npm - prism-pr - Versions diffs - 1.0.0-alpha.65 → 1.0.0-alpha.68 - Mend

prism-pr 1.0.0-alpha.65 → 1.0.0-alpha.68

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (251) hide show

package/README.md +274 -55
package/bin/run.js +17 -17
package/dist/ai/adapters/model-provider-llm-adapter.d.ts +21 -0
package/dist/ai/adapters/model-provider-llm-adapter.d.ts.map +1 -0
package/dist/ai/adapters/model-provider-llm-adapter.js +58 -0
package/dist/ai/adapters/model-provider-llm-adapter.js.map +1 -0
package/dist/ai/agents/framework-rules/index.d.ts.map +1 -1
package/dist/ai/agents/framework-rules/index.js +21 -0
package/dist/ai/agents/framework-rules/index.js.map +1 -1
package/dist/ai/agents/prompts/architecture-reviewer.txt +39 -39
package/dist/ai/agents/prompts/config-reviewer.txt +47 -47
package/dist/ai/agents/prompts/csharp-reviewer.txt +39 -39
package/dist/ai/agents/prompts/css-reviewer.txt +41 -41
package/dist/ai/agents/prompts/html-reviewer.txt +52 -43
package/dist/ai/agents/prompts/performance-reviewer.txt +38 -38
package/dist/ai/agents/prompts/security-reviewer.txt +36 -36
package/dist/ai/agents/prompts/sql-reviewer.txt +43 -43
package/dist/ai/agents/prompts/testing-reviewer.txt +38 -38
package/dist/ai/agents/prompts/ts-reviewer.txt +4 -0
package/dist/ai/agents/prompts/ux-text-reviewer.txt +68 -68
package/dist/ai/agents/shared/finding-schema.d.ts +3 -0
package/dist/ai/agents/shared/finding-schema.d.ts.map +1 -1
package/dist/ai/agents/shared/finding-schema.js +3 -3
package/dist/ai/agents/shared/finding-schema.js.map +1 -1
package/dist/ai/providers/anthropic-provider.js +1 -1
package/dist/ai/providers/anthropic-provider.js.map +1 -1
package/dist/bitbucket/client.d.ts +1 -0
package/dist/bitbucket/client.d.ts.map +1 -1
package/dist/bitbucket/client.js +21 -0
package/dist/bitbucket/client.js.map +1 -1
package/dist/commands/guard/check.d.ts +3 -0
package/dist/commands/guard/check.d.ts.map +1 -1
package/dist/commands/guard/check.js +205 -24
package/dist/commands/guard/check.js.map +1 -1
package/dist/commands/review/start.d.ts +1 -0
package/dist/commands/review/start.d.ts.map +1 -1
package/dist/commands/review/start.js +38 -3
package/dist/commands/review/start.js.map +1 -1
package/dist/commands/rules/bootstrap.d.ts.map +1 -1
package/dist/commands/rules/bootstrap.js +36 -1
package/dist/commands/rules/bootstrap.js.map +1 -1
package/dist/commands/rules/push.d.ts.map +1 -1
package/dist/commands/rules/push.js +1 -1
package/dist/commands/rules/push.js.map +1 -1
package/dist/commands/rules/sync.d.ts.map +1 -1
package/dist/commands/rules/sync.js +1 -1
package/dist/commands/rules/sync.js.map +1 -1
package/dist/config/config-manager.js +1 -1
package/dist/config/config-manager.js.map +1 -1
package/dist/core/review-workflow.d.ts +2 -0
package/dist/core/review-workflow.d.ts.map +1 -1
package/dist/core/review-workflow.js.map +1 -1
package/dist/core/workflow-engine.d.ts +2 -0
package/dist/core/workflow-engine.d.ts.map +1 -1
package/dist/core/workflow-engine.js +16 -0
package/dist/core/workflow-engine.js.map +1 -1
package/dist/guard/auto-bootstrap.d.ts +18 -0
package/dist/guard/auto-bootstrap.d.ts.map +1 -0
package/dist/guard/auto-bootstrap.js +19 -0
package/dist/guard/auto-bootstrap.js.map +1 -0
package/dist/guard/feedback-service.d.ts +34 -0
package/dist/guard/feedback-service.d.ts.map +1 -0
package/dist/guard/feedback-service.js +82 -0
package/dist/guard/feedback-service.js.map +1 -0
package/dist/guard/guard-match-aggregator.d.ts +16 -0
package/dist/guard/guard-match-aggregator.d.ts.map +1 -0
package/dist/guard/guard-match-aggregator.js +79 -0
package/dist/guard/guard-match-aggregator.js.map +1 -0
package/dist/guard/patterns-loader.js +1 -1
package/dist/guard/patterns-loader.js.map +1 -1
package/dist/guard/review-findings-aggregator.d.ts +38 -0
package/dist/guard/review-findings-aggregator.d.ts.map +1 -0
package/dist/guard/review-findings-aggregator.js +114 -0
package/dist/guard/review-findings-aggregator.js.map +1 -0
package/dist/guard/types.d.ts +1 -1
package/dist/guard/types.d.ts.map +1 -1
package/dist/persistence/database.js +4 -4
package/dist/persistence/migrations/0001_phase3a_schema.sql +15 -15
package/dist/persistence/migrations/0004_review_memory.sql +24 -24
package/dist/persistence/migrations/0005_pattern_feedback.sql +16 -0
package/dist/persistence/migrations/20260401141055_peaceful_blur/migration.sql +66 -66
package/dist/persistence/migrations/20260401141055_peaceful_blur/snapshot.json +467 -467
package/dist/persistence/migrations/meta/0000_snapshot.json +467 -467
package/dist/persistence/migrations/meta/_journal.json +7 -0
package/dist/persistence/pattern-feedback-repository.d.ts +59 -0
package/dist/persistence/pattern-feedback-repository.d.ts.map +1 -0
package/dist/persistence/pattern-feedback-repository.js +116 -0
package/dist/persistence/pattern-feedback-repository.js.map +1 -0
package/dist/persistence/schema.d.ts +199 -0
package/dist/persistence/schema.d.ts.map +1 -1
package/dist/persistence/schema.js +17 -0
package/dist/persistence/schema.js.map +1 -1
