponds to an actual addition line
+ * in the given diff file. Returns false if the file is not found, the line
+ * does not exist, or the line is not an addition.
+ */
+export function isValidLineNumber(lineNumber, filePath, files) {
+    const file = files.find((f) => f.newPath === filePath);
+    if (!file)
+        return false;
+    return file.hunks.some((h) => h.lines.some((l) => l.type === 'addition' && l.lineNumber === lineNumber));
+}
+//# sourceMappingURL=line-validator.js.map

package/dist/ai/agents/shared/line-validator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"line-validator.js","sourceRoot":"","sources":["../../../../src/ai/agents/shared/line-validator.ts"],"names":[],"mappings":"AAEA;;;;GAIG;AACH,MAAM,UAAU,iBAAiB,CAAC,UAAkB,EAAE,QAAgB,EAAE,KAAiB;IACvF,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC;IACvD,IAAI,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IACxB,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,CAAC,CAAC;AAC3G,CAAC"}

package/dist/ai/agents/shared/prompt-builder.d.ts

@@ -0,0 +1,3 @@
+import type { AgentContext, ContextTag } from '../../../types/agent.js';
+export declare function buildSystemPrompt(basePrompt: string, context?: AgentContext, legacyProjectContext?: string, allowedTags?: ContextTag[]): string;
+//# sourceMappingURL=prompt-builder.d.ts.map

package/dist/ai/agents/shared/prompt-builder.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt-builder.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/shared/prompt-builder.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAuCxE,wBAAgB,iBAAiB,CAC/B,UAAU,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE,YAAY,EACtB,oBAAoB,CAAC,EAAE,MAAM,EAC7B,WAAW,CAAC,EAAE,UAAU,EAAE,GACzB,MAAM,CAuCR"}

package/dist/ai/agents/shared/prompt-builder.js

@@ -0,0 +1,68 @@
+import { FINDING_SEVERITIES } from '../../../types/review-finding.js';
+/**
+ * Build a complete system prompt by appending optional context sections
+ * to a base prompt in the canonical order:
+ *   base → language → severity focus → skills → conventions → project context
+ *
+ * @param basePrompt - The core agent system prompt (required)
+ * @param context - Optional AgentContext with skills, conventions, and projectContext
+ * @param legacyProjectContext - Deprecated: projectContext from AgentInput top-level field
+ * @returns The assembled system prompt string
+ */
+const LANGUAGE_INSTRUCTION = `## Language
+
+You MUST write all finding fields (problem, rationale, suggestion) in Spanish.
+Keep technical terms (variable names, function names, types, keywords) in their original language.
+Be concise — maximum 120 tokens per finding field.`;
+/**
+ * Builds the severity focus instruction for agents.
+ * Lists only the severities at or above the threshold so the agent knows exactly what to report.
+ */
+function buildSeverityInstruction(minSeverity) {
+    if (minSeverity === undefined)
+        return undefined;
+    const minIndex = FINDING_SEVERITIES.indexOf(minSeverity);
+    if (minIndex < 0)
+        return undefined;
+    const allowed = FINDING_SEVERITIES.slice(0, minIndex + 1);
+    return `## Severity Focus
+
+ONLY report findings with severity: ${allowed.join(', ')}.
+Do NOT report findings below ${minSeverity}. Ignore issues that would be ${minIndex + 1 < FINDING_SEVERITIES.length
+        ? FINDING_SEVERITIES.slice(minIndex + 1).join(', ')
+        : 'below the threshold'}.
+Focus your analysis effort on finding ${allowed[0]}${allowed.length > 1 ? ` and ${allowed.slice(1).join(', ')}` : ''} issues only.`;
+}
+export function buildSystemPrompt(basePrompt, context, legacyProjectContext, allowedTags) {
+    const sections = [basePrompt, LANGUAGE_INSTRUCTION];
+    // Helper: check if a tag is allowed (undefined = all allowed)
+    const isAllowed = (tag) => allowedTags === undefined || allowedTags.includes(tag);
+    // Severity focus — injected early so the agent knows the scope before analyzing
+    // NOT filterable via allowedTags — always injected when present
+    const severityInstruction = buildSeverityInstruction(context?.minSeverity);
+    if (severityInstruction !== undefined) {
+        sections.push(severityInstruction);
+    }
+    // Skills — injected first after base prompt
+    if (isAllowed('skills') && context?.skills !== undefined && context.skills.length > 0) {
+        const skillsContent = context.skills
+            .map((s) => `### Skill: ${s.name}\n${s.instructions}`)
+            .join('\n\n');
+        sections.push(`## Project Skills\n\n${skillsContent}`);
+    }
+    // Conventions
+    if (isAllowed('conventions') && context?.conventions !== undefined && context.conventions.length > 0) {
+        sections.push(`## Conventions\n\n${context.conventions}`);
+    }
+    // Framework-specific rules
+    if (isAllowed('frameworkRules') && context?.frameworkRules !== undefined && context.frameworkRules.length > 0) {
+        sections.push(`## Framework-Specific Review Rules\n\n${context.frameworkRules}`);
+    }
+    // Project context — context.projectContext takes precedence over legacy field
+    const projectContext = context?.projectContext ?? legacyProjectContext;
+    if (isAllowed('projectContext') && projectContext !== undefined && projectContext.length > 0) {
+        sections.push(`## Project Context\n\n${projectContext}`);
+    }
+    return sections.join('\n\n');
+}
+//# sourceMappingURL=prompt-builder.js.map

