pumuki-ast-hooks 5.5.21 → 5.5.23

package/README.md

@@ -1065,6 +1065,24 @@ For coding standards, see [CODE_STANDARDS.md](./docs/CODE_STANDARDS.md).
 
 ## 📝 Recent Changes
 
+### Version 5.5.22 (2026-01-04)
+
+**🔴 CRITICAL Fix:**
+- Replaced self-referential wrapper with complete session-loader implementation
+- Root cause: wrapper called itself causing infinite recursion
+- Session loader now works correctly in all consuming projects
+
+---
+
+### Version 5.5.21 (2026-01-04)
+
+**🐛 Bug Fixes:**
+- Fixed fork bomb caused by wrapper scripts being copied to incorrect location
+- Excluded wrapper scripts from bin/ copy to prevent recursive calls
+- Session loader now works correctly without causing resource exhaustion
+
+---
+
 ### Version 5.5.20 (2026-01-04)
 
 **🐛 Bug Fixes:**

package/bin/session-loader.sh

@@ -1,5 +1,5 @@
 #!/bin/bash
-# AST Session Loader v5.5.20
+# AST Session Loader v5.5.22
 # Runs on IDE startup to initialize AST hooks, show context and check tokens
 REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
 
@@ -26,7 +26,7 @@ fi
 # Banner
 echo ""
 echo -e "${BLUE}╔══════════════════════════════════════════════════════════╗${NC}"
-echo -e "${BLUE}║         🤖 AST Intelligence Hooks v5.5.20                ║${NC}"
+echo -e "${BLUE}║         🤖 AST Intelligence Hooks v5.5.22                ║${NC}"
 echo -e "${BLUE}║         Workspace Opened - Loading Context...            ║${NC}"
 echo -e "${BLUE}╚══════════════════════════════════════════════════════════╝${NC}"
 echo ""

package/docs/RELEASE_NOTES.md

@@ -1,3 +1,79 @@
+# Release Notes - v5.5.22
+
+**Release Date**: January 4, 2026  
+**Type**: Critical Patch Release  
+**Compatibility**: Fully backward compatible with 5.5.x
+
+---
+
+## 🔴 CRITICAL Fix
+
+### Root Cause Analysis
+
+The session-loader fork bomb was caused by an **architectural flaw** in the wrapper pattern:
+
+```
+scripts/hooks-system/bin/session-loader.sh (WRAPPER)
+  → calls: bash "$REPO_ROOT/scripts/hooks-system/bin/session-loader.sh"
+    → which is THE SAME FILE
+      → INFINITE RECURSION → FORK BOMB
+```
+
+### Solution
+
+Replaced the 6-line self-referential wrapper with the **complete 108-line implementation** directly in `scripts/hooks-system/bin/session-loader.sh`.
+
+### Impact
+
+- **Before**: Any project installing the library would get the broken wrapper, causing fork bombs on IDE startup
+- **After**: Projects get a fully working session-loader that displays context correctly
+
+---
+
+## 📦 Installation / Upgrade
+```bash
+npm install --save-dev pumuki-ast-hooks@5.5.22
+npm run install-hooks
+```
+
+---
+
+# Release Notes - v5.5.21
+
+**Release Date**: January 4, 2026  
+**Type**: Patch Release  
+**Compatibility**: Fully backward compatible with 5.5.x
+
+---
+
+## 🎯 Overview
+
+This release fixes a critical fork bomb issue in the installer caused by wrapper scripts being copied to incorrect locations, preventing recursive calls that would exhaust system resources.
+
+---
+
+## 🐛 Bug Fixes
+
+### Fixed: Fork bomb in session-loader
+- **Issue**: Wrapper scripts (`session-loader.sh`, `cli.js`, `install.js`) were copied from `/bin/` to `scripts/hooks-system/bin/`, causing them to call themselves recursively
+- **Resolution**: Modified `FileSystemInstallerService` to exclude wrapper scripts when copying the `bin/` directory
+- **Impact**: Session loader now works correctly without causing fork resource exhaustion or infinite loops
+
+### Technical Details
+- Wrapper scripts in the library's `/bin/` directory are now excluded during installation
+- This prevents the wrapper from being copied to the location where it would call itself
+- Installation process is now safe and doesn't cause resource exhaustion
+
+---
+
+## 📦 Installation / Upgrade
+```bash
+npm install --save-dev pumuki-ast-hooks@5.5.21
+npm run install-hooks
+```
+
+---
+
 # Release Notes - v5.5.20
 