package/dist/rule-catalog/ag-grid/base.d.ts.map +1 -1
package/dist/rule-catalog/ag-grid/base.js +1 -0
package/dist/rule-catalog/ag-grid/base.js.map +1 -1
package/dist/rule-catalog/ag-grid/v32.d.ts.map +1 -1
package/dist/rule-catalog/ag-grid/v32.js +1 -0
package/dist/rule-catalog/ag-grid/v32.js.map +1 -1
package/dist/rule-catalog/angular/base.d.ts.map +1 -1
package/dist/rule-catalog/angular/base.js +117 -1
package/dist/rule-catalog/angular/base.js.map +1 -1
package/dist/rule-catalog/angular/v17.d.ts.map +1 -1
package/dist/rule-catalog/angular/v17.js +1 -0
package/dist/rule-catalog/angular/v17.js.map +1 -1
package/dist/rule-catalog/angular/v2.d.ts +3 -0
package/dist/rule-catalog/angular/v2.d.ts.map +1 -0
package/dist/rule-catalog/angular/v2.js +44 -0
package/dist/rule-catalog/angular/v2.js.map +1 -0
package/dist/rule-catalog/index.d.ts.map +1 -1
package/dist/rule-catalog/index.js +2 -0
package/dist/rule-catalog/index.js.map +1 -1
package/dist/rule-catalog/nestjs/base.d.ts.map +1 -1
package/dist/rule-catalog/nestjs/base.js +1 -0
package/dist/rule-catalog/nestjs/base.js.map +1 -1
package/dist/rule-catalog/react/base.d.ts.map +1 -1
package/dist/rule-catalog/react/base.js +1 -0
package/dist/rule-catalog/react/base.js.map +1 -1
package/dist/rule-catalog/ruleset-mapper.d.ts +11 -0
package/dist/rule-catalog/ruleset-mapper.d.ts.map +1 -1
package/dist/rule-catalog/ruleset-mapper.js +32 -0
package/dist/rule-catalog/ruleset-mapper.js.map +1 -1
package/dist/rule-catalog/shared/general.d.ts.map +1 -1
package/dist/rule-catalog/shared/general.js +130 -0
package/dist/rule-catalog/shared/general.js.map +1 -1
package/dist/rule-catalog/shared/security.d.ts.map +1 -1
package/dist/rule-catalog/shared/security.js +11 -2
package/dist/rule-catalog/shared/security.js.map +1 -1
package/dist/rule-catalog/shared/typescript.d.ts.map +1 -1
package/dist/rule-catalog/shared/typescript.js +4 -3
package/dist/rule-catalog/shared/typescript.js.map +1 -1
package/dist/rule-catalog/types.d.ts +1 -0
package/dist/rule-catalog/types.d.ts.map +1 -1
package/dist/rules-engine/pattern-generator.d.ts +22 -1
package/dist/rules-engine/pattern-generator.d.ts.map +1 -1
package/dist/rules-engine/pattern-generator.js +26 -8
package/dist/rules-engine/pattern-generator.js.map +1 -1
package/dist/rules-engine/types.d.ts +5 -0
package/dist/rules-engine/types.d.ts.map +1 -1
package/dist/rules-engine/types.js.map +1 -1
package/dist/rules-repo/constants.d.ts +14 -0
package/dist/rules-repo/constants.d.ts.map +1 -0
package/dist/rules-repo/constants.js +16 -0
package/dist/rules-repo/constants.js.map +1 -0
package/dist/rules-repo/manifest-refresh.d.ts +45 -0
package/dist/rules-repo/manifest-refresh.d.ts.map +1 -0
package/dist/rules-repo/manifest-refresh.js +123 -0
package/dist/rules-repo/manifest-refresh.js.map +1 -0
package/dist/rules-repo/manifest-resolver.d.ts +2 -1
package/dist/rules-repo/manifest-resolver.d.ts.map +1 -1
package/dist/rules-repo/manifest-resolver.js +20 -5
package/dist/rules-repo/manifest-resolver.js.map +1 -1
package/dist/rules-repo/manifest-types.d.ts +43 -1
package/dist/rules-repo/manifest-types.d.ts.map +1 -1
package/dist/rules-repo/manifest-types.js +26 -1
package/dist/rules-repo/manifest-types.js.map +1 -1
package/dist/rules-repo/rules-cache.d.ts +13 -1
package/dist/rules-repo/rules-cache.d.ts.map +1 -1
package/dist/rules-repo/rules-cache.js +75 -0
package/dist/rules-repo/rules-cache.js.map +1 -1
package/dist/rules-repo/rules-repo-client.d.ts +35 -4
package/dist/rules-repo/rules-repo-client.d.ts.map +1 -1
package/dist/rules-repo/rules-repo-client.js +135 -9
package/dist/rules-repo/rules-repo-client.js.map +1 -1
package/dist/rules-repo/types.d.ts +3 -0
package/dist/rules-repo/types.d.ts.map +1 -1
package/dist/rules-repo/types.js.map +1 -1
package/dist/tui/components/app-header.js +2 -2
package/dist/tui/components/searchable-list.d.ts +2 -1
package/dist/tui/components/searchable-list.d.ts.map +1 -1
package/dist/tui/components/searchable-list.js +3 -1
package/dist/tui/components/searchable-list.js.map +1 -1
package/dist/tui/deps-context.d.ts +6 -0
package/dist/tui/deps-context.d.ts.map +1 -1
package/dist/tui/deps-context.js.map +1 -1
package/dist/tui/hooks/use-session.d.ts +4 -4
package/dist/tui/hooks/use-suggest-rules.d.ts +30 -0
package/dist/tui/hooks/use-suggest-rules.d.ts.map +1 -0
package/dist/tui/hooks/use-suggest-rules.js +78 -0
package/dist/tui/hooks/use-suggest-rules.js.map +1 -0
package/dist/tui/screen-router.d.ts.map +1 -1
package/dist/tui/screen-router.js +6 -0
package/dist/tui/screen-router.js.map +1 -1
package/dist/tui/screens/bootstrap-running.d.ts +3 -0
package/dist/tui/screens/bootstrap-running.d.ts.map +1 -0
package/dist/tui/screens/bootstrap-running.js +180 -0
package/dist/tui/screens/bootstrap-running.js.map +1 -0
package/dist/tui/screens/finding-detail.d.ts.map +1 -1
package/dist/tui/screens/finding-detail.js +17 -0
package/dist/tui/screens/finding-detail.js.map +1 -1
package/dist/tui/screens/findings-list.d.ts.map +1 -1
package/dist/tui/screens/findings-list.js +28 -2
