pumuki-ast-hooks 5.5.24 → 5.5.26

package/README.md

@@ -1065,6 +1065,24 @@ For coding standards, see [CODE_STANDARDS.md](./docs/CODE_STANDARDS.md).
 
 ## 📝 Recent Changes
 
+### Version 5.5.25 (2026-01-04)
+
+**⚡ Performance Fix:**
+- Removed slow full AST analysis (35 minutes) from evidence guard refresh loop
+- Evidence guard now uses fast `update-evidence.sh` (seconds) instead of `intelligent-audit.js`
+- Evidence refreshes every 3 minutes as intended, notifications work correctly
+
+---
+
+### Version 5.5.24 (2026-01-04)
+
+**🔔 Notifications Fix:**
+- Replaced empty catch blocks with proper error handling via `MacNotificationSender`
+- macOS notifications now sent on every evidence update with proper error management
+- Notifications show "AI Evidence has been refreshed automatically" or "AI Gate BLOCKED"
+
+---
+
 ### Version 5.5.22 (2026-01-04)
 
 **🔴 CRITICAL Fix:**

package/docs/RELEASE_NOTES.md

@@ -1,3 +1,104 @@
+# Release Notes - v5.5.25
+
+**Release Date**: January 4, 2026
+**Type**: Performance Patch Release
+**Compatibility**: Fully backward compatible with 5.5.x
+
+---
+
+## ⚡ Performance Fix
+
+### Problem
+
+The evidence guard daemon was running full AST analysis on every refresh (every 3 minutes), causing:
+
+- **35-minute delays** between evidence updates
+- **Notifications not appearing** until analysis completed
+- **High CPU usage** during full repository scans
+
+### Root Cause
+
+Evidence guard was calling `intelligent-audit.js` directly:
+
+```javascript
+const astScript = 'node_modules/pumuki-ast-hooks/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js';
+spawn('node', [astScript], { stdio: 'ignore' });
+```
+
+This script performs a full repository scan (1687 files, 11356 violations) which takes 35 minutes.
+
+### Solution
+
+Use `update-evidence.sh` which performs incremental analysis on staged files only:
+
+```javascript
+spawn('bash', [this.updateScript, '--auto'], { stdio: 'ignore' });
+```
+
+### Impact
+
+- **Before**: Evidence refresh takes 35 minutes, notifications delayed
+- **After**: Evidence refresh takes seconds, notifications appear immediately
+- Refresh interval remains 180 seconds but now completes in seconds instead of minutes
+
+---
+
+## 📦 Installation / Upgrade
+```bash
+npm install --save-dev pumuki-ast-hooks@5.5.25
+npm run install-hooks
+npm run ast:guard:restart
+```
+
+---
+
+# Release Notes - v5.5.24
+
+**Release Date**: January 4, 2026
+**Type**: Patch Release
+**Compatibility**: Fully backward compatible with 5.5.x
+
+---
+
+## 🔔 Notifications Fix
+
+### Problem
+
+macOS notifications had empty catch blocks that silently failed:
+
+```javascript
+try {
+  execSync('osascript ...');
+} catch (e) {
+}
+```
+
+### Solution
+
+Use `MacNotificationSender` service with proper error handling:
+
+```javascript
+const MacNotificationSender = require('../../application/services/notification/MacNotificationSender');
+const notificationSender = new MacNotificationSender(null);
+notificationSender.send({ message: notifMsg, level });
+```
+
+### Impact
+
+- Notifications now appear on every evidence update
+- Proper error logging when notifications fail
+- Consistent behavior across all notification types
+
+---
+
+## 📦 Installation / Upgrade
+```bash
+npm install --save-dev pumuki-ast-hooks@5.5.24
+npm run install-hooks
+```
+
+---
+
 # Release Notes - v5.5.22
 
 **Release Date**: January 4, 2026  

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki-ast-hooks",
-  "version": "5.5.24",
+  "version": "5.5.26",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/scripts/hooks-system/infrastructure/daemons/evidence-guard.js

