npm - proagents - Versions diffs - 1.6.16 → 1.6.18 - Mend

proagents 1.6.16 → 1.6.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (170) hide show

package/.claude/settings.local.json +169 -0
package/COMMANDS.md +595 -0
package/README.md +22 -64
package/bin/proagents.js +0 -2
package/lib/commands/init.js +4 -174
package/package.json +2 -7
package/.proagents/ai-models/README.md +0 -141
package/.proagents/ai-models/cost-management.md +0 -362
package/.proagents/ai-models/fallbacks.md +0 -342
package/.proagents/ai-models/model-config.md +0 -318
package/.proagents/ai-models/task-routing.md +0 -503
package/.proagents/ai-training/README.md +0 -155
package/.proagents/ai-training/continuous-learning.md +0 -413
package/.proagents/ai-training/domain-knowledge.md +0 -378
package/.proagents/ai-training/pattern-learning.md +0 -455
package/.proagents/ai-training/training-data.md +0 -337
package/.proagents/ai-training/user-preferences.md +0 -346
package/.proagents/approval-workflows/README.md +0 -146
package/.proagents/approval-workflows/approval-config.md +0 -332
package/.proagents/approval-workflows/approval-stages.md +0 -503
package/.proagents/approval-workflows/emergency-bypass.md +0 -351
package/.proagents/approval-workflows/examples.md +0 -859
package/.proagents/approval-workflows/notifications.md +0 -320
package/.proagents/compliance/README.md +0 -206
package/.proagents/compliance/access-control.md +0 -310
package/.proagents/compliance/audit-logging.md +0 -444
package/.proagents/compliance/compliance-frameworks.md +0 -429
package/.proagents/compliance/reports.md +0 -491
package/.proagents/compliance/retention-policies.md +0 -454
package/.proagents/config-versioning/README.md +0 -120
package/.proagents/config-versioning/changelog.md +0 -300
package/.proagents/config-versioning/rollback.md +0 -283
package/.proagents/config-versioning/versioning.md +0 -330
package/.proagents/contract-testing/README.md +0 -223
package/.proagents/contract-testing/contract-testing.md +0 -614
package/.proagents/contract-testing/pact-integration.md +0 -507
package/.proagents/contract-testing/schema-validation.md +0 -565
package/.proagents/dependency-management/README.md +0 -140
package/.proagents/dependency-management/automation.md +0 -363
package/.proagents/dependency-management/compatibility.md +0 -319
package/.proagents/dependency-management/security-scanning.md +0 -413
package/.proagents/dependency-management/update-policies.md +0 -374
package/.proagents/disaster-recovery/README.md +0 -247
package/.proagents/disaster-recovery/automation.md +0 -366
package/.proagents/disaster-recovery/backup-recovery.md +0 -571
package/.proagents/disaster-recovery/incident-response.md +0 -565
package/.proagents/disaster-recovery/rollback-procedures.md +0 -499
package/.proagents/disaster-recovery/runbooks.md +0 -603
package/.proagents/disaster-recovery/scenarios.md +0 -892
package/.proagents/disaster-recovery/testing.md +0 -438
package/.proagents/environments/README.md +0 -244
package/.proagents/environments/configuration.md +0 -437
package/.proagents/environments/promotion.md +0 -434
package/.proagents/environments/setup.md +0 -420
package/.proagents/examples/README.md +0 -55
package/.proagents/examples/backend-nodejs/README.md +0 -188
package/.proagents/examples/backend-nodejs/complete-conversation.md +0 -601
package/.proagents/examples/backend-nodejs/proagents.config.yaml +0 -415
package/.proagents/examples/backend-nodejs/workflow-example.md +0 -909
package/.proagents/examples/fullstack-nextjs/README.md +0 -155
