npm - proagents - Versions diffs - 1.6.17 → 1.6.19 - Mend

proagents 1.6.17 → 1.6.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (185) hide show

package/.claude/settings.local.json +169 -0
package/.proagents/AGENTS.md +2 -0
package/.proagents/AI_INSTRUCTIONS.md +13 -0
package/.proagents/ANTIGRAVITY.md +2 -0
package/.proagents/BOLT.md +2 -0
package/.proagents/CHATGPT.md +2 -0
package/.proagents/CLAUDE.md +2 -0
package/.proagents/GEMINI.md +2 -0
package/.proagents/GROQ.md +2 -0
package/.proagents/KIRO.md +2 -0
package/.proagents/LOVABLE.md +2 -0
package/.proagents/PROAGENTS.md +2 -0
package/.proagents/REPLIT.md +2 -0
package/.proagents/prompts/00-project-setup.md +878 -0
package/.proagents/prompts/04-planning.md +38 -0
package/.proagents/prompts/12-rnd.md +957 -0
package/.proagents/workflow-modes/entry-modes.md +27 -0
package/.proagents/worklog/_context.template.md +47 -0
package/COMMANDS.md +654 -0
package/README.md +16 -24
package/package.json +2 -7
package/.proagents/ai-models/README.md +0 -141
package/.proagents/ai-models/cost-management.md +0 -362
package/.proagents/ai-models/fallbacks.md +0 -342
package/.proagents/ai-models/model-config.md +0 -318
package/.proagents/ai-models/task-routing.md +0 -503
package/.proagents/ai-training/README.md +0 -155
package/.proagents/ai-training/continuous-learning.md +0 -413
package/.proagents/ai-training/domain-knowledge.md +0 -378
package/.proagents/ai-training/pattern-learning.md +0 -455
package/.proagents/ai-training/training-data.md +0 -337
package/.proagents/ai-training/user-preferences.md +0 -346
package/.proagents/approval-workflows/README.md +0 -146
package/.proagents/approval-workflows/approval-config.md +0 -332
package/.proagents/approval-workflows/approval-stages.md +0 -503
package/.proagents/approval-workflows/emergency-bypass.md +0 -351
package/.proagents/approval-workflows/examples.md +0 -859
package/.proagents/approval-workflows/notifications.md +0 -320
package/.proagents/compliance/README.md +0 -206
package/.proagents/compliance/access-control.md +0 -310
package/.proagents/compliance/audit-logging.md +0 -444
package/.proagents/compliance/compliance-frameworks.md +0 -429
package/.proagents/compliance/reports.md +0 -491
package/.proagents/compliance/retention-policies.md +0 -454
package/.proagents/config-versioning/README.md +0 -120
package/.proagents/config-versioning/changelog.md +0 -300
package/.proagents/config-versioning/rollback.md +0 -283
package/.proagents/config-versioning/versioning.md +0 -330
package/.proagents/contract-testing/README.md +0 -223
package/.proagents/contract-testing/contract-testing.md +0 -614
package/.proagents/contract-testing/pact-integration.md +0 -507
package/.proagents/contract-testing/schema-validation.md +0 -565
package/.proagents/dependency-management/README.md +0 -140
package/.proagents/dependency-management/automation.md +0 -363
package/.proagents/dependency-management/compatibility.md +0 -319
package/.proagents/dependency-management/security-scanning.md +0 -413
package/.proagents/dependency-management/update-policies.md +0 -374
package/.proagents/disaster-recovery/README.md +0 -247
package/.proagents/disaster-recovery/automation.md +0 -366
package/.proagents/disaster-recovery/backup-recovery.md +0 -571
package/.proagents/disaster-recovery/incident-response.md +0 -565
package/.proagents/disaster-recovery/rollback-procedures.md +0 -499
package/.proagents/disaster-recovery/runbooks.md +0 -603
package/.proagents/disaster-recovery/scenarios.md +0 -892
package/.proagents/disaster-recovery/testing.md +0 -438