@@ -80,61 +80,26 @@ class EvidenceGuard {
 
     async refreshEvidence() {
         return new Promise((resolve) => {
-            const astScript = path.join(
-                this.projectRoot,
-                'node_modules/pumuki-ast-hooks/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js'
-            );
-
-            if (fs.existsSync(astScript)) {
-                console.log('[EvidenceGuard] Running full AST analysis...');
-                const child = spawn('node', [astScript], {
-                    cwd: this.projectRoot,
-                    stdio: 'ignore',
-                    detached: false,
-                    env: {
-                        ...process.env,
-                        REPO_ROOT: this.projectRoot,
-                        AUTO_EVIDENCE_TRIGGER: 'auto',
-                        AUTO_EVIDENCE_REASON: 'evidence_guard_refresh',
-                        AUTO_EVIDENCE_SUMMARY: 'Automatic refresh by evidence guard'
-                    }
-                });
-
-                child.on('close', (code) => {
-                    if (code === 0) {
-                        console.log(`[EvidenceGuard] Full AST analysis completed at ${new Date().toISOString()}`);
-                    } else {
-                        console.error(`[EvidenceGuard] AST analysis failed with code ${code}`);
-                    }
-                    resolve();
-                });
-
-                child.on('error', (error) => {
-                    console.error('[EvidenceGuard] Failed to spawn AST analysis:', error.message);
-                    resolve();
-                });
-            } else {
-                console.warn('[EvidenceGuard] intelligent-audit.js not found, falling back to update-evidence.sh');
-                const child = spawn('bash', [this.updateScript, '--auto'], {
-                    cwd: this.projectRoot,
-                    stdio: 'ignore',
-                    detached: false
-                });
-
-                child.on('close', (code) => {
-                    if (code === 0) {
-                        console.log(`[EvidenceGuard] Evidence refreshed (fallback) at ${new Date().toISOString()}`);
-                    } else {
-                        console.error(`[EvidenceGuard] Refresh failed with code ${code}`);
-                    }
-                    resolve();
-                });
-
-                child.on('error', (error) => {
-                    console.error('[EvidenceGuard] Refresh error:', error.message);
-                    resolve();
-                });
-            }
+            console.log('[EvidenceGuard] Running evidence update...');
+            const child = spawn('bash', [this.updateScript, '--auto'], {
+                cwd: this.projectRoot,
+                stdio: 'ignore',
+                detached: false
+            });
+
+            child.on('close', (code) => {
+                if (code === 0) {
+                    console.log(`[EvidenceGuard] Evidence refreshed at ${new Date().toISOString()}`);
+                } else {
+                    console.error(`[EvidenceGuard] Refresh failed with code ${code}`);
+                }
+                resolve();
+            });
+
+            child.on('error', (error) => {
+                console.error('[EvidenceGuard] Refresh error:', error.message);
+                resolve();
+            });
         });
     }
 

package/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js

@@ -10,6 +10,20 @@ const { toErrorMessage } = require('../utils/error-utils');
 const fs = require('fs');
 const path = require('path');
 
+function deriveCategoryFromRuleId(ruleId) {
+  if (!ruleId || typeof ruleId !== 'string') return 'unknown';
+  const parts = ruleId.split('.');
+  if (parts.length >= 2) {
+    const platform = parts[0].toLowerCase();
+    const domain = parts[1].toLowerCase();
+    if (['ios', 'android', 'backend', 'frontend'].includes(platform)) {
+      return `${platform}.${domain}`;
+    }
+    return domain;
+  }
+  return parts[0] || 'unknown';
+}
+
 function formatLocalTimestamp(date = new Date()) {
   const year = date.getFullYear();
   const month = String(date.getMonth() + 1).padStart(2, '0');
@@ -272,16 +286,19 @@ function updateAIEvidence(violations, gateResult, tokenUsage) {
       status: gateResult.passed ? 'ALLOWED' : 'BLOCKED',
       scope: gateScope === 'repo' || gateScope === 'repository' ? 'repo' : 'staging',
       last_check: formatLocalTimestamp(),
-      violations: blockingViolations.map(v => ({
-        file: v.filePath || v.file || 'unknown',
-        line: v.line || null,
-        severity: v.severity,
-        rule: v.ruleId || v.rule || 'unknown',
-        message: v.message || v.description || '',
-        category: v.category || 'unknown',
-        intelligent_evaluation: v.intelligentEvaluation || false,
-        severity_score: v.severityScore || 0
-      })),
+      violations: blockingViolations.map(v => {
+        const ruleId = v.ruleId || v.rule || 'unknown';
+        return {
+          file: v.filePath || v.file || 'unknown',
+          line: v.line || null,
+          severity: v.severity,
+          rule: ruleId,
+          message: v.message || v.description || '',
+          category: v.category || deriveCategoryFromRuleId(ruleId),
+          intelligent_evaluation: v.intelligentEvaluation || false,
+          severity_score: v.severityScore || 0
+        };
+      }),
       instruction: '🚨 AI MUST call mcp_ast-intelligence-automation_ai_gate_check BEFORE any action. If BLOCKED, fix violations first!',
       mandatory: true
     };

package/scripts/hooks-system/infrastructure/shell/orchestrators/audit-orchestrator.sh

@@ -114,6 +114,52 @@ print_header() {
   printf "%b%s%b\n\n" "$BLUE" "$MSG_TITLE" "$NC"
 }
 