package/dist/tui/screens/findings-list.js.map +1 -1
package/dist/tui/screens/guard-detail.d.ts.map +1 -1
package/dist/tui/screens/guard-detail.js +48 -4
package/dist/tui/screens/guard-detail.js.map +1 -1
package/dist/tui/screens/guard-home.d.ts.map +1 -1
package/dist/tui/screens/guard-home.js +28 -8
package/dist/tui/screens/guard-home.js.map +1 -1
package/dist/tui/screens/guard-results.d.ts.map +1 -1
package/dist/tui/screens/guard-results.js +133 -4
package/dist/tui/screens/guard-results.js.map +1 -1
package/dist/tui/screens/guard-running.d.ts.map +1 -1
package/dist/tui/screens/guard-running.js +116 -5
package/dist/tui/screens/guard-running.js.map +1 -1
package/dist/tui/screens/home.d.ts.map +1 -1
package/dist/tui/screens/home.js +27 -2
package/dist/tui/screens/home.js.map +1 -1
package/dist/tui/screens/repo-select.d.ts.map +1 -1
package/dist/tui/screens/repo-select.js +3 -0
package/dist/tui/screens/repo-select.js.map +1 -1
package/dist/tui/screens/review-running.js +1 -1
package/dist/tui/screens/review-running.js.map +1 -1
package/dist/tui/screens/rule-suggestions.d.ts +3 -0
package/dist/tui/screens/rule-suggestions.d.ts.map +1 -0
package/dist/tui/screens/rule-suggestions.js +121 -0
package/dist/tui/screens/rule-suggestions.js.map +1 -0
package/dist/tui/state/router-reducer.d.ts +1 -1
package/dist/tui/state/router-reducer.d.ts.map +1 -1
package/dist/tui/state/router-reducer.js.map +1 -1
package/dist/tui/state/tui-reducer.d.ts +66 -3
package/dist/tui/state/tui-reducer.d.ts.map +1 -1
package/dist/tui/state/tui-reducer.js +98 -0
package/dist/tui/state/tui-reducer.js.map +1 -1
package/dist/tui/types/bootstrap-options.d.ts +10 -0
package/dist/tui/types/bootstrap-options.d.ts.map +1 -0
package/dist/tui/types/bootstrap-options.js +19 -0
package/dist/tui/types/bootstrap-options.js.map +1 -0
package/dist/tui/types/guard-options.d.ts +17 -0
package/dist/tui/types/guard-options.d.ts.map +1 -0
package/dist/tui/types/guard-options.js +36 -0
package/dist/tui/types/guard-options.js.map +1 -0
package/dist/types/repo-config.d.ts +8 -8
package/dist/utils/summary-generator.d.ts +1 -0
package/dist/utils/summary-generator.d.ts.map +1 -1
package/dist/utils/summary-generator.js +12 -6
package/dist/utils/summary-generator.js.map +1 -1
package/oclif.manifest.json +28 -3
package/package.json +24 -2
package/dist/memory/engram-client.d.ts +0 -15
package/dist/memory/engram-client.d.ts.map +0 -1
package/dist/memory/engram-client.js +0 -167
package/dist/memory/engram-client.js.map +0 -1
package/dist/persistence/migrations/0000_peaceful_blur.sql +0 -66
package/dist/tui/components/status-bar.d.ts +0 -10
package/dist/tui/components/status-bar.d.ts.map +0 -1
package/dist/tui/components/status-bar.js +0 -7
package/dist/tui/components/status-bar.js.map +0 -1
package/dist/types/engram.d.ts +0 -29
package/dist/types/engram.d.ts.map +0 -1
package/dist/types/engram.js +0 -2
package/dist/types/engram.js.map +0 -1

package/README.md CHANGED Viewed

@@ -1,6 +1,8 @@
 # PRISM-PR
-Intelligent Pull Request review orchestrator for Bitbucket. AI-powered code review with pattern-based pre-checks using ast-grep structural matching.
+> **Alpha** — this package is in active development (`1.0.0-alpha`). APIs and commands may change between releases.
+Intelligent Pull Request review orchestrator for Bitbucket. AI-powered code review plus pattern-based pre-checks using ast-grep structural matching, a shared team rules repository, and a self-evolving rule system that learns from your feedback.
 ## Install
@@ -8,113 +10,330 @@ Intelligent Pull Request review orchestrator for Bitbucket. AI-powered code revi
 npm i -g prism-pr
 ```
+## Requirements
+- Node.js **>= 22.5.0** (SQLite is loaded via the native `node:sqlite` module)
+- Bitbucket Cloud account with an Atlassian API token
+- AI provider (one of):
+  - `ANTHROPIC_API_KEY` environment variable (preferred), or
+  - [Claude Code CLI](https://docs.anthropic.com/en/docs/claude-code) installed and authenticated
 ## Setup
 ```bash
-# Login with your Bitbucket app password
 prism login
 ```
-Your Bitbucket app password needs these permissions:
+Your Bitbucket app password / API token needs these permissions:
 - Repositories: **Read** + **Write**
-- Pull requests: **Read**
+- Pull requests: **Read** + **Write**
+## Discoverability — always available
+Every command documents itself via `--help`. If something in this README is stale, trust `--help`:
+```bash
+prism --help                      # full command tree
+prism rules --help                # subcommands under `rules`
+prism guard --help                # subcommands under `guard`
+prism rules bootstrap --help      # flags + examples for a specific command
+prism guard check --help
+prism review start --help
+```
-## Guard — Instant PR Pattern Check
+---
-Guard checks your PR against learned patterns from past reviews. Zero LLM calls, under 2 seconds.
+## Quick start — zero config
-### Check a PR (CLI)
+PRISM auto-detects your stack and bootstraps rules on the first run. No setup needed.