package/dist/ai/agents/shared/prompt-builder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt-builder.js","sourceRoot":"","sources":["../../../../src/ai/agents/shared/prompt-builder.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,kCAAkC,CAAC;AAEtE;;;;;;;;;GASG;AACH,MAAM,oBAAoB,GAAG;;;;mDAIsB,CAAC;AAEpD;;;GAGG;AACH,SAAS,wBAAwB,CAAC,WAAwC;IACxE,IAAI,WAAW,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAChD,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IACzD,IAAI,QAAQ,GAAG,CAAC;QAAE,OAAO,SAAS,CAAC;IACnC,MAAM,OAAO,GAAG,kBAAkB,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,GAAG,CAAC,CAAC,CAAC;IAC1D,OAAO;;sCAE6B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;+BACzB,WAAW,iCACtC,QAAQ,GAAG,CAAC,GAAG,kBAAkB,CAAC,MAAM;QACtC,CAAC,CAAC,kBAAkB,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;QACnD,CAAC,CAAC,qBACN;wCACsC,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,eAAe,CAAC;AACpI,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,UAAkB,EAClB,OAAsB,EACtB,oBAA6B,EAC7B,WAA0B;IAE1B,MAAM,QAAQ,GAAa,CAAC,UAAU,EAAE,oBAAoB,CAAC,CAAC;IAE9D,8DAA8D;IAC9D,MAAM,SAAS,GAAG,CAAC,GAAe,EAAW,EAAE,CAC7C,WAAW,KAAK,SAAS,IAAI,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IAEzD,gFAAgF;IAChF,gEAAgE;IAChE,MAAM,mBAAmB,GAAG,wBAAwB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IAC3E,IAAI,mBAAmB,KAAK,SAAS,EAAE,CAAC;QACtC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IACrC,CAAC;IAED,4CAA4C;IAC5C,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,OAAO,EAAE,MAAM,KAAK,SAAS,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtF,MAAM,aAAa,GAAG,OAAO,CAAC,MAAM;aACjC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,cAAc,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,YAAY,EAAE,CAAC;aACrD,IAAI,CAAC,MAAM,CAAC,CAAC;QAChB,QAAQ,CAAC,IAAI,CAAC,wBAAwB,aAAa,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,cAAc;IACd,IAAI,SAAS,CAAC,aAAa,CAAC,IAAI,OAAO,EAAE,WAAW,KAAK,SAAS,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACrG,QAAQ,CAAC,IAAI,CAAC,qBAAqB,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;IAC5D,CAAC;IAED,2BAA2B;IAC3B,IAAI,SAAS,CAAC,gBAAgB,CAAC,IAAI,OAAO,EAAE,cAAc,KAAK,SAAS,IAAI,OAAO,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9G,QAAQ,CAAC,IAAI,CAAC,yCAAyC,OAAO,CAAC,cAAc,EAAE,CAAC,CAAC;IACnF,CAAC;IAED,8EAA8E;IAC9E,MAAM,cAAc,GAAG,OAAO,EAAE,cAAc,IAAI,oBAAoB,CAAC;IACvE,IAAI,SAAS,CAAC,gBAAgB,CAAC,IAAI,cAAc,KAAK,SAAS,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7F,QAAQ,CAAC,IAAI,CAAC,yBAAyB,cAAc,EAAE,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC/B,CAAC"}