package/.proagents/examples/fullstack-nextjs/complete-conversation.md +0 -604
package/.proagents/examples/fullstack-nextjs/proagents.config.yaml +0 -287
package/.proagents/examples/fullstack-nextjs/workflow-example.md +0 -553
package/.proagents/examples/mobile-react-native/README.md +0 -171
package/.proagents/examples/mobile-react-native/complete-conversation.md +0 -825
package/.proagents/examples/mobile-react-native/proagents.config.yaml +0 -330
package/.proagents/examples/mobile-react-native/workflow-example.md +0 -723
package/.proagents/examples/web-frontend-react/README.md +0 -125
package/.proagents/examples/web-frontend-react/complete-conversation.md +0 -556
package/.proagents/examples/web-frontend-react/proagents.config.yaml +0 -183
package/.proagents/examples/web-frontend-react/workflow-example.md +0 -603
package/.proagents/existing-projects/README.md +0 -65
package/.proagents/existing-projects/challenges.md +0 -861
package/.proagents/existing-projects/coexistence-mode.md +0 -483
package/.proagents/existing-projects/compatibility-assessment.md +0 -541
package/.proagents/existing-projects/gradual-adoption.md +0 -515
package/.proagents/existing-projects/migration-strategies.md +0 -788
package/.proagents/existing-projects/pattern-reconciliation.md +0 -489
package/.proagents/existing-projects/team-onboarding.md +0 -617
package/.proagents/existing-projects/technical-debt-handling.md +0 -644
package/.proagents/feature-flags/README.md +0 -263
package/.proagents/feature-flags/ab-testing.md +0 -413
package/.proagents/feature-flags/configuration.md +0 -420
package/.proagents/feature-flags/kill-switches.md +0 -444
package/.proagents/feature-flags/rollout-strategies.md +0 -392
package/.proagents/history.log +0 -12
package/.proagents/i18n/README.md +0 -133
package/.proagents/i18n/extraction.md +0 -433
package/.proagents/i18n/tms-integration.md +0 -332
package/.proagents/i18n/translation-workflow.md +0 -413
package/.proagents/i18n/validation.md +0 -355
package/.proagents/logging/README.md +0 -276
package/.proagents/logging/aggregation.md +0 -475
package/.proagents/logging/log-levels.md +0 -376
package/.proagents/logging/sensitive-data.md +0 -423
package/.proagents/logging/structured-logging.md +0 -406
package/.proagents/metrics/README.md +0 -69
package/.proagents/metrics/code-quality-kpis.md +0 -461
package/.proagents/metrics/deployment-metrics.md +0 -517
package/.proagents/metrics/developer-productivity.md +0 -368
package/.proagents/metrics/learning-effectiveness.md +0 -478
package/.proagents/migrations/README.md +0 -77
package/.proagents/migrations/from-claude-projects.md +0 -313
package/.proagents/migrations/from-cursor-rules.md +0 -345
package/.proagents/migrations/from-custom-workflows.md +0 -410
package/.proagents/monitoring/README.md +0 -308
package/.proagents/monitoring/alerting.md +0 -449
package/.proagents/monitoring/dashboards.md +0 -454
package/.proagents/monitoring/health-checks.md +0 -436
package/.proagents/monitoring/metrics.md +0 -434
package/.proagents/multi-project/README.md +0 -170
package/.proagents/multi-project/coordinated-deploy.md +0 -510
package/.proagents/multi-project/cross-project-deps.md +0 -395
package/.proagents/multi-project/unified-changelog.md +0 -477
package/.proagents/multi-project/walkthroughs/monorepo-setup.md +0 -787
package/.proagents/multi-project/workspace-config.md +0 -408
package/.proagents/notifications/README.md +0 -151
package/.proagents/notifications/channels.md +0 -457