 ```bash
-# Basic check
-prism guard check -w <workspace> -r <repo> -p <pr-id> --verbose
+cd your-bitbucket-repo
+prism guard check
+```
-# Filter by severity
-prism guard check -w <workspace> -r <repo> -p <pr-id> --min-severity high --verbose
+That's it. On first run, PRISM will:
+1. Detect workspace/repo from your git remote
+2. Fetch `package.json` via Bitbucket API to detect your stack (TypeScript, Angular, React, NestJS, AG Grid, …)
+3. Generate a manifest with the matching rulesets
+4. Push everything to the shared rules repository
+5. Resolve patterns and check your PR
+### Manual bootstrap (optional)
+If you prefer explicit control:
+```bash
+# Detect stack and push manifest + rulesets to the shared rules repo
+prism rules bootstrap
+# Preview without pushing
+prism rules bootstrap --dry-run
-# JSON output (for CI/CD)
-prism guard check -w <workspace> -r <repo> -p <pr-id> --json
+# JSON output (CI-friendly)
+prism rules bootstrap --dry-run --json
-# Use remote rules (shared team patterns)
-prism guard check -w <workspace> -r <repo> -p <pr-id> --remote --verbose
+# Explicit workspace/repo/branch
+prism rules bootstrap --workspace acme --repo my-repo --branch develop
 ```
-### Interactive TUI
+### Check a PR
 ```bash
-prism guard
+# Interactive PR picker (auto-detects workspace/repo from git origin)
+prism guard check
+# Pick a PR by ID
+prism guard check --pr 42
+# Full output with code snippets and suggestions
+prism guard check --pr 42 --verbose
+# Filter by severity
+prism guard check --pr 42 --min-severity high --verbose
+# JSON output for CI
+prism guard check --pr 42 --json
 ```
-Launches the full interactive experience: select workspace, repo, PR, and browse results with keyboard navigation.
+**`--verbose` gates the snippet and suggestion.** Without it, matches show severity badge + title + file:line only. With `--verbose`, you get diff context with a pointer on the exact line, plus the fix suggestion.
+---
+## Living Rules — self-evolving rule system
+PRISM's rules aren't static. They learn, adapt, and grow with your codebase.
+### Auto-Refresh
-### Exit codes
+Manifests detect when your stack changes. If you add a new framework (e.g. NestJS) to your project, the next guard check automatically updates the manifest with the new rulesets. Default staleness threshold: 7 days.
-- `0` — No matches found (all clear)
-- `1` — Matches found
+### Versioned Catalog
-Use in CI: `prism guard check -w acme -r app -p $PR_ID --min-severity high || exit 1`
+Rulesets are published as immutable versioned artifacts:
-## Rules — Generate and Share Patterns
+```
+catalog/
+  shared/security/1.0.0.json    # immutable, infinite cache
+  shared/general/1.0.0.json
+  angular/v17/1.0.0.json
+  ...
+catalog/index.json               # lists all rulesets + latest versions
+```
+Manifests can pin versions: `"shared/security@1.2.0"`. Unversioned includes resolve to latest. A 3-level fallback chain ensures resilience: versioned remote → unversioned remote → static builtin catalog.
-Rules are generated from your review history and shared via a remote repository.
+### Feedback Loop & Auto-Tune
-### Generate patterns
+Mark findings as false positives. After enough feedback, PRISM auto-excludes noisy patterns.
 ```bash
-# Generate .prism-patterns.json from past reviews
-prism rules sync -w <workspace> -r <repo> --verbose
+# CLI: mark specific pattern IDs as false positive
+prism guard check --pr 42 --mark-fp "security--xss--innerHTML-usage,general--debug--console-log"
-# Skip AI rule generation (faster, keyword-only)
-prism rules sync -w <workspace> -r <repo> --skip-rules
+# CLI: auto-exclude patterns with 3+ false positives
+prism guard check --pr 42 --auto-tune
 ```
-### Share with your team
+In the TUI, press `[f]` on any finding to mark it as a false positive. Press `[t]` in the results screen to apply auto-tune.
+### AI Rule Suggestion
+PRISM can analyze findings from any review and generate new ast-grep rules automatically. Rule suggestions are a **post-review** action — you see the findings first, then decide which patterns should become permanent rules.
 ```bash
-# Push patterns to remote rules repo
-prism rules push -w <workspace> -r <repo>
+# CLI: generate rules from guard findings
+prism guard check --pr 42 --suggest-rules
+# CLI: generate rules from AI review findings
+prism review start --workspace acme --repo app --pr 42 --suggest-rules
 ```
-Your team then uses `--remote` flag on guard check to fetch shared rules automatically.
+PRISM uses the same AI provider configured for reviews (auto-detects from `ANTHROPIC_API_KEY` or falls back to Claude Code CLI).
+In the TUI, press `[g]` on any results screen (guard results or AI review findings) to generate rule suggestions on demand. Review, accept/reject, and apply to the manifest.
-### View stats
+---
+## Interactive TUI
 ```bash
-prism rules stats -w <workspace> -r <repo>
+prism           # main TUI (review + navigation)
+prism guard     # guard-focused TUI
 ```
-## AI Review — Full PR Analysis
+Launches a full Ink-based terminal UI with keyboard navigation.
+### Guardian Angel section
+- **Guard Check** — select workspace → repo → PR → run check
+- **Guard Check (auto-detect)** — detects workspace/repo from git origin, skips manual selection
+- **Rules Bootstrap** — detect stack and push manifest (dry-run toggle, branch override)
+### Guard options (toggleable in guard-home)
+| Key | Option | Description |
+|-----|--------|-------------|
+| `v` | Verbose | Show context lines and suggestions |
+| `s` | Severity | Cycle minimum severity filter |
+| `a` | AST | Toggle ast-grep matching on/off |
+### Guard results actions
+| Key | Action | Description |
+|-----|--------|-------------|
+| `↑↓` | Navigate | Browse findings |
+| `Enter` | Detail | View finding detail with context |
+| `f` | False positive | Mark finding as FP (in detail view) |
+| `j` | Export JSON | Export results to `prism-guard-results.json` |
+| `t` | Auto-tune | Batch-exclude patterns with enough FP feedback |
+| `g` | AI suggestions | Generate and review AI-suggested rules (on demand) |
+| `Esc` | Back | Return to previous screen |
+### AI Review findings actions
+| Key | Action | Description |
+|-----|--------|-------------|
+| `↑↓` | Navigate | Browse findings |
+| `Enter` | Detail | View finding detail |
+| `g` | AI suggestions | Generate rules from review findings (on demand) |
+| `p` | Publish | Publish findings to Bitbucket PR |
+| `Esc` | Back | Return to previous screen |
+---
+## AI Review — full PR analysis (LLM-powered)
 ```bash
-# Launch interactive TUI for full AI review
-prism
+prism review start --workspace acme --repo app --pr 42
-# Or start directly
-prism review start -w <workspace> -r <repo> -p <pr-id>
+# Verbose logging
+prism review start --workspace acme --repo app --pr 42 --verbose
+# Pick a provider explicitly
+prism review start --workspace acme --repo app --pr 42 --provider anthropic
+prism review start --workspace acme --repo app --pr 42 --provider claude-code
+# Generate rule suggestions from findings
+prism review start --workspace acme --repo app --pr 42 --suggest-rules
 ```
-The AI review uses specialized agents (TypeScript, PHP, CSS, Security, Architecture, Performance, etc.) to analyze your PR and generate findings with inline suggestions.