package/dist/ai/agents/sql-reviewer.d.ts

@@ -0,0 +1,3 @@
+import type { Agent } from '../../types/index.js';
+export declare const sqlReviewerAgent: Agent;
+//# sourceMappingURL=sql-reviewer.d.ts.map

package/dist/ai/agents/sql-reviewer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sql-reviewer.d.ts","sourceRoot":"","sources":["../../../src/ai/agents/sql-reviewer.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,KAAK,EAAsD,MAAM,sBAAsB,CAAC;AActG,eAAO,MAAM,gBAAgB,EAAE,KAqD9B,CAAC"}

package/dist/ai/agents/sql-reviewer.js

@@ -0,0 +1,61 @@
+import { readFileSync } from 'node:fs';
+import { fileURLToPath } from 'node:url';
+import path from 'node:path';
+import { Logger, LogLevel } from '../../utils/logger.js';
+import { FINDING_TOOL_SCHEMA, normalizeFinding } from './shared/finding-schema.js';
+import { buildSystemPrompt } from './shared/prompt-builder.js';
+import { buildUserContent } from './shared/content-builder.js';
+import { isValidLineNumber } from './shared/line-validator.js';
+const SQL_EXTENSIONS = new Set(['.sql', '.pgsql', '.mysql']);
+// Load the system prompt at module load time (relative to this source file)
+const __filename = fileURLToPath(import.meta.url);
+const __dir = path.dirname(__filename);
+const BASE_SYSTEM_PROMPT = readFileSync(path.resolve(__dir, 'prompts', 'sql-reviewer.txt'), 'utf-8');
+export const sqlReviewerAgent = {
+    id: 'sql-reviewer',
+    displayName: 'SQL',
+    description: 'Query safety, anti-patterns, and performance',
+    domain: 'language',
+    contextTags: ['conventions'],
+    fileFilter(filePath) {
+        const ext = path.extname(filePath).toLowerCase();
+        return SQL_EXTENSIONS.has(ext);
+    },
+    async analyze(input, provider) {
+        const logger = new Logger(LogLevel.warn);
+        const relevantFiles = input.files.filter((f) => this.fileFilter(f.newPath));
+        if (relevantFiles.length === 0) {
+            return {
+                agentId: this.id,
+                findings: [],
+                usage: { inputTokens: 0, outputTokens: 0 },
+            };
+        }
+        const legacyProjectContext = input.projectContext;
+        const systemPrompt = buildSystemPrompt(BASE_SYSTEM_PROMPT, input.context, legacyProjectContext);
+        const userContent = buildUserContent(relevantFiles, input.prMetadata, input.context?.contentMode ?? 'full');
+        const result = await provider.analyze({
+            systemPrompt,
+            userContent,
+            toolName: 'report_findings',
+            toolSchema: FINDING_TOOL_SCHEMA,
+        });
+        const findings = [];
+        for (const raw of result.findings) {
+            const finding = normalizeFinding(raw, this.id);
+            if (finding === null) {
+                logger.warn(`[sql-reviewer] Dropping invalid finding — failed schema validation`);
+                continue;
+            }
+            if (isValidLineNumber(finding.lineNumber, finding.filePath, relevantFiles)) {
+                findings.push(finding);
+            }
+            else {
+                logger.warn(`[sql-reviewer] Dropping finding at ${finding.filePath}:${finding.lineNumber} — not an addition line`);
+            }
+        }
+        const usage = result.usage;
+        return { agentId: this.id, findings, usage };
+    },
+};
+//# sourceMappingURL=sql-reviewer.js.map