+print_blocking_violations() {
+  if [[ ! -f "$TMP_DIR/ast-summary.json" ]]; then
+    return
+  fi
+  if ! command -v jq >/dev/null 2>&1; then
+    return
+  fi
+
+  local max_show=${1:-20}
+
+  local critical_violations
+  critical_violations=$(jq -r '
+    [.findings[] | select(.severity == "CRITICAL" or .severity == "critical" or .severity == "error")]
+    | .[0:'"$max_show"']
+    | .[] | "🔴 CRITICAL: \(.ruleId) - File: \(.filePath):\(.line // 1)"
+  ' "$TMP_DIR/ast-summary.json" 2>/dev/null || echo "")
+
+  local high_violations
+  high_violations=$(jq -r '
+    [.findings[] | select(.severity == "HIGH" or .severity == "high")]
+    | .[0:'"$max_show"']
+    | .[] | "🟠 HIGH: \(.ruleId) - File: \(.filePath):\(.line // 1)"
+  ' "$TMP_DIR/ast-summary.json" 2>/dev/null || echo "")
+
+  if [[ -n "$critical_violations" || -n "$high_violations" ]]; then
+    printf "\n%b📋 BLOCKING VIOLATIONS DETAIL:%b\n" "$YELLOW" "$NC"
+    printf "─────────────────────────────────────────────────────────────\n"
+  fi
+
+  if [[ -n "$critical_violations" ]]; then
+    printf "%b%s%b\n" "$RED" "$critical_violations" "$NC"
+  fi
+
+  if [[ -n "$high_violations" ]]; then
+    printf "%b%s%b\n" "$YELLOW" "$high_violations" "$NC"
+  fi
+
+  local total_crit total_high
+  total_crit=$(jq '[.findings[] | select(.severity == "CRITICAL" or .severity == "critical" or .severity == "error")] | length' "$TMP_DIR/ast-summary.json" 2>/dev/null || echo "0")
+  total_high=$(jq '[.findings[] | select(.severity == "HIGH" or .severity == "high")] | length' "$TMP_DIR/ast-summary.json" 2>/dev/null || echo "0")
+
+  if (( total_crit > max_show )) || (( total_high > max_show )); then
+    printf "\n  %b(Showing first %d of each severity. Run full audit for complete list)%b\n" "$BLUE" "$max_show" "$NC"
+  fi
+}
+
 ignored_globs() {
   cat <<'EOF'
 node_modules
@@ -268,6 +314,7 @@ full_audit_strict_staging_only() {
     printf "  🟠 HIGH:     %s\n" "$gate_high"
     printf "  🟡 MEDIUM:   %s\n" "$gate_med"
     printf "  🔵 LOW:      %s\n" "$gate_low"
+    print_blocking_violations
     printf "\n  Action: Fix ALL violations in staged files.\n"
     printf "\n"
     print_final_signature
@@ -324,6 +371,7 @@ full_audit_standard() {
     printf "  🟠 HIGH:     %s\n" "$gate_high"
     printf "  🟡 MEDIUM:   %s (allowed)\n" "$gate_med"
     printf "  🔵 LOW:      %s (allowed)\n" "$gate_low"
+    print_blocking_violations
     printf "\n  Action: Fix CRITICAL/HIGH violations in staged files.\n"
     printf "\n"
     print_final_signature
@@ -802,6 +850,7 @@ summarize_all() {
           printf "  MEDIUM violations (repository):   %s\n" "$gate_med"
           printf "  LOW violations (repository):      %s\n" "$gate_low"
           printf "  ESLint errors (repository):       %s\n" "$gate_es"
+          print_blocking_violations
           printf "  Action: Clean entire repository before committing.\n"
         else
           printf "%b[COMMIT BLOCKED - STRICT STAGING]%b\n" "$RED" "$NC"
@@ -809,6 +858,7 @@ summarize_all() {
           printf "  HIGH violations in staging:     %s\n" "$gate_high"
           printf "  MEDIUM violations in staging:   %s\n" "$gate_med"
           printf "  LOW violations in staging:      %s\n" "$gate_low"
+          print_blocking_violations
           printf "  Action: Fix violations in staged files before committing.\n"
         fi
         printf "\n"
@@ -822,6 +872,7 @@ summarize_all() {
         printf "%b[COMMIT BLOCKED - CRITICAL/HIGH]%b\n" "$RED" "$NC"
         printf "  CRITICAL violations in staging: %s\n" "$gate_crit"
         printf "  HIGH violations in staging:     %s\n" "$gate_high"
+        print_blocking_violations
         printf "  Action: Fix critical/high violations in staged files before committing.\n"
         printf "\n"
         print_final_signature