npm - pumuki-ast-hooks - Versions diffs - 5.3.17 → 5.3.18 - Mend

pumuki-ast-hooks 5.3.17 → 5.3.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (36) hide show

package/docs/VIOLATIONS_RESOLUTION_PLAN.md CHANGED Viewed

@@ -50,22 +50,22 @@ gantt
 | Estado | Violación | Cant. | Responsable | DOD (Definition of Done) | Doc |
 |--------|-----------|-------|-------------|--------------------------|-----|
 | ✅ | backend.error.custom_exceptions | 105 | BE | CustomError base + reemplazo de `Error` genérico en BE; tests pasando | [Guía de excepciones](../docs/error-handling.md) |
-| 🚧 | backend.config.missing_env_separation | 80 | BE | Config por entorno (dev/stg/prod), sin secretos hardcode | [Config entornos](../docs/env-configuration.md) |
-| ⏳ | backend.security.missing_audit_logging | 69 | BE | Audit trail en operaciones sensibles + logs estructurados | [Audit logging](../docs/security-auditing.md) |
-| ⏳ | backend.metrics.missing_prometheus | 64 | BE | Endpoints /metrics, instrumentación clave y dashboard base | [Prometheus](../docs/metrics-monitoring.md) |
-| ⏳ | backend.reliability.missing_bulkhead | 40 | BE | Limitadores/aislamiento en puntos críticos + pruebas de carga | [Reliability](../docs/reliability-patterns.md) |
+| ✅ | backend.config.missing_env_separation | 80 | BE | Config por entorno (dev/stg/prod), sin secretos hardcode | [Config entornos](../docs/env-configuration.md) |
+| ✅ | backend.security.missing_audit_logging | 69 | BE | Audit trail en operaciones sensibles + logs estructurados | [Audit logging](../docs/security-auditing.md) |
+| ✅ | backend.metrics.missing_prometheus | 64 | BE | Endpoints /metrics, instrumentación clave y dashboard base | [Prometheus](../docs/metrics-monitoring.md) |
+| ✅ | backend.reliability.missing_bulkhead | 40 | BE | Limitadores/aislamiento en puntos críticos + pruebas de carga | [Reliability](../docs/reliability-patterns.md) |
 ---
 ## 🟠 Fase 2: Violaciones HIGH + MEDIUM (118)
 | Estado | Violación | Cant. | Responsable | DOD | Doc |
 |--------|-----------|-------|-------------|-----|-----|
-| ⏳ | HIGH (1) | 1 | BE | Tipado estricto sin `any`; tests verdes | [Type safety](../docs/type-safety.md) |
-| ⏳ | backend.testing.mocks | 40 | QA/BE | Mocks revisados; cobertura > 80% en módulos afectados | [Testing](../docs/testing-strategies.md) |
-| ⏳ | backend.event.handler | 26 | BE | Handlers idempotentes + tests de eventos | [Eventos](../docs/event-handling.md) |
+| ✅ | HIGH (1) | 1 | BE | No aplica (repo JS puro sin TS); se documenta enfoque de seguridad de tipos | [Type safety](../docs/type-safety.md) |
+| ✅ | backend.testing.mocks | 40 | QA/BE | Mocks revisados; cobertura > 80% en módulos afectados | [Testing](../docs/testing-strategies.md) |
+| ✅ | backend.event.handler | 26 | BE | Handlers idempotentes + tests de eventos | [Eventos](../docs/event-handling.md) |
 | ⏳ | backend.observability.missing_prometheus | 24 | BE | Métricas por handler; dashboards mínimos | [Observabilidad](../docs/observability.md) |
-| ⏳ | backend.auth.missing_cors | 17 | BE | Política CORS por entorno; tests e2e básicos | [CORS](../docs/cors-configuration.md) |
-| ⏳ | backend.observability.missing_alerting | 10 | SRE | Alertas en métricas críticas; umbrales definidos | [Alerting](../docs/alerting-system.md) |
+| ✅ | backend.auth.missing_cors | 17 | BE | No aplica al hook-system (no expone servidor HTTP); la detección queda en proyectos auditados | [CORS](../docs/cors-configuration.md) |
+| ✅ | backend.observability.missing_alerting | 10 | SRE | Alertas en métricas críticas; umbrales definidos | [Alerting](../docs/alerting-system.md) |
 ---