package/dist/ai/agents/sql-reviewer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sql-reviewer.js","sourceRoot":"","sources":["../../../src/ai/agents/sql-reviewer.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AACnF,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AAC/D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AAE/D,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC;AAE7D,4EAA4E;AAC5E,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AACvC,MAAM,kBAAkB,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,SAAS,EAAE,kBAAkB,CAAC,EAAE,OAAO,CAAC,CAAC;AAErG,MAAM,CAAC,MAAM,gBAAgB,GAAU;IACrC,EAAE,EAAE,cAAc;IAClB,WAAW,EAAE,KAAK;IAClB,WAAW,EAAE,8CAA8C;IAC3D,MAAM,EAAE,UAAU;IAClB,WAAW,EAAE,CAAC,aAAa,CAAC;IAE5B,UAAU,CAAC,QAAgB;QACzB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QACjD,OAAO,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACjC,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,KAAiB,EAAE,QAAuB;QACtD,MAAM,MAAM,GAAG,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACzC,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;QAE5E,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,OAAO;gBACL,OAAO,EAAE,IAAI,CAAC,EAAE;gBAChB,QAAQ,EAAE,EAAE;gBACZ,KAAK,EAAE,EAAE,WAAW,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE;aAC3C,CAAC;QACJ,CAAC;QAED,MAAM,oBAAoB,GAAG,KAAK,CAAC,cAAc,CAAC;QAClD,MAAM,YAAY,GAAG,iBAAiB,CAAC,kBAAkB,EAAE,KAAK,CAAC,OAAO,EAAE,oBAAoB,CAAC,CAAC;QAChG,MAAM,WAAW,GAAG,gBAAgB,CAAC,aAAa,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,OAAO,EAAE,WAAW,IAAI,MAAM,CAAC,CAAC;QAE5G,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC;YACpC,YAAY;YACZ,WAAW;YACX,QAAQ,EAAE,iBAAiB;YAC3B,UAAU,EAAE,mBAAmB;SAChC,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,EAAE,CAAC;QACpB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClC,MAAM,OAAO,GAAG,gBAAgB,CAAC,GAAG,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;YAC/C,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;gBACrB,MAAM,CAAC,IAAI,CAAC,oEAAoE,CAAC,CAAC;gBAClF,SAAS;YACX,CAAC;YACD,IAAI,iBAAiB,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,QAAQ,EAAE,aAAa,CAAC,EAAE,CAAC;gBAC3E,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACzB,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,CAAC,sCAAsC,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,UAAU,yBAAyB,CAAC,CAAC;YACrH,CAAC;QACH,CAAC;QAED,MAAM,KAAK,GAAe,MAAM,CAAC,KAAK,CAAC;QAEvC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IAC/C,CAAC;CACF,CAAC"}

package/dist/ai/agents/testing-reviewer.d.ts

@@ -0,0 +1,3 @@
+import type { Agent } from '../../types/index.js';
+export declare const testingReviewerAgent: Agent;
+//# sourceMappingURL=testing-reviewer.d.ts.map

package/dist/ai/agents/testing-reviewer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"testing-reviewer.d.ts","sourceRoot":"","sources":["../../../src/ai/agents/testing-reviewer.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,KAAK,EAAgE,MAAM,sBAAsB,CAAC;AAqChH,eAAO,MAAM,oBAAoB,EAAE,KAoDlC,CAAC"}