 **Release Date**: January 4, 2026  

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki-ast-hooks",
-  "version": "5.5.21",
+  "version": "5.5.23",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/scripts/hooks-system/bin/session-loader.sh

@@ -1,5 +1,107 @@
 #!/bin/bash
-# Script Wrapper
-# Redirects to the centralized implementation in scripts/hooks-system
+# AST Session Loader v5.5.22
+# Runs on IDE startup to initialize AST hooks, show context and check tokens
 REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
-bash "$REPO_ROOT/scripts/hooks-system/bin/session-loader.sh" "$@"
+
+BLUE='\033[0;34m'
+CYAN='\033[0;36m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+MAGENTA='\033[0;35m'
+NC='\033[0m'
+
+EVIDENCE_FILE="$REPO_ROOT/.AI_EVIDENCE.json"
+SESSION_FILE="$REPO_ROOT/.AI_SESSION_START.md"
+TOKEN_STATUS="$REPO_ROOT/.audit_tmp/token-status.txt"
+VIOLATIONS_REPORT="$REPO_ROOT/.audit_tmp/intelligent-report.txt"
+
+TOKEN_TRACKER="$REPO_ROOT/scripts/hooks-system/infrastructure/watchdog/token-tracker.sh"
+if [ -f "$TOKEN_TRACKER" ]; then
+    bash "$TOKEN_TRACKER"
+fi
+
+echo ""
+echo -e "${BLUE}╔══════════════════════════════════════════════════════════╗${NC}"
+echo -e "${BLUE}║         🤖 AST Intelligence Hooks v5.5.22                ║${NC}"
+echo -e "${BLUE}║         Workspace Opened - Loading Context...            ║${NC}"
+echo -e "${BLUE}╚══════════════════════════════════════════════════════════╝${NC}"
+echo ""
+
+CURRENT_BRANCH=$(git branch --show-current 2>/dev/null || echo "unknown")
+echo -e "${CYAN}📍 Current Branch: ${MAGENTA}$CURRENT_BRANCH${NC}"
+echo ""
+
+echo -e "${CYAN}📝 Recent Commits:${NC}"
+git log --oneline -3 2>/dev/null | sed 's/^/   /' || echo "   No commits yet"
+echo ""
+
+if [[ -f "$EVIDENCE_FILE" ]]; then
+    CURRENT_SESSION_ID=$(jq -r '.session_id // empty' "$EVIDENCE_FILE" 2>/dev/null || echo "")
+    CURRENT_ACTION=$(jq -r '.action // empty' "$EVIDENCE_FILE" 2>/dev/null || echo "")
+    if [[ -n "$CURRENT_SESSION_ID" && "$CURRENT_SESSION_ID" != "null" ]]; then
+        echo -e "${CYAN}📖 Session Context:${NC}"
+        if [[ -n "$CURRENT_ACTION" && "$CURRENT_ACTION" != "null" ]]; then
+            echo "   Session: $CURRENT_SESSION_ID - $CURRENT_ACTION"
+        else
+            echo "   Session: $CURRENT_SESSION_ID"
+        fi
+        echo ""
+    fi
+fi
+
+if [[ -f "$VIOLATIONS_REPORT" ]]; then
+    echo -e "${CYAN}🎯 Top Violations (last audit):${NC}"
+    grep -E "CRITICAL|HIGH|MEDIUM|LOW" "$VIOLATIONS_REPORT" 2>/dev/null | head -5 | sed 's/^/   /' || echo "   No violations found"
+    echo ""
+elif [[ -f "$REPO_ROOT/.audit_tmp/ast-summary.json" ]]; then
+    echo -e "${CYAN}🎯 Violations Summary:${NC}"
+    CRITICAL=$(jq -r '.levels.CRITICAL // 0' "$REPO_ROOT/.audit_tmp/ast-summary.json" 2>/dev/null || echo "0")
+    HIGH=$(jq -r '.levels.HIGH // 0' "$REPO_ROOT/.audit_tmp/ast-summary.json" 2>/dev/null || echo "0")
+    MEDIUM=$(jq -r '.levels.MEDIUM // 0' "$REPO_ROOT/.audit_tmp/ast-summary.json" 2>/dev/null || echo "0")
+    LOW=$(jq -r '.levels.LOW // 0' "$REPO_ROOT/.audit_tmp/ast-summary.json" 2>/dev/null || echo "0")