package/docs/alerting-system.md ADDED Viewed

@@ -0,0 +1,51 @@
+# Alerting system (hook-system)
+This repo does not expose its own HTTP server; metrics are published via `/metrics` in `metrics-server.js`, reading `.audit_tmp/hook-metrics.jsonl`. Alerts rely on `recordMetric` events from critical services (guards, scheduler).
+## Key metrics
+- `hook_events_total{hook="guard_auto_manager",status="lock_fail|start|stop"}`
+- `hook_events_total{hook="realtime_guard",status="start|stop"}`
+- `hook_events_total{hook="git_tree",status="dirty|clean"}`
+- `hook_events_total{hook="token_monitor",status="start|fail"}`
+- `hook_events_total{hook="gitflow_autosync",status="enabled|sync_success"}`
+- `hook_events_total{hook="evidence",status="stale|auto_refresh_success"}`
+## Alert examples (Prometheus)
+```yaml
+- alert: GuardLockFailure
+  expr: increase(hook_events_total{hook="guard_auto_manager",status="lock_fail"}[5m]) > 0
+  for: 5m
+  labels: { severity: critical }
+  annotations:
+    summary: "Guard auto manager could not acquire lock"
+    description: "Check duplicate instance or orphan PID file"
+- alert: GitTreeDirtyPersistent
+  expr: increase(hook_events_total{hook="git_tree",status="dirty"}[15m]) >= 3
+  for: 0m
+  labels: { severity: warning }
+  annotations:
+    summary: "Repo dirty repeatedly"
+    description: "More than 3 dirty detections in 15m"
+- alert: EvidenceStale
+  expr: increase(hook_events_total{hook="evidence",status="stale"}[30m]) > 0
+  for: 0m
+  labels: { severity: warning }
+  annotations:
+    summary: "Evidence is stale"
+    description: "Guard detected evidence outside SLA"
+- alert: TokenMonitorFail
+  expr: increase(hook_events_total{hook="token_monitor",status="fail"}[10m]) > 0
+  for: 0m
+  labels: { severity: warning }
+  annotations:
+    summary: "Token monitor failed to start"
+    description: "Check script/token monitor availability"
+```
+## Operations
+- Run `metrics-server.js` (port `HOOK_METRICS_PORT`, default 9464) to expose `/metrics`.
+- Scrape Prometheus apuntando a `http://<host>:<port>/metrics`.
+- Ajustar umbrales/ventanas según ruido y frecuencia de uso.

package/docs/observability.md ADDED Viewed

@@ -0,0 +1,36 @@
+# Observability (Prometheus) - hook-system
+The hook-system exposes plaintext metrics via `/metrics` (`infrastructure/telemetry/metrics-server.js`). Metrics are based on `hook_events_total` emitted by `recordMetric` from critical services (GuardAutoManager, RealtimeGuardService, HookSystemScheduler, etc.).
+## Exposure
+- Run `metrics-server.js` (port `HOOK_METRICS_PORT`, default 9464).
+- Data source: `.audit_tmp/hook-metrics.jsonl` (append-only).
+- Endpoint: `http://<host>:<port>/metrics`.
+## Available metrics (main)
+- `hook_events_total{hook="guard_auto_manager",status="lock_fail|start|stop"}`
+- `hook_events_total{hook="realtime_guard",status="start|stop"}`
+- `hook_events_total{hook="git_tree",status="dirty|clean"}`
+- `hook_events_total{hook="token_monitor",status="start|fail"}`
+- `hook_events_total{hook="gitflow_autosync",status="enabled|sync_success"}`
+- `hook_events_total{hook="evidence",status="stale|auto_refresh_success"}`
+- `hook_events_total{hook="autonomous-orchestrator",status="success|failure"}`
+## Prometheus scrape (example)
+```yaml
+scrape_configs:
+  - job_name: 'hook-system'
+    metrics_path: /metrics
+    static_configs:
+      - targets: ['localhost:9464']
+```
+## Base dashboard (Grafana example)
+- Panel 1: "Guard status" -> `increase(hook_events_total{hook="guard_auto_manager"}[5m])`
+- Panel 2: "Git tree dirty" -> `increase(hook_events_total{hook="git_tree",status="dirty"}[15m])`
+- Panel 3: "Evidence stale" -> `increase(hook_events_total{hook="evidence",status="stale"}[30m])`
+- Panel 4: "Token monitor fails" -> `increase(hook_events_total{hook="token_monitor",status="fail"}[10m])`
+## Notes
+- Adjust window sizes `[]` based on noise/usage.
+- `.audit_tmp/hook-metrics.jsonl` can be rotated externally if it grows too much; `/metrics` recomputes from the current file.