+> **Note:** `review start` requires `--workspace` and `--repo` explicitly (no auto-detect from git origin). `guard check` auto-detects both.
+The AI review runs specialized agents (TypeScript, PHP, CSS, Security, Architecture, Performance, …) and produces findings with inline suggestions. Findings are stored in a local SQLite database for review memory and pattern generation.
+---
 ## Commands
-| Command | Description |
-|---------|-------------|
-| `prism` | Launch interactive TUI |
+| Command | Purpose |
+|---------|---------|
+| `prism` | Launch main interactive TUI |
 | `prism login` | Authenticate with Bitbucket |
 | `prism logout` | Remove stored credentials |
-| `prism guard` | Guard TUI (pattern check) |
-| `prism guard check` | Guard CLI (non-interactive) |
-| `prism rules sync` | Generate patterns from review history |
-| `prism rules push` | Push patterns to remote repo |
-| `prism rules stats` | Show pattern statistics |
-| `prism review start` | Start AI review for a PR |
+| `prism guard` | Guard Check TUI |
+| `prism guard check` | Non-interactive pattern check (manifest v3) |
+| `prism rules bootstrap` | Detect stack, generate manifest, push to rules repo |
+| `prism rules sync` | ~~Legacy v2.~~ Generate `.prism-patterns.json` from local review history (deprecated) |
+| `prism rules push` | ~~Legacy v2.~~ Push a local `.prism-patterns.json` to the rules repo (deprecated) |
+| `prism rules stats` | Show aggregated finding patterns from local review history |
+| `prism review start` | Run an AI code review on a PR |
+### guard check flags
+| Flag | Description |
+|------|-------------|
+| `--workspace, -w` | Bitbucket workspace (auto-detected from git origin) |
+| `--repo, -r` | Repository slug (auto-detected from git origin) |
+| `--pr, -p` | Pull request ID (interactive picker if omitted) |
+| `--verbose` | Show diff context and suggestions |
+| `--min-severity` | Filter: `critical`, `high`, `medium`, `low`, `info` |
+| `--json` | Structured JSON output (CI-friendly) |
+| `--skip-ast` | Skip ast-grep, keyword-only matching |
+| `--auto-tune` | Auto-exclude patterns with repeated false positives |
+| `--suggest-rules` | Generate AI rules from recurring findings |
+| `--mark-fp` | Mark pattern IDs as false positive (comma-separated) |
+| `--patterns` | Path to local patterns file (bypasses manifest) |
+| `--remote` | **Deprecated.** Use v2 remote fetch path |
+### Exit codes (guard check)
+- `0` — no matches found
+- `1` — matches found (or error)
+Useful in CI:
-## Requirements
+```bash
+prism guard check --pr "$PR_ID" --min-severity high --json > findings.json
+```
+---
+## Concepts
+### Manifest v3
+A `ProjectManifest` lives at `projects/<workspace>/<repo>.json` in the shared rules repo. It references rulesets by id instead of inlining patterns:
+```json
+{
+  "version": 3,
+  "generatedAt": "2026-04-13T21:00:00.000Z",
+  "stack": {
+    "languages": ["typescript"],
+    "frameworks": [{ "name": "angular", "version": "17.3.0" }],
+    "detectedAt": "2026-04-13T21:00:00.000Z"
+  },
+  "includes": ["angular/base", "angular/v17", "shared/typescript", "shared/security@1.0.0"],
+  "excludes": ["general--debug--console-log"],
+  "patterns": []
+}
+```
+- `includes` — ruleset IDs to pull in (supports `@version` pinning)
+- `excludes` — pattern IDs to skip (auto-tune populates this)
+- `patterns` — project-specific custom patterns (AI suggestions land here)
+### Rulesets
+Built-in rulesets today (9 rulesets, 30+ ast-grep patterns):
+- `shared/general`, `shared/security`, `shared/typescript`
+- `angular/base`, `angular/v17`
+- `react/base`
+- `nestjs/base`
+- `ag-grid/base`, `ag-grid/v32`
+### Remote catalog structure
+All teams share a single Bitbucket rules repository that hosts manifests and versioned rulesets. The default shared repo is `walzate1/prism-rules`:
+```
+{rules-repo} (Bitbucket)
+├── projects/{workspace}/{repo}.json    # per-project manifest
+├── rulesets/{id}.json                  # unversioned rulesets (backward compat)
+└── catalog/
+    ├── index.json                      # catalog index (all rulesets + versions)
+    └── {id}/{version}.json             # immutable versioned rulesets
+```
+### Severity levels
+`critical` · `high` · `medium` · `low` · `info`
+### Pattern resolution flow
+1. `--patterns <file>` explicitly set → use local file (bypasses manifest)
+2. Fetch manifest from `projects/<ws>/<repo>.json`
+3. If no manifest → **auto-bootstrap** (detect stack → generate → push → continue)
+4. If manifest is stale (>7 days) → **auto-refresh** (re-detect stack → smart merge → push)
+5. Resolve includes via 3-level fallback (versioned → unversioned → static builtin)
+6. Apply excludes → merge custom patterns → run guard
-- Node.js 20+
-- Bitbucket Cloud account with app password
-- Claude Code CLI (for AI review and rule generation)
+---
 ## License
-Private
+UNLICENSED — All rights reserved.