package/.proagents/environments/README.md +0 -244
package/.proagents/environments/configuration.md +0 -437
package/.proagents/environments/promotion.md +0 -434
package/.proagents/environments/setup.md +0 -420
package/.proagents/examples/README.md +0 -55
package/.proagents/examples/backend-nodejs/README.md +0 -188
package/.proagents/examples/backend-nodejs/complete-conversation.md +0 -601
package/.proagents/examples/backend-nodejs/proagents.config.yaml +0 -415
package/.proagents/examples/backend-nodejs/workflow-example.md +0 -909
package/.proagents/examples/fullstack-nextjs/README.md +0 -155
package/.proagents/examples/fullstack-nextjs/complete-conversation.md +0 -604
package/.proagents/examples/fullstack-nextjs/proagents.config.yaml +0 -287
package/.proagents/examples/fullstack-nextjs/workflow-example.md +0 -553
package/.proagents/examples/mobile-react-native/README.md +0 -171
package/.proagents/examples/mobile-react-native/complete-conversation.md +0 -825
package/.proagents/examples/mobile-react-native/proagents.config.yaml +0 -330
package/.proagents/examples/mobile-react-native/workflow-example.md +0 -723
package/.proagents/examples/web-frontend-react/README.md +0 -125
package/.proagents/examples/web-frontend-react/complete-conversation.md +0 -556
package/.proagents/examples/web-frontend-react/proagents.config.yaml +0 -183
package/.proagents/examples/web-frontend-react/workflow-example.md +0 -603
package/.proagents/existing-projects/README.md +0 -65
package/.proagents/existing-projects/challenges.md +0 -861
package/.proagents/existing-projects/coexistence-mode.md +0 -483
package/.proagents/existing-projects/compatibility-assessment.md +0 -541
package/.proagents/existing-projects/gradual-adoption.md +0 -515
package/.proagents/existing-projects/migration-strategies.md +0 -788
package/.proagents/existing-projects/pattern-reconciliation.md +0 -489
package/.proagents/existing-projects/team-onboarding.md +0 -617
package/.proagents/existing-projects/technical-debt-handling.md +0 -644
package/.proagents/feature-flags/README.md +0 -263
package/.proagents/feature-flags/ab-testing.md +0 -413
package/.proagents/feature-flags/configuration.md +0 -420
package/.proagents/feature-flags/kill-switches.md +0 -444
package/.proagents/feature-flags/rollout-strategies.md +0 -392
package/.proagents/history.log +0 -12
package/.proagents/i18n/README.md +0 -133
package/.proagents/i18n/extraction.md +0 -433
package/.proagents/i18n/tms-integration.md +0 -332
package/.proagents/i18n/translation-workflow.md +0 -413
package/.proagents/i18n/validation.md +0 -355
package/.proagents/logging/README.md +0 -276
package/.proagents/logging/aggregation.md +0 -475
package/.proagents/logging/log-levels.md +0 -376
package/.proagents/logging/sensitive-data.md +0 -423
package/.proagents/logging/structured-logging.md +0 -406
package/.proagents/metrics/README.md +0 -69
package/.proagents/metrics/code-quality-kpis.md +0 -461
package/.proagents/metrics/deployment-metrics.md +0 -517
package/.proagents/metrics/developer-productivity.md +0 -368
package/.proagents/metrics/learning-effectiveness.md +0 -478
package/.proagents/migrations/README.md +0 -77
package/.proagents/migrations/from-claude-projects.md +0 -313
package/.proagents/migrations/from-cursor-rules.md +0 -345
package/.proagents/migrations/from-custom-workflows.md +0 -410
package/.proagents/monitoring/README.md +0 -308
package/.proagents/monitoring/alerting.md +0 -449
package/.proagents/monitoring/dashboards.md +0 -454
package/.proagents/monitoring/health-checks.md +0 -436
package/.proagents/monitoring/metrics.md +0 -434