+    echo "   🔴 CRITICAL: $CRITICAL  🟠 HIGH: $HIGH  🟡 MEDIUM: $MEDIUM  🔵 LOW: $LOW"
+    echo ""
+fi
+
+AGE=0
+if [[ -f "$EVIDENCE_FILE" ]]; then
+    EVIDENCE_TS=$(jq -r '.timestamp' "$EVIDENCE_FILE" 2>/dev/null || echo "")
+    if [[ -n "$EVIDENCE_TS" ]] && [[ "$EVIDENCE_TS" != "null" ]]; then
+        CLEAN_TS=$(echo "$EVIDENCE_TS" | sed -E 's/\.[0-9]+([+-][0-9]{2}:[0-9]{2}|Z)$/\1/')
+        
+        if [[ "$CLEAN_TS" =~ \+[0-9]{2}:[0-9]{2}$ ]] || [[ "$CLEAN_TS" =~ -[0-9]{2}:[0-9]{2}$ ]]; then
+            EVIDENCE_EPOCH=$(python3 -c "from datetime import datetime; import sys; dt = datetime.fromisoformat('$CLEAN_TS'); print(int(dt.timestamp()))" 2>/dev/null || echo "0")
+        elif [[ "$CLEAN_TS" =~ Z$ ]]; then
+            EVIDENCE_EPOCH=$(date -j -f "%Y-%m-%dT%H:%M:%SZ" "$CLEAN_TS" +%s 2>/dev/null || echo "0")
+        else
+            EVIDENCE_EPOCH=0
+        fi
+        
+        if [[ "$EVIDENCE_EPOCH" != "0" ]]; then
+            NOW_EPOCH=$(date +%s)
+            AGE=$((NOW_EPOCH - EVIDENCE_EPOCH))
+            
+            if [[ $AGE -gt 180 ]]; then
+                echo -e "${YELLOW}⚠️  Evidence is stale (${AGE}s old, max 3min)${NC}"
+                echo -e "${YELLOW}   Run: ai-start${NC}"
+            else
+                echo -e "${GREEN}✅ Evidence fresh (${AGE}s old)${NC}"
+            fi
+            echo ""
+        fi
+    fi
+fi
+
+echo -e "${BLUE}━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━${NC}"
+echo -e "${CYAN}🚀 Quick Commands:${NC}"
+echo "   ai-start                    → Update evidence & start work"
+echo "   bash scripts/hooks-system/infrastructure/shell/orchestrators/audit-orchestrator.sh → Full audit"
+echo -e "${BLUE}━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━${NC}"
+echo ""
+
+if [[ $AGE -gt 180 ]]; then
+    echo -e "${YELLOW}⚠️  Run 'ai-start' to refresh evidence before working${NC}"
+else
+    echo -e "${GREEN}✅ Session loaded - Ready to work!${NC}"
+fi
+echo ""

package/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js

@@ -391,6 +391,16 @@ function updateAIEvidence(violations, gateResult, tokenUsage) {
     fs.writeFileSync(evidencePath, JSON.stringify(evidence, null, 2));
     console.log('[Intelligent Audit] ✅ .AI_EVIDENCE.json updated with complete format (ai_gate, severity_metrics, token_usage, git_flow, watchers)');
 
+    try {
+      const gateStatus = evidence.ai_gate.status;
+      const violationCount = evidence.severity_metrics.total_violations;
+      const notifTitle = gateStatus === 'BLOCKED' ? '🚨 AI Gate BLOCKED' : '✅ Evidence Updated';
+      const notifMsg = `Gate: ${gateStatus} | Violations: ${violationCount} | Tokens: ${tokenPercent}%`;
+      execSync(`osascript -e 'display notification "${notifMsg}" with title "${notifTitle}" sound name "Glass"'`, { stdio: 'ignore' });
+    } catch (notifErr) {
+      // Silent fail for non-macOS
+    }
+
   } catch (evidenceFileUpdateError) {
     process.stderr.write(`[Intelligent Audit] ⚠️  Evidence update failed: ${toErrorMessage(evidenceFileUpdateError)}\n`);
   }