package/bin/run.js CHANGED Viewed

@@ -1,17 +1,17 @@
-#!/usr/bin/env node
-// Suppress node:sqlite ExperimentalWarning
-const _origEmit = process.emit.bind(process);
-process.emit = function (event, ...args) {
-  if (event === 'warning' && args[0]?.name === 'ExperimentalWarning') return false;
-  return _origEmit(event, ...args);
-};
-import { execute } from '@oclif/core';
-// If no command specified, default to interactive TUI
-if (process.argv.length === 2) {
-  process.argv.push('interactive');
-}
-await execute({ dir: import.meta.url });
+#!/usr/bin/env node
+// Suppress node:sqlite ExperimentalWarning
+const _origEmit = process.emit.bind(process);
+process.emit = function (event, ...args) {
+  if (event === 'warning' && args[0]?.name === 'ExperimentalWarning') return false;
+  return _origEmit(event, ...args);
+};
+import { execute } from '@oclif/core';
+// If no command specified, default to interactive TUI
+if (process.argv.length === 2) {
+  process.argv.push('interactive');
+}
+await execute({ dir: import.meta.url });

package/dist/ai/adapters/model-provider-llm-adapter.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+import type { ModelProvider } from '../../types/provider.js';
+import type { LLMProvider } from '../../rules-engine/pattern-generator.js';
+/**
+ * Adapter that bridges ModelProvider (tool_use, returns AnalyzeResult) →
+ * LLMProvider (string-in / string-out) required by PatternGenerator.
+ *
+ * Strategy:
+ * 1. Defines a tool schema where `findings[0]` is the model's complete text output.
+ * 2. Calls ModelProvider.analyze() with this schema.
+ * 3. Extracts findings[0] as a string (or JSON-serializes if the model returns an object).
+ * 4. Returns empty string when findings is empty — callers handle empty gracefully.
+ */
+export declare class ModelProviderLLMAdapter implements LLMProvider {
+    private readonly provider;
+    constructor(provider: ModelProvider);
+    analyze(systemPrompt: string, userContent: string, options?: {
+        toolName?: string;
+        maxTokens?: number;
+    }): Promise<string>;
+}
+//# sourceMappingURL=model-provider-llm-adapter.d.ts.map

package/dist/ai/adapters/model-provider-llm-adapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"model-provider-llm-adapter.d.ts","sourceRoot":"","sources":["../../../src/ai/adapters/model-provider-llm-adapter.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,yCAAyC,CAAC;AAwB3E;;;;;;;;;GASG;AACH,qBAAa,uBAAwB,YAAW,WAAW;IAC7C,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBAAR,QAAQ,EAAE,aAAa;IAE9C,OAAO,CACX,YAAY,EAAE,MAAM,EACpB,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;QAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,MAAM,CAAA;KAAE,GAClD,OAAO,CAAC,MAAM,CAAC;CAwBnB"}

package/dist/ai/adapters/model-provider-llm-adapter.js ADDED Viewed

@@ -0,0 +1,58 @@
+/**
+ * Tool schema designed to work with AnthropicProvider's extraction logic.
+ *
+ * AnthropicProvider always extracts `toolUseBlock.input.findings` from the tool call response.
+ * So the schema MUST use `findings` as the key — the model places its response in `findings[0]`.
+ *
+ * With this schema the model is instructed to return an array with exactly one element:
+ * the complete JSON response. AnthropicProvider's existing extraction code
+ * (`input.findings ?? []`) captures it, and we return `findings[0]`.
+ */
+const TEXT_CAPTURE_TOOL_SCHEMA = {
+    type: 'object',
+    properties: {
+        findings: {
+            type: 'array',
+            items: { type: 'string' },
+            description: 'Array with exactly one element: the complete JSON response. No markdown fences.',
+        },
+    },
+    required: ['findings'],
+};
+/**
+ * Adapter that bridges ModelProvider (tool_use, returns AnalyzeResult) →
+ * LLMProvider (string-in / string-out) required by PatternGenerator.
+ *
+ * Strategy:
+ * 1. Defines a tool schema where `findings[0]` is the model's complete text output.
+ * 2. Calls ModelProvider.analyze() with this schema.
+ * 3. Extracts findings[0] as a string (or JSON-serializes if the model returns an object).
+ * 4. Returns empty string when findings is empty — callers handle empty gracefully.
+ */
+export class ModelProviderLLMAdapter {
+    provider;
+    constructor(provider) {
+        this.provider = provider;
+    }
+    async analyze(systemPrompt, userContent, options) {
+        const toolName = options?.toolName ?? 'generate_ast_grep_rule';
+        const maxTokens = options?.maxTokens ?? 1024;
+        const result = await this.provider.analyze({
+            systemPrompt,
+            userContent,
+            toolName,
+            toolSchema: TEXT_CAPTURE_TOOL_SCHEMA,
+            maxTokens,
+        });
+        if (result.findings.length === 0) {
+            return '';
+        }
+        const first = result.findings[0];
+        if (typeof first === 'string') {
+            return first;
+        }
+        // Object findings — JSON-serialize for parseGeneratedRule to handle
+        return JSON.stringify(first);
+    }
+}
+//# sourceMappingURL=model-provider-llm-adapter.js.map

package/dist/ai/adapters/model-provider-llm-adapter.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"model-provider-llm-adapter.js","sourceRoot":"","sources":["../../../src/ai/adapters/model-provider-llm-adapter.ts"],"names":[],"mappings":"AAGA;;;;;;;;;GASG;AACH,MAAM,wBAAwB,GAAG;IAC/B,IAAI,EAAE,QAAiB;IACvB,UAAU,EAAE;QACV,QAAQ,EAAE;YACR,IAAI,EAAE,OAAgB;YACtB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAiB,EAAE;YAClC,WAAW,EAAE,iFAAiF;SAC/F;KACF;IACD,QAAQ,EAAE,CAAC,UAAU,CAAU;CAChC,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,OAAO,uBAAuB;IACL;IAA7B,YAA6B,QAAuB;QAAvB,aAAQ,GAAR,QAAQ,CAAe;IAAG,CAAC;IAExD,KAAK,CAAC,OAAO,CACX,YAAoB,EACpB,WAAmB,EACnB,OAAmD;QAEnD,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,IAAI,wBAAwB,CAAC;QAC/D,MAAM,SAAS,GAAG,OAAO,EAAE,SAAS,IAAI,IAAI,CAAC;QAE7C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC;YACzC,YAAY;YACZ,WAAW;YACX,QAAQ;YACR,UAAU,EAAE,wBAAwB;YACpC,SAAS;SACV,CAAC,CAAC;QAEH,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACjC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACjC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC;QACf,CAAC;QAED,oEAAoE;QACpE,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IAC/B,CAAC;CACF"}

