pumuki-ast-hooks 5.3.16 → 5.3.18

package/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js

@@ -8,9 +8,16 @@ const { TokenManager } = require('../utils/token-manager');
 const { toErrorMessage } = require('../utils/error-utils');
 const fs = require('fs');
 const path = require('path');
+const env = require('../../config/env');
+
+// AuditLogger import for logging critical operations
+const AuditLogger = require('../services/logging/AuditLogger');
+
+// Import recordMetric for prometheus metrics
+const { recordMetric } = require('../telemetry/metrics-logger');
 
 function resolveAuditTmpDir() {
-  const configured = (process.env.AUDIT_TMP || '').trim();
+  const configured = (env.get('AUDIT_TMP', '') || '').trim();
   if (configured.length > 0) {
     return path.isAbsolute(configured) ? configured : path.join(process.cwd(), configured);
   }
@@ -22,13 +29,37 @@ function resolveAuditTmpDir() {
  * Called by audit.sh after AST analysis completes
  */
 async function runIntelligentAudit() {
+  const auditLogger = new AuditLogger({
+    repoRoot: process.cwd(),
+    filename: path.join('.audit_tmp', 'audit.log')
+  });
+
   try {
     console.log('[Intelligent Audit] Starting severity evaluation...');
 
+    auditLogger.log({
+      action: 'audit_start',
+      category: 'system',
+      severity: 'info',
+      message: 'Intelligent audit orchestration started',
+      metadata: {
+        timestamp: new Date().toISOString(),
+        scope: env.get('AI_GATE_SCOPE', 'staging')
+      }
+    });
+
     const rawViolations = loadRawViolations();
     console.log(`[Intelligent Audit] Loaded ${rawViolations.length} violations from AST`);
 
-    const gateScope = String(process.env.AI_GATE_SCOPE || 'staging').trim().toLowerCase();
+    auditLogger.log({
+      action: 'violations_loaded',
+      category: 'data',
+      severity: 'info',
+      message: `Loaded ${rawViolations.length} violations from AST analysis`,
+      metadata: { violationCount: rawViolations.length }
+    });
+
+    const gateScope = String(env.get('AI_GATE_SCOPE', 'staging') || 'staging').trim().toLowerCase();
     const isRepoScope = gateScope === 'repo' || gateScope === 'repository';
 
     let violationsForGate = [];
@@ -76,6 +107,26 @@ async function runIntelligentAudit() {
       console.log(`[Intelligent Audit] Blocked by: ${gateResult.blockedBy} violations`);
     }
 
+    auditLogger.log({
+      action: 'quality_gate_applied',
+      category: 'security',
+      severity: gateResult.passed ? 'info' : 'warn',
+      message: `Quality gate ${gateResult.passed ? 'PASSED' : 'FAILED'}${gateResult.blockedBy ? ` - blocked by ${gateResult.blockedBy}` : ''}`,
+      metadata: {
+        passed: gateResult.passed,
+        blockedBy: gateResult.blockedBy,
+        violationCount: enhancedViolations.length
+      }
+    });
+
+    // Record prometheus metrics for gate result
+    recordMetric({
+      hook: 'quality_gate',
+      status: gateResult.passed ? 'passed' : 'failed',
+      violationCount: enhancedViolations.length,
+      blockedBy: gateResult.blockedBy || 'none'
+    });
+
     console.log('[Intelligent Audit] Generating reports...');
     const reportGenerator = new ReportGenerator();
     const reportPaths = reportGenerator.save(enhancedViolations, gateResult);
@@ -84,6 +135,25 @@ async function runIntelligentAudit() {
     console.log(`  - JSON: ${reportPaths.jsonPath}`);
     console.log(`  - Text: ${reportPaths.textPath}`);
 
+    auditLogger.log({
+      action: 'reports_generated',
+      category: 'system',
+      severity: 'info',
+      message: 'Audit reports generated and saved',
+      metadata: {
+        jsonPath: reportPaths.jsonPath,
+        textPath: reportPaths.textPath,
+        violationCount: enhancedViolations.length
+      }
+    });
+
+    // Record prometheus metrics for report generation
+    recordMetric({
+      hook: 'audit_reports',
+      status: 'generated',
+      violationCount: enhancedViolations.length
+    });
+
     const tracker = new SeverityTracker();
     tracker.record(enhancedViolations, gateResult);
 