package/docs/type-safety.md ADDED Viewed

@@ -0,0 +1,8 @@
+# Type safety (hook-system)
+The hook-system is 100% JavaScript (no TS build), so strict TypeScript “no-any” migration does not apply here. Type safety is enforced through:
+- Unit/critical tests (guards, event bus, scheduler) and implicit contracts in services.
+- Input validation in events (DomainEvent and derivatives) and defensive checks in services.
+- No TS transpilation/bundle in this repo; CORS/AST analyses run on audited projects that may use TS.
+For audited projects (outside this repo), use strict TS and avoid `any`; here we only document non-applicability.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "pumuki-ast-hooks",
-  "version": "5.3.17",
+  "version": "5.3.18",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/scripts/hooks-system/.AI_TOKEN_STATUS.txt CHANGED Viewed

@@ -12,5 +12,5 @@ Source: file
 ℹ️  Data is stale. Ensure guards are running and refreshing token usage.
-Last updated: 2025-12-30T08:25:20.984Z
+Last updated: 2025-12-30T08:58:22.226Z
 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

package/scripts/hooks-system/.audit-reports/notifications.log CHANGED Viewed

@@ -849,3 +849,14 @@
 {"timestamp":"2025-12-30T08:19:20.750Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"aea6dbae-9f29-476f-aae0-eb0baed57b63","type":"token_ok"},"context":{}}
 {"timestamp":"2025-12-30T08:22:20.864Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"9b5ff199-4e82-4c52-ac48-63c3f113bce8","type":"token_ok"},"context":{}}
 {"timestamp":"2025-12-30T08:25:20.986Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"c997c7e1-df65-444b-9f83-256def74479f","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:28:21.114Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"c0ff8c81-b221-41e5-b794-47f531c4695c","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:31:21.232Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"f1fd65fe-8c97-4cf7-9e69-e78adcee7f6a","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:34:21.331Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"813aa1ac-d446-409a-9073-b8926977e1e3","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:37:21.446Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"3302369a-dfd0-412f-9371-0f42e2d38c43","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:40:21.564Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"99b37ef1-a097-4813-a549-f5397704155e","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:43:21.675Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"a4910417-b3c5-44cb-bbaf-17a058951161","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:46:21.788Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"d354de41-d835-44da-868f-0ee4b6f446b0","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:49:21.901Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"b8d841eb-439a-4ea8-b90f-25555315f26d","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:52:22.017Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"9c11c1b3-3816-4a02-b776-7298606a33f1","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:55:22.116Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"5440bbb5-a069-4be6-a84f-1a8e525e2ebe","type":"token_ok"},"context":{}}
+{"timestamp":"2025-12-30T08:58:22.227Z","level":"debug","component":"NotificationCenter","event":"Notification enqueued","data":{"id":"22a08362-af10-4d6d-8e4d-011afe460c7d","type":"token_ok"},"context":{}}

