prjct-cli 2.20.1 → 2.21.0

package/CHANGELOG.md

@@ -1,5 +1,26 @@
 # Changelog
 
+## [2.21.0] - 2026-05-17
+
+### Features
+
+- prjct review-risk verb — advisory size/delivery-geometry signal (#18/19/20, minimal cut) (v2.20.1) (#340)
+
+
+## [2.20.2] - 2026-05-17
+
+### Bug Fixes
+
+- skill routing triages complexity FIRST — spec is the exception, not the default (v2.20.1) (#341)
+
+
+## [Unreleased]
+
+### Added
+
+- **Architecture guard: SQLite connection factory is now an enforced invariant.** `openDatabase()` in `core/storage/database/sqlite-compat.ts` already baked the daemon-safety PRAGMAs (`journal_mode=WAL`, `busy_timeout=5000`) into every connection, but nothing stopped a future caller from doing a raw `new Database(...)` / `require('bun:sqlite')` / `require('better-sqlite3')` and silently bypassing them — the open half of the HIGH-severity daemon-vs-CLI write-lock anti-pattern. New `core/__tests__/storage/sqlite-factory-guard.test.ts` scans `core/` + `bin/` and fails CI if any file outside the sanctioned factory acquires a driver, and separately asserts the factory keeps both PRAGMAs. Closes the anti-pattern by moving it from convention to enforced. No runtime code change.
+- **`prjct review-risk [--md]`** — advisory size/delivery-geometry signal (minimal cut of harnesses #18/19/20). Reads the committed changeset vs the merge-base with the default branch (`git diff --shortstat`), derives a size tier (trivial/normal/large) and suggests a delivery geometry (`direct`/`single`/`split`, with the touched top-level dirs as natural split lines). Read-only/Tier-1 (retro/health shape); never gates, never splits, never mutates git; graceful no-signal when there is no base or nothing committed.
+
 ## [2.20.1] - 2026-05-17
 
 ### Bug Fixes

package/README.md

@@ -58,6 +58,7 @@ After install, **next session in any prjct project**:
   - `security` — OWASP Top 10 + STRIDE, 8/10 confidence gate, concrete exploit per finding
   - `investigate` — Iron Law (no fix without investigation), max 3 failed hypotheses
   - `ship` (endurecido) — Coverage Gate + Auto-Document
+- **Delivery-geometry advisory** (`prjct review-risk`): reads the committed changeset vs the merge-base and suggests a size tier (trivial/normal/large) + whether to ship direct, as one PR, or split — with the touched top-level dirs as natural split lines. Purely advisory: never gates, never mutates git.
 
 ## How it works
 
@@ -132,6 +133,7 @@ Cursor / Windsurf use the same commands with a `/` prefix: `/capture`, `/task`,
 | `prjct sync` | Re-index files, git co-change, imports; refresh project analysis. |
 | `prjct regen` | Full rebuild of the Obsidian vault snapshot from SQLite. |
 | `prjct suggest` | Smart recommendations based on current project state. |
+| `prjct review-risk` | Advisory change-size + delivery-geometry signal for the branch (read-only; never gates, never splits). |
 | `prjct seed <add\|list>` | Manage packs (persona, memory types, workflow slots). |
 
 ## Personas & Packs
@@ -205,6 +207,7 @@ prjct watch              Auto-sync on file changes
 prjct doctor             Check system health
 prjct hooks <install|uninstall|status>  Git hooks for auto-sync
 prjct context <files|signatures|imports|recent|summary>  Smart context filters
+prjct review-risk        Advisory change-size + delivery-geometry hint (read-only)
 prjct workflow ["config"]  Configure hooks via natural language
 prjct stop / restart     Background daemon control
 prjct login / logout / auth   Cloud sync authentication