package/.proagents/notifications/preferences.md +0 -415
package/.proagents/notifications/routing.md +0 -449
package/.proagents/notifications/scheduling.md +0 -425
package/.proagents/notifications/templates.md +0 -446
package/.proagents/offline-mode/README.md +0 -145
package/.proagents/offline-mode/caching.md +0 -344
package/.proagents/offline-mode/offline-operations.md +0 -312
package/.proagents/offline-mode/queue-specifications.md +0 -679
package/.proagents/offline-mode/sync.md +0 -475
package/.proagents/parallel-features/README.md +0 -85
package/.proagents/parallel-features/conflict-detection.md +0 -226
package/.proagents/parallel-features/dependency-management.md +0 -392
package/.proagents/parallel-features/merge-coordination.md +0 -506
package/.proagents/parallel-features/tracking-system.md +0 -416
package/.proagents/performance/README.md +0 -59
package/.proagents/performance/bundle-analysis.md +0 -375
package/.proagents/performance/load-testing.md +0 -563
package/.proagents/performance/runtime-metrics.md +0 -489
package/.proagents/performance/web-vitals.md +0 -425
package/.proagents/plugins/README.md +0 -139
package/.proagents/plugins/creating-plugins.md +0 -504
package/.proagents/plugins/plugin-api.md +0 -467
package/.proagents/plugins/plugin-registry.md +0 -276
package/.proagents/reporting/README.md +0 -158
package/.proagents/reporting/dashboards.md +0 -366
package/.proagents/reporting/exports.md +0 -524
package/.proagents/reporting/quality-metrics.md +0 -385
package/.proagents/reporting/templates/README.md +0 -56
package/.proagents/reporting/templates/dashboard-config.json +0 -187
package/.proagents/reporting/templates/metrics-queries.md +0 -427
package/.proagents/reporting/templates/react-dashboard.tsx +0 -544
package/.proagents/reporting/templates/widgets.md +0 -451
package/.proagents/reporting/velocity-metrics.md +0 -340
package/.proagents/reverse-engineering/README.md +0 -151
package/.proagents/reverse-engineering/architecture-extraction.md +0 -325
package/.proagents/reverse-engineering/code-analysis.md +0 -377
package/.proagents/reverse-engineering/dependency-mapping.md +0 -567
package/.proagents/reverse-engineering/diagram-generation.md +0 -586
package/.proagents/reverse-engineering/documentation-generation.md +0 -468
package/.proagents/reverse-engineering/pattern-detection.md +0 -569
package/.proagents/reverse-engineering/quality-assessment.md +0 -733
package/.proagents/secrets/README.md +0 -278
package/.proagents/secrets/access-control.md +0 -443
package/.proagents/secrets/rotation.md +0 -403
package/.proagents/secrets/scanning.md +0 -487
package/.proagents/secrets/storage.md +0 -394
package/.proagents/webhooks/README.md +0 -126
package/.proagents/webhooks/endpoints.md +0 -298
package/.proagents/webhooks/events.md +0 -316
package/.proagents/webhooks/payloads.md +0 -325
package/.proagents/webhooks/reliability.md +0 -363
package/.proagents/webhooks/security.md +0 -380

package/.proagents/webhooks/security.md DELETED Viewed

@@ -1,380 +0,0 @@
-# Webhook Security
-Authentication, verification, and security best practices.
----
-## Signature Verification
-### HMAC Signatures
-ProAgents signs webhook payloads using HMAC-SHA256:
-```yaml
-webhooks:
-  endpoints:
-    - name: "secure-webhook"
-      url: "https://api.example.com/webhooks"
-      signature:
-        enabled: true
-        algorithm: "sha256"
-        secret_env: "WEBHOOK_SECRET"
-        header: "X-ProAgents-Signature"
-```
-### Signature Header Format
-```
-X-ProAgents-Signature: sha256=a1b2c3d4e5f6...