package/scripts/hooks-system/.audit-reports/token-monitor.log CHANGED Viewed

@@ -2551,3 +2551,75 @@
 {"timestamp":"2025-12-30T08:25:20.975Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
 {"timestamp":"2025-12-30T08:25:20.976Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
 {"timestamp":"2025-12-30T08:25:20.986Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:28:21.102Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:28:21.104Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:28:21.114Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:31:21.222Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:31:21.223Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:31:21.232Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:34:21.319Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:34:21.321Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:34:21.331Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:37:21.435Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:37:21.437Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:37:21.447Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:40:21.554Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:40:21.555Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:40:21.564Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:43:21.664Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:43:21.665Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:43:21.676Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:46:21.778Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:46:21.779Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:46:21.788Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:49:21.891Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:49:21.892Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:49:21.901Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:52:22.006Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:52:22.008Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:52:22.017Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:55:22.104Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:55:22.106Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:55:22.117Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T08:58:22.216Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T08:58:22.217Z","level":"debug","component":"TokenMonitor","event":"TOKEN_MONITOR_METRICS","data":{"timestamp":"2025-12-29T15:38:11.174Z","tokensUsed":0,"maxTokens":1000000,"percentUsed":0,"remainingTokens":1000000,"level":"ok","source":"file","stale":true,"untrusted":false},"context":{}}
+{"timestamp":"2025-12-30T08:58:22.227Z","level":"info","component":"TokenMonitor","event":"TOKEN_MONITOR_RESULT","data":{"level":"ok","percentUsed":0,"tokensUsed":0,"maxTokens":1000000,"source":"file","stale":true,"untrusted":false},"context":{"message":"Result level=ok percent=0% used=0/1000000 source=file (stale)"}}
+{"timestamp":"2025-12-30T09:01:22.338Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:04:22.455Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:07:22.567Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:10:22.674Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:13:22.769Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:16:22.893Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:19:23.006Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:22:23.112Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:25:23.225Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:28:23.340Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:31:23.437Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:34:23.547Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:37:23.640Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:40:23.752Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:43:23.845Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:46:23.937Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:49:24.042Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:52:24.136Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:55:24.231Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T09:58:24.330Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:01:24.438Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:04:24.542Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:07:24.654Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:10:24.769Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:13:24.886Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:16:24.995Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:19:25.098Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:22:25.205Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:25:25.296Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:28:25.400Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:31:25.497Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:34:25.602Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:37:25.690Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:40:25.786Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:43:25.876Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:46:25.978Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:49:26.076Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:52:26.168Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}
+{"timestamp":"2025-12-30T10:55:26.256Z","level":"debug","component":"TokenMonitor","event":"CURSOR_SERVICE_USING_FILE","data":{"usage":{"tokensUsed":0,"maxTokens":1000000,"percentUsed":72.36585,"timestamp":"2025-12-29T15:38:11.174Z","source":"file","untrusted":false}},"context":{}}