@@ -212,21 +282,21 @@ function updateAIEvidence(violations, gateResult, tokenUsage) {
     const currentBranch = execSync('git branch --show-current', { encoding: 'utf8' }).trim();
 
     const resolveBaseBranch = () => {
-        const configured = process.env.AST_BASE_BRANCH;
-        if (configured && configured.trim().length > 0) {
-            return configured.trim();
-        }
+      const configured = env.get('AST_BASE_BRANCH', '');
+      if (configured && configured.trim().length > 0) {
+        return configured.trim();
+      }
+      try {
+        execSync('git show-ref --verify --quiet refs/heads/develop', { stdio: 'ignore' });
+        return 'develop';
+      } catch {
         try {
-            execSync('git show-ref --verify --quiet refs/heads/develop', { stdio: 'ignore' });
-            return 'develop';
+          execSync('git show-ref --verify --quiet refs/heads/main', { stdio: 'ignore' });
+          return 'main';
         } catch {
-            try {
-                execSync('git show-ref --verify --quiet refs/heads/main', { stdio: 'ignore' });
-                return 'main';
-            } catch {
-                return 'main';
-            }
+          return 'main';
         }
+      }
     };
     const baseBranch = resolveBaseBranch();
     const isProtected = ['main', 'master', baseBranch].includes(currentBranch);
@@ -234,12 +304,12 @@ function updateAIEvidence(violations, gateResult, tokenUsage) {
     const highViolations = violations.filter(v => v.severity === 'HIGH');
     const blockingViolations = [...criticalViolations, ...highViolations].slice(0, 50);
 
-    const gateScope = String(process.env.AI_GATE_SCOPE || 'staging').trim().toLowerCase();
+    const gateScope = String(env.get('AI_GATE_SCOPE', 'staging') || 'staging').trim().toLowerCase();
 
     const existingGate = evidence.ai_gate && typeof evidence.ai_gate === 'object' ? evidence.ai_gate : null;
     let preserveExistingRepoGate = false;
     if (gateScope !== 'repo' && gateScope !== 'repository' && existingGate && existingGate.scope === 'repo' && existingGate.status === 'BLOCKED') {
-      const preserveMs = Number(process.env.AI_GATE_REPO_PRESERVE_MS || 600000);
+      const preserveMs = env.getNumber('AI_GATE_REPO_PRESERVE_MS', 600000);
       const lastCheckMs = Date.parse(existingGate.last_check || '');
       if (!Number.isNaN(preserveMs) && preserveMs > 0 && !Number.isNaN(lastCheckMs)) {
         const ageMs = Date.now() - lastCheckMs;

package/scripts/hooks-system/infrastructure/telemetry/metrics-server.js

@@ -3,9 +3,22 @@
 const http = require('http');
 const fs = require('fs');
 const path = require('path');
+const env = require('../../config/env');
 
-const PORT = Number(process.env.HOOK_METRICS_PORT || 9464);
-const METRICS_FILE = path.join(process.cwd(), '.audit_tmp', 'hook-metrics.jsonl');
+// AuditLogger import for logging critical operations
+const AuditLogger = require('../services/logging/AuditLogger');
+
+// Import recordMetric for prometheus metrics
+const { recordMetric } = require('./metrics-logger');
+
+const PORT = env.getNumber('HOOK_METRICS_PORT', 9464);
+const METRICS_FILE = path.join(process.cwd(), env.get('HOOK_METRICS_FILE', '.audit_tmp/hook-metrics.jsonl'));
+
+// Initialize audit logger
+const auditLogger = new AuditLogger({
+  repoRoot: process.cwd(),
+  filename: path.join('.audit_tmp', 'metrics-server-audit.log')
+});
 
 function loadMetrics() {
   if (!fs.existsSync(METRICS_FILE)) return [];
@@ -49,13 +62,49 @@ const server = http.createServer((req, res) => {
     const body = buildPrometheusMetrics();
     res.writeHead(200, { 'Content-Type': 'text/plain' });
     res.end(body);
+
+    auditLogger.log({
+      action: 'metrics_served',
+      category: 'observability',
+      severity: 'info',
+      message: 'Prometheus metrics served successfully',
+      metadata: {
+        port: PORT,
+        metricsCount: body.split('\n').filter(line => line.trim() && !line.startsWith('#')).length,
+        endpoint: '/metrics'
+      }
+    });
     return;
   }
 