-```
-### Verification Examples
-**Node.js:**
-```javascript
-const crypto = require('crypto');
-function verifyWebhook(payload, signature, secret) {
-  const expectedSignature = 'sha256=' +
-    crypto.createHmac('sha256', secret)
-      .update(payload, 'utf8')
-      .digest('hex');
-  return crypto.timingSafeEqual(
-    Buffer.from(signature),
-    Buffer.from(expectedSignature)
-  );
-}
-// Express middleware
-app.post('/webhook', express.raw({type: 'application/json'}), (req, res) => {
-  const signature = req.headers['x-proagents-signature'];
-  const payload = req.body.toString();
-  if (!verifyWebhook(payload, signature, process.env.WEBHOOK_SECRET)) {
-    return res.status(401).send('Invalid signature');
-  }
-  // Process webhook
-  const event = JSON.parse(payload);
-  // ...
-});
-```
-**Python:**
-```python
-import hmac
-import hashlib
-def verify_webhook(payload: bytes, signature: str, secret: str) -> bool:
-    expected = 'sha256=' + hmac.new(
-        secret.encode(),
-        payload,
-        hashlib.sha256
-    ).hexdigest()
-    return hmac.compare_digest(signature, expected)
-# Flask example
-@app.route('/webhook', methods=['POST'])
-def webhook():
-    signature = request.headers.get('X-ProAgents-Signature')
-    payload = request.get_data()
-    if not verify_webhook(payload, signature, os.environ['WEBHOOK_SECRET']):
-        abort(401)
-    event = request.get_json()
-    # Process webhook
-```
-**Go:**
-```go
-import (
-    "crypto/hmac"
-    "crypto/sha256"
-    "encoding/hex"
-)
-func verifyWebhook(payload []byte, signature, secret string) bool {
-    mac := hmac.New(sha256.New, []byte(secret))
-    mac.Write(payload)
-    expected := "sha256=" + hex.EncodeToString(mac.Sum(nil))
-    return hmac.Equal([]byte(signature), []byte(expected))
-}
-```
----
-## Timestamp Validation
-### Prevent Replay Attacks
-```yaml
-webhooks:
-  endpoints:
-    - name: "replay-protected"
-      url: "https://api.example.com/webhooks"
-      security:
-        include_timestamp: true
-        timestamp_header: "X-ProAgents-Timestamp"
-        max_age: 300  # 5 minutes
-```
-**Validation Example:**
-```javascript
-function validateTimestamp(timestampHeader, maxAgeSeconds = 300) {
-  const timestamp = parseInt(timestampHeader, 10);
-  const now = Math.floor(Date.now() / 1000);
-  const age = now - timestamp;
-  if (age > maxAgeSeconds) {
-    throw new Error('Webhook timestamp too old');
-  }
-  if (age < -60) {
-    throw new Error('Webhook timestamp in future');
-  }
-  return true;
-}
-```
-### Signed Timestamp
-```
-X-ProAgents-Signature: sha256=<signature>
-X-ProAgents-Timestamp: 1705329000
-Signature computed over: timestamp.payload
-```
----
-## IP Allowlisting
-### Configure Allowed IPs
-```yaml
-webhooks:
-  security:
-    ip_allowlist:
-      enabled: true
-      # ProAgents IP ranges (example)
-      ranges:
-        - "192.168.1.0/24"
-        - "10.0.0.0/8"
-      # Or fetch from endpoint
-      dynamic_list:
-        url: "https://proagents.dev/api/webhook-ips"
-        refresh: "1h"
-```
-### Firewall Configuration
-```bash
-# Example iptables rules
-iptables -A INPUT -p tcp --dport 443 -s 192.168.1.0/24 -j ACCEPT
-iptables -A INPUT -p tcp --dport 443 -j DROP
-```
----
-## TLS Requirements
-### Enforce HTTPS
-```yaml
-webhooks:
-  security:
-    tls:
-      required: true
-      min_version: "1.2"
-      verify_certificate: true
-```