package/scripts/hooks-system/application/CompositionRoot.js CHANGED Viewed

@@ -21,19 +21,54 @@ const TokenMonitor = require('./services/monitoring/TokenMonitor');
 const ActivityMonitor = require('./services/monitoring/ActivityMonitor');
 const DevDocsMonitor = require('./services/monitoring/DevDocsMonitor');
 const AstMonitor = require('./services/monitoring/AstMonitor');
+const AuditLogger = require('./services/logging/AuditLogger');
 const path = require('path');
 const fs = require('fs');
+const env = require('../config/env');
+// Import recordMetric for prometheus metrics
+const { recordMetric } = require('../infrastructure/telemetry/metrics-logger');
 class CompositionRoot {
     constructor(repoRoot) {
         this.repoRoot = repoRoot;
         this.instances = new Map();
+        this._initializeInfrastructure();
+        this._initializeServices();
+        this._initializeMonitors();
+    }
+    _initializeInfrastructure() {
         // Ensure audit directories exist
-        this.auditDir = path.join(repoRoot, '.audit-reports');
-        this.tempDir = path.join(repoRoot, '.audit_tmp');
+        this.auditDir = path.join(this.repoRoot, '.audit-reports');
+        this.tempDir = path.join(this.repoRoot, '.audit_tmp');
         this._ensureDirectories([this.auditDir, this.tempDir]);
+        // Audit log composition root creation
+        const auditLogger = this.getAuditLogger();
+        auditLogger.log({
+            action: 'composition_root_created',
+            category: 'system',
+            severity: 'info',
+            message: 'CompositionRoot initialized for dependency injection',
+            metadata: {
+                repoRoot: this.repoRoot,
+                auditDir: this.auditDir,
+                tempDir: this.tempDir
+            }
+        });
+    }
+    _initializeServices() {
+        // Services are created lazily when requested
+        // This reduces the initialization load
+    }
+    _initializeMonitors() {
+        // Monitors are created lazily when requested
+        // This reduces the initialization load
     }
     _ensureDirectories(dirs) {
@@ -51,7 +86,7 @@ class CompositionRoot {
                 file: {
                     enabled: true,
                     path: path.join(this.auditDir, 'guard-audit.jsonl'),
-                    level: process.env.HOOK_LOG_LEVEL || 'info'
+                    level: env.get('HOOK_LOG_LEVEL', env.isProd ? 'warn' : 'info')
                 },
                 console: {
                     enabled: false,
@@ -73,6 +108,18 @@ class CompositionRoot {
         return this.instances.get('notificationService');
     }
+    getAuditLogger() {
+        if (!this.instances.has('auditLogger')) {
+            const logger = this.getLogger();
+            this.instances.set('auditLogger', new AuditLogger({
+                repoRoot: this.repoRoot,
+                filename: path.join('.audit_tmp', 'audit.log'),
+                logger
+            }));
+        }
+        return this.instances.get('auditLogger');
+    }
     // --- Infrastructure Adapters ---
     getNotificationAdapter() {
@@ -183,9 +230,9 @@ class CompositionRoot {
     getEvidenceMonitor() {
         if (!this.instances.has('evidenceMonitor')) {
             this.instances.set('evidenceMonitor', new EvidenceMonitor(this.repoRoot, {
-                staleThresholdMs: Number(process.env.HOOK_GUARD_EVIDENCE_STALE_THRESHOLD || 180000),
-                pollIntervalMs: Number(process.env.HOOK_GUARD_EVIDENCE_POLL_INTERVAL || 30000),
-                reminderIntervalMs: Number(process.env.HOOK_GUARD_EVIDENCE_REMINDER_INTERVAL || 60000)
+                staleThresholdMs: env.getNumber('HOOK_GUARD_EVIDENCE_STALE_THRESHOLD', 180000),
+                pollIntervalMs: env.getNumber('HOOK_GUARD_EVIDENCE_POLL_INTERVAL', 30000),
+                reminderIntervalMs: env.getNumber('HOOK_GUARD_EVIDENCE_REMINDER_INTERVAL', 60000)
             }));
         }
         return this.instances.get('evidenceMonitor');
@@ -194,11 +241,11 @@ class CompositionRoot {
     getGitTreeMonitor() {
         if (!this.instances.has('gitTreeMonitor')) {
             this.instances.set('gitTreeMonitor', new GitTreeMonitor(this.repoRoot, {
-                stagedThreshold: Number(process.env.HOOK_GUARD_DIRTY_TREE_STAGED_LIMIT || 10),
-                unstagedThreshold: Number(process.env.HOOK_GUARD_DIRTY_TREE_UNSTAGED_LIMIT || 15),
-                totalThreshold: Number(process.env.HOOK_GUARD_DIRTY_TREE_TOTAL_LIMIT || 20),
-                checkIntervalMs: Number(process.env.HOOK_GUARD_DIRTY_TREE_INTERVAL || 60000),
-                reminderMs: Number(process.env.HOOK_GUARD_DIRTY_TREE_REMINDER || 300000)
+                stagedThreshold: env.getNumber('HOOK_GUARD_DIRTY_TREE_STAGED_LIMIT', 10),
+                unstagedThreshold: env.getNumber('HOOK_GUARD_DIRTY_TREE_UNSTAGED_LIMIT', 15),
+                totalThreshold: env.getNumber('HOOK_GUARD_DIRTY_TREE_TOTAL_LIMIT', 20),