   res.writeHead(404);
   res.end();
+
+  auditLogger.log({
+    action: 'invalid_request',
+    category: 'observability',
+    severity: 'warn',
+    message: 'Invalid request to metrics server',
+    metadata: {
+      url: req.url,
+      method: req.method,
+      port: PORT
+    }
+  });
 });
 
 server.listen(PORT, () => {
   console.log(`Hook-System metrics server running on http://localhost:${PORT}/metrics`);
+
+  auditLogger.log({
+    action: 'server_started',
+    category: 'system',
+    severity: 'info',
+    message: 'Metrics server started successfully',
+    metadata: {
+      port: PORT,
+      endpoint: '/metrics',
+      metricsFile: METRICS_FILE
+    }
+  });
 });

package/scripts/hooks-system/infrastructure/validators/enforce-english-literals.js

@@ -4,8 +4,9 @@
 const fs = require('fs');
 const path = require('path');
 const { execSync } = require('child_process');
+const env = require('../../config/env');
 
-const REPO_ROOT = process.env.HOOK_GUARD_REPO_ROOT || process.cwd();
+const REPO_ROOT = env.get('HOOK_GUARD_REPO_ROOT', process.cwd());
 const CONFIG_PATH = path.join(REPO_ROOT, 'scripts', 'hooks-system', 'config', 'language-guard.json');
 const DEFAULT_IGNORED_SEGMENTS = [
     `${path.sep}node_modules${path.sep}`,
@@ -22,7 +23,7 @@ function decodeUnicode(value) {
     try {
         return JSON.parse(`"${value}"`);
     } catch (error) {
-        if (process.env.NODE_ENV === 'development' || process.env.DEBUG) {
+        if (env.isDev || env.getBool('DEBUG', false)) {
             console.debug(`[enforce-english-literals] Failed to decode Unicode value "${value}": ${error.message}`);
         }
         return value;
@@ -119,13 +120,10 @@ function analyzeFile(relativePath, config) {
 
 function collectStagedFiles() {
     try {
-        const raw = execSync('git diff --cached --name-only --diff-filter=ACMR', {
-            cwd: REPO_ROOT,
-            encoding: 'utf8'
-        });
-        return raw.split('\n').map(entry => entry.trim()).filter(Boolean);
+        const stagedFilesRaw = execSync('git diff --cached --name-only', { encoding: 'utf8' });
+        return stagedFilesRaw.split('\n').filter(Boolean).map(file => file.trim());
     } catch (error) {
-        if (process.env.NODE_ENV === 'development' || process.env.DEBUG) {
+        if (env.isDev || env.getBool('DEBUG', false)) {
             console.debug(`[enforce-english-literals] Failed to collect staged files: ${error.message}`);
         }
         return [];

package/scripts/hooks-system/infrastructure/watchdog/__tests__/.audit-reports/token-monitor.log

@@ -19,3 +19,6 @@
 {"timestamp":"2025-12-29T14:01:17.350Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":10,"tokensUsed":100000,"maxTokens":1000000,"source":"realtime","stale":false},"context":{"message":"Result level=ok percent=10% used=100000/1000000 source=realtime"}}
 {"timestamp":"2025-12-29T14:01:17.352Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"warning","percentUsed":91,"tokensUsed":910000,"maxTokens":1000000,"source":"fallback","stale":false},"context":{"message":"Result level=warning percent=91% used=910000/1000000 source=fallback"}}
 {"timestamp":"2025-12-29T14:01:17.352Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"critical","percentUsed":98,"tokensUsed":980000,"maxTokens":1000000,"source":"realtime","stale":true},"context":{"message":"Result level=critical percent=98% used=980000/1000000 source=realtime (stale)"}}
+{"timestamp":"2025-12-30T08:18:15.791Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":10,"tokensUsed":100000,"maxTokens":1000000,"source":"realtime","stale":false},"context":{"message":"Result level=ok percent=10% used=100000/1000000 source=realtime"}}
+{"timestamp":"2025-12-30T08:18:15.794Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"warning","percentUsed":91,"tokensUsed":910000,"maxTokens":1000000,"source":"fallback","stale":false},"context":{"message":"Result level=warning percent=91% used=910000/1000000 source=fallback"}}
+{"timestamp":"2025-12-30T08:18:15.794Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"critical","percentUsed":98,"tokensUsed":980000,"maxTokens":1000000,"source":"realtime","stale":true},"context":{"message":"Result level=critical percent=98% used=980000/1000000 source=realtime (stale)"}}