package/.proagents/multi-project/README.md +0 -170
package/.proagents/multi-project/coordinated-deploy.md +0 -510
package/.proagents/multi-project/cross-project-deps.md +0 -395
package/.proagents/multi-project/unified-changelog.md +0 -477
package/.proagents/multi-project/walkthroughs/monorepo-setup.md +0 -787
package/.proagents/multi-project/workspace-config.md +0 -408
package/.proagents/notifications/README.md +0 -151
package/.proagents/notifications/channels.md +0 -457
package/.proagents/notifications/preferences.md +0 -415
package/.proagents/notifications/routing.md +0 -449
package/.proagents/notifications/scheduling.md +0 -425
package/.proagents/notifications/templates.md +0 -446
package/.proagents/offline-mode/README.md +0 -145
package/.proagents/offline-mode/caching.md +0 -344
package/.proagents/offline-mode/offline-operations.md +0 -312
package/.proagents/offline-mode/queue-specifications.md +0 -679
package/.proagents/offline-mode/sync.md +0 -475
package/.proagents/parallel-features/README.md +0 -85
package/.proagents/parallel-features/conflict-detection.md +0 -226
package/.proagents/parallel-features/dependency-management.md +0 -392
package/.proagents/parallel-features/merge-coordination.md +0 -506
package/.proagents/parallel-features/tracking-system.md +0 -416
package/.proagents/performance/README.md +0 -59
package/.proagents/performance/bundle-analysis.md +0 -375
package/.proagents/performance/load-testing.md +0 -563
package/.proagents/performance/runtime-metrics.md +0 -489
package/.proagents/performance/web-vitals.md +0 -425
package/.proagents/plugins/README.md +0 -139
package/.proagents/plugins/creating-plugins.md +0 -504
package/.proagents/plugins/plugin-api.md +0 -467
package/.proagents/plugins/plugin-registry.md +0 -276
package/.proagents/reporting/README.md +0 -158
package/.proagents/reporting/dashboards.md +0 -366
package/.proagents/reporting/exports.md +0 -524
package/.proagents/reporting/quality-metrics.md +0 -385
package/.proagents/reporting/templates/README.md +0 -56
package/.proagents/reporting/templates/dashboard-config.json +0 -187
package/.proagents/reporting/templates/metrics-queries.md +0 -427
package/.proagents/reporting/templates/react-dashboard.tsx +0 -544
package/.proagents/reporting/templates/widgets.md +0 -451
package/.proagents/reporting/velocity-metrics.md +0 -340
package/.proagents/reverse-engineering/README.md +0 -151
package/.proagents/reverse-engineering/architecture-extraction.md +0 -325
package/.proagents/reverse-engineering/code-analysis.md +0 -377
package/.proagents/reverse-engineering/dependency-mapping.md +0 -567
package/.proagents/reverse-engineering/diagram-generation.md +0 -586
package/.proagents/reverse-engineering/documentation-generation.md +0 -468
package/.proagents/reverse-engineering/pattern-detection.md +0 -569
package/.proagents/reverse-engineering/quality-assessment.md +0 -733
package/.proagents/secrets/README.md +0 -278
package/.proagents/secrets/access-control.md +0 -443
package/.proagents/secrets/rotation.md +0 -403
package/.proagents/secrets/scanning.md +0 -487
package/.proagents/secrets/storage.md +0 -394
package/.proagents/webhooks/README.md +0 -126
package/.proagents/webhooks/endpoints.md +0 -298
package/.proagents/webhooks/events.md +0 -316
package/.proagents/webhooks/payloads.md +0 -325
package/.proagents/webhooks/reliability.md +0 -363
package/.proagents/webhooks/security.md +0 -380

package/.proagents/dependency-management/security-scanning.md DELETED Viewed

@@ -1,413 +0,0 @@
-# Security Scanning
-Automated vulnerability detection and remediation for dependencies.