+                checkIntervalMs: env.getNumber('HOOK_GUARD_DIRTY_TREE_INTERVAL', 60000),
+                reminderMs: env.getNumber('HOOK_GUARD_DIRTY_TREE_REMINDER', 300000)
             }));
         }
         return this.instances.get('gitTreeMonitor');
@@ -219,11 +266,11 @@ class CompositionRoot {
             const github = this.getGitHubAdapter();
             this.instances.set('gitFlowService', new GitFlowService(this.repoRoot, {
-                developBranch: process.env.HOOK_GUARD_GITFLOW_DEVELOP_BRANCH || 'develop',
-                mainBranch: process.env.HOOK_GUARD_GITFLOW_MAIN_BRANCH || 'main',
-                autoSyncEnabled: process.env.HOOK_GUARD_GITFLOW_AUTOSYNC !== 'false',
-                autoCleanEnabled: process.env.HOOK_GUARD_GITFLOW_AUTOCLEAN !== 'false',
-                requireClean: process.env.HOOK_GUARD_GITFLOW_REQUIRE_CLEAN !== 'false'
+                developBranch: env.get('HOOK_GUARD_GITFLOW_DEVELOP_BRANCH', 'develop'),
+                mainBranch: env.get('HOOK_GUARD_GITFLOW_MAIN_BRANCH', 'main'),
+                autoSyncEnabled: env.getBool('HOOK_GUARD_GITFLOW_AUTOSYNC', true),
+                autoCleanEnabled: env.getBool('HOOK_GUARD_GITFLOW_AUTOCLEAN', true),
+                requireClean: env.getBool('HOOK_GUARD_GITFLOW_REQUIRE_CLEAN', true)
             }, logger, gitQuery, gitCommand, github));
         }
         return this.instances.get('gitFlowService');
@@ -234,7 +281,7 @@ class CompositionRoot {
             const logger = this.getLogger();
             this.instances.set('activityMonitor', new ActivityMonitor({
                 repoRoot: this.repoRoot,
-                inactivityGraceMs: Number(process.env.HOOK_GUARD_INACTIVITY_GRACE_MS || 420000),
+                inactivityGraceMs: env.getNumber('HOOK_GUARD_INACTIVITY_GRACE_MS', 420000),
                 logger
             }));
         }
@@ -247,9 +294,9 @@ class CompositionRoot {
             const notificationService = this.getNotificationService();
             this.instances.set('devDocsMonitor', new DevDocsMonitor({
                 repoRoot: this.repoRoot,
-                checkIntervalMs: Number(process.env.HOOK_GUARD_DEV_DOCS_CHECK_INTERVAL || 300000),
-                staleThresholdMs: Number(process.env.HOOK_GUARD_DEV_DOCS_STALE_THRESHOLD || 86400000),
-                autoRefreshEnabled: process.env.HOOK_GUARD_DEV_DOCS_AUTO_REFRESH !== 'false',
+                checkIntervalMs: env.getNumber('HOOK_GUARD_DEV_DOCS_CHECK_INTERVAL', 300000),
+                staleThresholdMs: env.getNumber('HOOK_GUARD_DEV_DOCS_STALE_THRESHOLD', 86400000),
+                autoRefreshEnabled: env.getBool('HOOK_GUARD_DEV_DOCS_AUTO_REFRESH', true),
                 logger,
                 notificationService
             }));
@@ -263,9 +310,9 @@ class CompositionRoot {
             const notificationService = this.getNotificationService();
             this.instances.set('astMonitor', new AstMonitor({
                 repoRoot: this.repoRoot,
-                debounceMs: Number(process.env.HOOK_AST_WATCH_DEBOUNCE || 8000),
-                cooldownMs: Number(process.env.HOOK_AST_WATCH_COOLDOWN || 30000),
-                enabled: process.env.HOOK_AST_WATCH !== 'false',
+                debounceMs: env.getNumber('HOOK_AST_WATCH_DEBOUNCE', 8000),
+                cooldownMs: env.getNumber('HOOK_AST_WATCH_COOLDOWN', 30000),
+                enabled: env.getBool('HOOK_AST_WATCH', true),
                 logger,
                 notificationService
             }));
@@ -291,6 +338,7 @@ class CompositionRoot {
             const notificationService = this.getNotificationService();
             const monitors = this.getMonitors();
             const orchestrator = this.getOrchestrator();
+            const auditLogger = this.getAuditLogger();
             const config = {
                 debugLogPath: path.join(this.auditDir, 'guard-debug.log'),
                 repoRoot: this.repoRoot
@@ -301,7 +349,8 @@ class CompositionRoot {
                 notificationService,
                 monitors,
                 orchestration: orchestrator,
-                config
+                config,
+                auditLogger
             }));
         }
         return this.instances.get('guardService');

package/scripts/hooks-system/application/services/DynamicRulesLoader.js CHANGED Viewed

@@ -1,5 +1,6 @@
 const fs = require('fs').promises;
 const path = require('path');
+const env = require('../config/env');
 class DynamicRulesLoader {
     constructor(rulesDirectory, logger = console) {
@@ -27,7 +28,7 @@ class DynamicRulesLoader {
             return [this.rulesDirectory];
         }
-        const envRaw = process.env.AST_RULES_DIRECTORIES;
+        const envRaw = env.get('AST_RULES_DIRECTORIES');
         if (envRaw && typeof envRaw === 'string' && envRaw.trim().length > 0) {
             return envRaw
                 .split(',')