package/dist/ai/agents/framework-rules/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/framework-rules/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kCAAkC,CAAC;AAMrE,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf;AAMD;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,YAAY,EAAE,YAAY,GAAG,SAAS,GAAG,IAAI,EAC7C,OAAO,EAAE,MAAM,GACd,MAAM,GAAG,SAAS,~~CAoBpB~~;AAED;;;;;;;;GAQG;AACH,wBAAgB,qBAAqB,CACnC,YAAY,EAAE,YAAY,GAAG,SAAS,GAAG,IAAI,EAC7C,OAAO,EAAE,MAAM,EACf,SAAS,CAAC,EAAE,eAAe,EAAE,GAC5B,MAAM,GAAG,SAAS,CAkBpB"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/ai/agents/framework-rules/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kCAAkC,CAAC;AAMrE,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf;AAMD;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,YAAY,EAAE,YAAY,GAAG,SAAS,GAAG,IAAI,EAC7C,OAAO,EAAE,MAAM,GACd,MAAM,GAAG,SAAS,CA0CpB;AAED;;;;;;;;GAQG;AACH,wBAAgB,qBAAqB,CACnC,YAAY,EAAE,YAAY,GAAG,SAAS,GAAG,IAAI,EAC7C,OAAO,EAAE,MAAM,EACf,SAAS,CAAC,EAAE,eAAe,EAAE,GAC5B,MAAM,GAAG,SAAS,CAkBpB"}

package/dist/ai/agents/framework-rules/index.js CHANGED Viewed

@@ -37,6 +37,27 @@ export function buildFrameworkContext(stackProfile, agentId) {
     if (stackProfile.keyLibraries.length > 0) {
         parts.push(`Key libraries: ${stackProfile.keyLibraries.join(', ')}`);
     }
+    // Angular architecture guidance — context-aware component patterns
+    if (canonical === 'angular' && agentId === 'architecture-reviewer') {
+        const libs = new Set(stackProfile.keyLibraries.map(l => l.toLowerCase()));
+        const hasStateManagement = libs.has('@ngxs/store') || libs.has('@ngrx/store') || libs.has('ngxs') || libs.has('ngrx');
+        if (hasStateManagement) {
+            parts.push(`\nAngular Architecture Guidance (state management detected):\n` +
+                `When suggesting component extraction or refactoring, recommend:\n` +
+                `- Store-driven architecture: components read state via Selectors, trigger changes via Actions/Dispatch\n` +
+                `- Smart containers subscribe to Store selectors; Dumb components receive data via @Input and emit events via @Output\n` +
+                `- Do NOT recommend passing state through @Input/@Output chains — use the Store as single source of truth\n` +
+                `- Services should dispatch Actions, not hold BehaviorSubjects for state that belongs in the Store`);
+        }
+        else {
+            parts.push(`\nAngular Architecture Guidance (no state management library detected):\n` +
+                `When suggesting component extraction or refactoring, recommend:\n` +
+                `- Smart & Dumb Components pattern: Smart (container) components handle logic and data fetching; Dumb (presentational) components receive data via @Input and emit events via @Output\n` +
+                `- Use Services with BehaviorSubject/Observable for shared state between components\n` +
+                `- Prefer Observable streams with async pipe over manual .subscribe() in templates\n` +
+                `- Keep components small and focused — extract when a component handles more than one responsibility`);
+        }
+    }
     return parts.join('\n');
 }
 /**

package/dist/ai/agents/framework-rules/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/ai/agents/framework-rules/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AACxD,OAAO,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAYvD,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;;;;GAOG;AACH,MAAM,UAAU,qBAAqB,CACnC,YAA6C,EAC7C,OAAe;IAEf,IAAI,YAAY,EAAE,SAAS,IAAI,IAAI;QAAE,OAAO,SAAS,CAAC;IAEtD,MAAM,SAAS,GAAG,sBAAsB,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;IACjE,IAAI,SAAS,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAE9C,MAAM,QAAQ,GAAG,mBAAmB,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACpD,IAAI,QAAQ,KAAK,SAAS,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC;QAAE,OAAO,SAAS,CAAC;IAEvE,sBAAsB;IACtB,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,CAAC,IAAI,CAAC,cAAc,YAAY,CAAC,SAAS,EAAE,CAAC,CAAC;IACnD,IAAI,YAAY,CAAC,gBAAgB,KAAK,IAAI,EAAE,CAAC;QAC3C,KAAK,CAAC,IAAI,CAAC,YAAY,YAAY,CAAC,gBAAgB,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,IAAI,YAAY,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC,kBAAkB,YAAY,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACvE,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,qBAAqB,CACnC,YAA6C,EAC7C,OAAe,EACf,SAA6B;IAE7B,MAAM,OAAO,GAAG,qBAAqB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;IAE7D,mCAAmC;IACnC,MAAM,UAAU,GAAG,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IAC/D,MAAM,UAAU,GAAG,UAAU,EAAE,KAAK,CAAC;IAErC,IAAI,OAAO,KAAK,SAAS,IAAI,CAAC,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,CAAC;QAAE,OAAO,SAAS,CAAC;IAErG,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IACD,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtD,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAC5B,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC/B,CAAC"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/ai/agents/framework-rules/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AACxD,OAAO,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAYvD,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;;;;GAOG;AACH,MAAM,UAAU,qBAAqB,CACnC,YAA6C,EAC7C,OAAe;IAEf,IAAI,YAAY,EAAE,SAAS,IAAI,IAAI;QAAE,OAAO,SAAS,CAAC;IAEtD,MAAM,SAAS,GAAG,sBAAsB,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;IACjE,IAAI,SAAS,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAE9C,MAAM,QAAQ,GAAG,mBAAmB,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACpD,IAAI,QAAQ,KAAK,SAAS,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC;QAAE,OAAO,SAAS,CAAC;IAEvE,sBAAsB;IACtB,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,CAAC,IAAI,CAAC,cAAc,YAAY,CAAC,SAAS,EAAE,CAAC,CAAC;IACnD,IAAI,YAAY,CAAC,gBAAgB,KAAK,IAAI,EAAE,CAAC;QAC3C,KAAK,CAAC,IAAI,CAAC,YAAY,YAAY,CAAC,gBAAgB,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,IAAI,YAAY,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC,kBAAkB,YAAY,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACvE,CAAC;IAED,mEAAmE;IACnE,IAAI,SAAS,KAAK,SAAS,IAAI,OAAO,KAAK,uBAAuB,EAAE,CAAC;QACnE,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