----
-## Overview
-```
-┌─────────────────────────────────────────────────────────────┐
-│                  Security Scanning Pipeline                  │
-├─────────────────────────────────────────────────────────────┤
-│                                                             │
-│  ┌─────────┐   ┌─────────┐   ┌─────────┐   ┌─────────┐    │
-│  │  Scan   │──►│Evaluate │──►│ Notify  │──►│Remediate│    │
-│  └─────────┘   └─────────┘   └─────────┘   └─────────┘    │
-│       │             │             │             │          │
-│       ▼             ▼             ▼             ▼          │
-│  NPM Audit      Severity      Alerts       Auto-fix or    │
-│  Snyk           Assessment    Tickets      PR for review  │
-│  OWASP          Risk Score                                 │
-│                                                             │
-└─────────────────────────────────────────────────────────────┘
-```
----
-## Scanning Configuration
-### Enable Scanning
-```yaml
-dependencies:
-  security:
-    enabled: true
-    # Scan schedule
-    schedule: "0 */6 * * *"  # Every 6 hours
-    # Scan on these events
-    scan_on:
-      - "push"
-      - "pr_open"
-      - "dependency_update"
-      - "schedule"
-    # Scanners to use
-    scanners:
-      npm_audit: true
-      snyk: true
-      owasp_dependency_check: false
-      github_advisories: true
-```
-### Scanner Configuration
-```yaml
-dependencies:
-  security:
-    scanners:
-      # NPM Audit (built-in)
-      npm_audit:
-        enabled: true
-        production_only: true  # Skip devDependencies
-      # Snyk (requires API key)
-      snyk:
-        enabled: true
-        api_key_env: "SNYK_API_KEY"
-        severity_threshold: "medium"
-        fail_on: "high"
-      # GitHub Security Advisories
-      github_advisories:
-        enabled: true
-        # Uses GITHUB_TOKEN automatically
-      # OWASP Dependency Check
-      owasp:
-        enabled: false
-        report_format: "HTML"
-```
----
-## Severity Levels
-### Severity Classification
-| Level | Description | Action |
-|-------|-------------|--------|
-| **Critical** | Actively exploited, RCE possible | Immediate fix required |
-| **High** | Serious vulnerability | Fix within 24 hours |
-| **Medium** | Moderate risk | Fix within 1 week |
-| **Low** | Minor risk | Fix in next release |
-### Actions by Severity
-```yaml
-dependencies:
-  security:
-    actions:
-      critical:
-        block_deploy: true
-        auto_fix: true
-        notify:
-          - "slack:#security-alerts"
-          - "pagerduty:security-oncall"
-        create_ticket: true
-        ticket_priority: "P1"
-      high:
-        block_deploy: true
-        auto_fix: true
-        notify:
-          - "slack:#security-alerts"
-        create_ticket: true
-        ticket_priority: "P2"
-      medium:
-        block_deploy: false
-        auto_fix: false
-        create_pr: true
-        notify:
-          - "slack:#dependencies"
-      low:
-        block_deploy: false
-        auto_fix: false
-        batch: true  # Batch with regular updates
-```
----
-## Auto-Remediation
-### Automatic Fixes
-```yaml
-dependencies:
-  security:
-    auto_remediation:
-      enabled: true
-      # Auto-fix if:
-      conditions:
-        - fix_available: true
-        - breaking_change: false
-        - tests_pass: true
-      # For these severities
-      severity: ["critical", "high"]
-      # Create PR for review
-      create_pr: true
-      pr_template: |
-        ## Security Update
-        This PR fixes security vulnerabilities:
-        {{#each vulnerabilities}}
-        - **{{this.package}}**: {{this.severity}} - {{this.title}}
-          - CVE: {{this.cve}}
-          - Fixed in: {{this.fixed_version}}
-        {{/each}}
-        ### Testing
-        - [ ] Unit tests pass
-        - [ ] Integration tests pass
-        - [ ] Manual testing completed
-```
-### Remediation Strategies
-```yaml
-dependencies:
-  security:
-    remediation:
-      strategies:
-        # Try upgrade first
-        - type: "upgrade"
-          priority: 1
-          conditions:
-            - "fix_available"
-            - "semver_compatible"
-        # Try patch if upgrade breaks
-        - type: "patch"
-          priority: 2
-          conditions:
-            - "patch_available"
-        # Replace with alternative
-        - type: "replace"
-          priority: 3
-          conditions:
-            - "alternative_available"
-          require_approval: true
-        # Fallback: manual intervention
-        - type: "manual"
-          priority: 4
-          notify: true
-          create_ticket: true
-```
----
-## Vulnerability Database
-### Sources
-```yaml
-dependencies:
-  security:
-    vulnerability_sources:
-      # Primary sources
-      - source: "npm_advisory"
-        enabled: true
-        update_frequency: "realtime"
-      - source: "github_advisory"
-        enabled: true
-        update_frequency: "hourly"
-      - source: "nvd"
-        enabled: true
-        update_frequency: "daily"
-      - source: "snyk"
-        enabled: true
-        update_frequency: "realtime"