-### Certificate Pinning
-```yaml
-webhooks:
-  endpoints:
-    - name: "pinned-webhook"
-      url: "https://api.example.com/webhooks"
-      tls:
-        pin_certificates: true
-        pins:
-          - "sha256/BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB="
-```
----
-## Authentication Methods
-### Bearer Token
-```yaml
-webhooks:
-  endpoints:
-    - name: "bearer-auth"
-      url: "https://api.example.com/webhooks"
-      auth:
-        type: "bearer"
-        token_env: "WEBHOOK_TOKEN"
-```
-**Request:**
-```
-POST /webhooks HTTP/1.1
-Authorization: Bearer <token>
-```
-### API Key
-```yaml
-webhooks:
-  endpoints:
-    - name: "api-key-auth"
-      url: "https://api.example.com/webhooks"
-      auth:
-        type: "api_key"
-        key_env: "WEBHOOK_API_KEY"
-        header: "X-API-Key"
-```
-### Mutual TLS (mTLS)
-```yaml
-webhooks:
-  endpoints:
-    - name: "mtls-webhook"
-      url: "https://api.example.com/webhooks"
-      auth:
-        type: "mtls"
-        client_cert: "/path/to/client.crt"
-        client_key: "/path/to/client.key"
-        ca_cert: "/path/to/ca.crt"
-```
----
-## Secret Management
-### Environment Variables
-```yaml
-webhooks:
-  endpoints:
-    - name: "secure-webhook"
-      url: "${WEBHOOK_URL}"
-      auth:
-        type: "bearer"
-        token_env: "WEBHOOK_TOKEN"
-      signature:
-        secret_env: "WEBHOOK_SECRET"
-```
-### Secret Rotation
-```yaml
-webhooks:
-  secrets:
-    rotation:
-      enabled: true
-      interval: "30d"
-      overlap_period: "24h"
-    # Support multiple secrets during rotation
-    active_secrets:
-      - env: "WEBHOOK_SECRET"
-      - env: "WEBHOOK_SECRET_OLD"
-```
-**Rotation Process:**
-```
-1. Generate new secret
-2. Add new secret to config (WEBHOOK_SECRET_NEW)
-3. Update receiving endpoint to accept both
-4. Make new secret primary (WEBHOOK_SECRET)
-5. Wait overlap period
-6. Remove old secret
-```
----
-## Audit Logging
-### Security Events
-```yaml
-webhooks:
-  security:
-    audit:
-      enabled: true
-      log_level: "info"
-      events:
-        - "signature_verification_failed"
-        - "authentication_failed"
-        - "ip_blocked"
-        - "timestamp_expired"
-        - "delivery_success"
-        - "delivery_failed"
-```
-### Audit Log Format
-```json
-{
-  "timestamp": "2024-01-15T14:30:00Z",
-  "event": "signature_verification_failed",
-  "webhook_id": "evt_abc123",
-  "endpoint": "secure-webhook",
-  "url": "https://api.example.com/webhooks",
-  "ip_address": "192.168.1.100",
-  "reason": "Invalid HMAC signature",
-  "request_id": "req_xyz789"
-}
-```
----
-## Security Checklist
-### Sending Webhooks
-- [ ] Use HTTPS only
-- [ ] Sign all payloads with HMAC
-- [ ] Include timestamps
-- [ ] Use strong secrets (32+ bytes)
-- [ ] Rotate secrets regularly
-- [ ] Log all deliveries
-### Receiving Webhooks
-- [ ] Verify signatures before processing
-- [ ] Validate timestamps
-- [ ] Use IP allowlisting if possible
-- [ ] Process webhooks idempotently
-- [ ] Respond quickly, process async
-- [ ] Log all received webhooks
-- [ ] Handle failures gracefully
----
-## Commands
-```bash
-# Generate webhook secret
-proagents webhooks secret generate
-# Rotate secrets
-proagents webhooks secret rotate
-# Test signature verification
-proagents webhooks verify --signature <sig> --payload <file>
-# View security audit log
-proagents webhooks audit --last 24h
-```