,YAAY,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;QAC1E,MAAM,kBAAkB,GAAG,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAEtH,IAAI,kBAAkB,EAAE,CAAC;YACvB,KAAK,CAAC,IAAI,CAAC,gEAAgE;gBACzE,mEAAmE;gBACnE,0GAA0G;gBAC1G,wHAAwH;gBACxH,4GAA4G;gBAC5G,mGAAmG,CAAC,CAAC;QACzG,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,IAAI,CAAC,2EAA2E;gBACpF,mEAAmE;gBACnE,wLAAwL;gBACxL,sFAAsF;gBACtF,qFAAqF;gBACrF,qGAAqG,CAAC,CAAC;QAC3G,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,qBAAqB,CACnC,YAA6C,EAC7C,OAAe,EACf,SAA6B;IAE7B,MAAM,OAAO,GAAG,qBAAqB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;IAE7D,mCAAmC;IACnC,MAAM,UAAU,GAAG,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IAC/D,MAAM,UAAU,GAAG,UAAU,EAAE,KAAK,CAAC;IAErC,IAAI,OAAO,KAAK,SAAS,IAAI,CAAC,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,CAAC;QAAE,OAAO,SAAS,CAAC;IAErG,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IACD,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtD,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAC5B,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC/B,CAAC"}

package/dist/ai/agents/prompts/architecture-reviewer.txt CHANGED Viewed

@@ -1,39 +1,39 @@
-You are a senior software architect reviewing a pull request for structural and design issues. Your goal is to identify high-signal architectural problems — NOT file-level code style issues or implementation details.
-## Focus Areas
-Review the entire diff holistically and report findings for:
-1. **Circular dependencies** — modules or packages that import each other directly or transitively, creating tight coupling that prevents independent testing or deployment
-2. **Single Responsibility Principle violations** — classes, modules, or functions that are clearly doing multiple unrelated things (e.g., a data model that also handles HTTP calls; a service that mixes business logic with persistence)
-3. **Layer boundary crossings** — higher-level layers being imported by lower-level layers (e.g., UI components importing directly from database models; infrastructure code importing domain entities incorrectly)
-4. **Inappropriate coupling** — components that know too much about each other's internals; tight coupling that makes changes in one place require changes in many others
-5. **Leaked abstractions** — implementation details of one layer leaking into another (e.g., SQL-specific types in business logic; HTTP status codes in domain services)
-## Critical Output Constraint
-Produce between 0 and 3 findings MAXIMUM. This is a hard limit.
-Focus only on `critical` or `high` severity architectural issues. Do NOT report:
-- `medium`, `low`, or `info` severity findings
-- File-level implementation details
-- Naming conventions or code style
-- Issues that affect a single file without cross-component impact
-- Theoretical violations without clear evidence in the diff
-If no high-signal architectural issues exist, return an empty findings array. Do NOT manufacture findings to appear thorough.
-## Output Instructions
-You MUST call the `report_findings` tool to submit your findings. Do not write findings as plain text — the tool call is required.
-For each finding, reference the exact line number using the `[L{num}]` annotations provided in the diff. The `lineNumber` field in each finding MUST correspond to an annotated line from the diff.
-If there are no findings, call `report_findings` with an empty array: `{ "findings": [] }`.
-## Severity Criteria
-| Severity | When to use |
-|----------|-------------|
-| `critical` | Circular dependency or layer violation that will break builds or prevent testability |
-| `high` | SRP violation or coupling issue that will cause cascading changes and increase defect rate |
+You are a senior software architect reviewing a pull request for structural and design issues. Your goal is to identify high-signal architectural problems — NOT file-level code style issues or implementation details.
+## Focus Areas
+Review the entire diff holistically and report findings for:
+1. **Circular dependencies** — modules or packages that import each other directly or transitively, creating tight coupling that prevents independent testing or deployment
+2. **Single Responsibility Principle violations** — classes, modules, or functions that are clearly doing multiple unrelated things (e.g., a data model that also handles HTTP calls; a service that mixes business logic with persistence)
+3. **Layer boundary crossings** — higher-level layers being imported by lower-level layers (e.g., UI components importing directly from database models; infrastructure code importing domain entities incorrectly)
+4. **Inappropriate coupling** — components that know too much about each other's internals; tight coupling that makes changes in one place require changes in many others
+5. **Leaked abstractions** — implementation details of one layer leaking into another (e.g., SQL-specific types in business logic; HTTP status codes in domain services)
+## Critical Output Constraint
+Produce between 0 and 3 findings MAXIMUM. This is a hard limit.
+Focus only on `critical` or `high` severity architectural issues. Do NOT report:
+- `medium`, `low`, or `info` severity findings
+- File-level implementation details
+- Naming conventions or code style
+- Issues that affect a single file without cross-component impact
+- Theoretical violations without clear evidence in the diff
+If no high-signal architectural issues exist, return an empty findings array. Do NOT manufacture findings to appear thorough.
+## Output Instructions
+You MUST call the `report_findings` tool to submit your findings. Do not write findings as plain text — the tool call is required.
+For each finding, reference the exact line number using the `[L{num}]` annotations provided in the diff. The `lineNumber` field in each finding MUST correspond to an annotated line from the diff.
+If there are no findings, call `report_findings` with an empty array: `{ "findings": [] }`.
+## Severity Criteria
+| Severity | When to use |
+|----------|-------------|
+| `critical` | Circular dependency or layer violation that will break builds or prevent testability |
+| `high` | SRP violation or coupling issue that will cause cascading changes and increase defect rate |