-      # Custom advisory source
-      - source: "internal"
-        url: "https://security.company.com/advisories"
-        enabled: true
-```
-### Ignore Rules
-```yaml
-dependencies:
-  security:
-    ignore:
-      # Ignore specific vulnerability
-      - id: "GHSA-xxxx-xxxx-xxxx"
-        reason: "False positive, not exploitable in our context"
-        expires: "2024-06-01"
-        approved_by: "security-team"
-      # Ignore package for dev-only
-      - package: "jest"
-        scope: "devDependencies"
-        reason: "Dev-only, not in production bundle"
-      # Ignore low severity for specific package
-      - package: "lodash"
-        severity: ["low"]
-        reason: "Low impact, will update in next sprint"
-        expires: "2024-02-01"
-```
----
-## Reporting
-### Security Report
-```bash
-proagents deps audit
-# Output:
-┌─────────────────────────────────────────────────────────────┐
-│ Security Audit Report                                       │
-├─────────────────────────────────────────────────────────────┤
-│ Scanned: 245 packages                                       │
-│ Vulnerabilities Found: 4                                    │
-├─────────────────────────────────────────────────────────────┤
-│                                                             │
-│ Critical (1):                                               │
-│ ┌─────────────────────────────────────────────────────────┐│
-│ │ lodash < 4.17.21                                        ││
-│ │ Prototype Pollution                                      ││
-│ │ CVE: CVE-2021-23337                                     ││
-│ │ Fix: Upgrade to 4.17.21                                 ││
-│ │ Status: Auto-fix available                              ││
-│ └─────────────────────────────────────────────────────────┘│
-│                                                             │
-│ High (1):                                                   │
-│ ┌─────────────────────────────────────────────────────────┐│
-│ │ axios < 1.3.4                                           ││
-│ │ Server-Side Request Forgery                             ││
-│ │ CVE: CVE-2023-45857                                     ││
-│ │ Fix: Upgrade to 1.3.4                                   ││
-│ └─────────────────────────────────────────────────────────┘│
-│                                                             │
-│ Medium (2):                                                 │
-│ • json5 < 2.2.2 - Prototype Pollution                      │
-│ • minimatch < 3.0.5 - ReDoS                                │
-│                                                             │
-├─────────────────────────────────────────────────────────────┤
-│ Actions:                                                    │
-│ • Run 'proagents deps fix' to auto-fix 3 vulnerabilities  │
-│ • 1 vulnerability requires manual review                   │
-└─────────────────────────────────────────────────────────────┘
-```
-### Compliance Report
-```bash
-proagents deps audit --compliance
-# Generates report for:
-# - SOC 2 compliance
-# - OWASP Top 10 coverage
-# - License compliance
-# - Supply chain security
-```
----
-## CI/CD Integration
-### GitHub Actions
-```yaml
-# .github/workflows/security.yml
-name: Security Scan
-on:
-  push:
-    branches: [main]
-  pull_request:
-  schedule:
-    - cron: '0 6 * * *'
-jobs:
-  security:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - name: Security Scan
-        run: proagents deps audit --ci
-      - name: Upload Report
-        uses: actions/upload-artifact@v3
-        with:
-          name: security-report
-          path: security-report.json
-```
-### Block Merge on Vulnerabilities
-```yaml
-dependencies:
-  security:
-    ci:
-      # Block PR merge if vulnerabilities found
-      block_on:
-        severity: ["critical", "high"]
-      # Allow with exceptions
-      allow_with_exception:
-        severity: ["medium", "low"]
-        require_approval: true
-        approvers: ["@security-team"]
-```
----
-## Notifications
-### Alert Configuration
-```yaml
-dependencies:
-  security:
-    notifications:
-      # New vulnerability detected
-      on_vulnerability:
-        channels:
-          critical: ["pagerduty", "slack:#security"]
-          high: ["slack:#security"]
-          medium: ["slack:#dependencies"]
-        include:
-          - severity
-          - affected_packages
-          - fix_available
-          - cve_details
-      # Auto-fix applied
-      on_auto_fix:
-        channels: ["slack:#dependencies"]
-      # Manual action required
-      on_manual_required:
-        channels: ["slack:#security", "email:security@company.com"]
-```
----
-## Best Practices
-1. **Scan Frequently**: At least daily for production dependencies
-2. **Act on Critical/High**: Fix within SLA
-3. **Review Ignores**: Periodically review ignored vulnerabilities
-4. **Monitor Supply Chain**: Watch for compromised packages
-5. **Keep Scanners Updated**: Use latest vulnerability databases
-6. **Document Exceptions**: Always document why vulnerabilities are ignored
-7. **Integrate in CI/CD**: Block insecure code from merging