pumuki-ast-hooks 5.5.48 → 5.5.49

package/docs/VIOLATIONS_RESOLUTION_PLAN.md

@@ -9,131 +9,8 @@
 
 ---
 
-## 📊 Executive Summary
-- **Current status:** ⚠️ Acción requerida (0 critical, 0 high, 33 medium, 515 low)
-- **Progress:** 673 → 548 violaciones (-125 tras correcciones y exclusiones afinadas)
-- **Branch:** `develop`
-- **Start date:** 2026-01-05 — **Overall ETA:** 2026-01-15
-- **Goal:** Mantener CRITICAL/HIGH en 0 y reducir MEDIUM/LOW priorizando impacto.
-- **Risks:**
-  1) Cambiar severities no elimina violaciones existentes, solo previene nuevas; 2) Mantener estabilidad de librería; 3) Evitar regressions en AST analysis.
-
-### 🔧 Fix Aplicado: Detección de God Classes Masivas (2026-01-05)
-
-**Problema identificado:** Los archivos masivos de la propia librería (`ast-backend.js` 2061 líneas, `ast-core.js` 613 líneas, `ast-intelligence.js` 715 líneas, `audit-orchestrator.sh` 1188 líneas) NO estaban siendo detectados como God classes debido a exclusiones explícitas en el código.
-
-**Causas raíz:**
-1. Exclusiones en `ast-backend.js` líneas 212-215 que saltaban archivos `/ast-[^/]+\.js$/`
-2. Umbral absoluto `isAbsoluteGod` demasiado restrictivo (requería >600 líneas Y >30 métodos Y >80 complejidad)
-3. Archivos shell no analizados por AST
-
-**Solución implementada:**
-- ✅ Eliminadas exclusiones en `ast-backend.js` (líneas 206-215)
-- ✅ Ajustado umbral híbrido: `>1000 líneas = God class automática`, `>500 líneas + complejidad = God class`
-- ✅ Añadida detección de God scripts en `text-scanner.js` para archivos `.sh/.bash/.zsh`
-
-**Resultado:**
-- God classes detectadas: 8 → **15** (+7)
-- Shell scripts detectados: 0 → **2** (god_script + large_script)
-- Total CRITICAL: 8 → **25**
-
-**Quick references:**
-- [Violations report](../.violations-by-priority.md)
-- [AST summary JSON](../ast-summary.json)
-- [Arquitectura](../ARCHITECTURE.md)
-
----
-
-## 📅 Visual Timeline (estimated dates)
-```mermaid
-gantt
-    title Violations Resolution Phases
-    dateFormat  YYYY-MM-DD
-    section Phase 1: BLOCKERS (CRITICAL + HIGH)
-    Resolve CRITICAL                 :active,  crit1, 2026-01-05, 3d
-    Resolve HIGH                     :done,    high1, after crit1, 1d
-
-    section Phase 2: MEDIUM
-    MEDIUM refactoring               :         med1, after high1, 7d
-
-    section Phase 3: LOW
-    Optimizations and documentation  :         low1, after med1, 5d
-```
-
----
-
-## 🔴 Phase 1: BLOCKER Violations (CRITICAL + HIGH)
-| Status | Severity | Count | Owner | DOD (Definition of Done) | Source |
-|--------|-----------|-------|-------------|--------------------------|--------|
-| ✅ | CRITICAL | 0 | Backend | Mantener CRITICAL en 0 | Audit 2026-01-06 13:56 |
-| ✅ | HIGH | 0 | Backend | Mantener HIGH en 0 | Audit 2026-01-06 13:56 |
-
-**CRITICAL/HIGH actuales:** Ninguna. Mantener vigilancia en nuevas reglas.
-
-**Fixes previos destacados:**
-- Detección de god classes y god scripts en analizadores/shell.
-- Ajustes de severidad para falsas alarmas (mocks en tests, custom_exceptions info, env_separation info, audit_logging info).
-
----
-
-## 🟠 Phase 2: MEDIUM Violations (33)
-| Status | Violation | Count | Owner | DOD | Doc |
-|--------|-----------|-------|-------------|-----|-----|
-| ⏳ | MEDIUM | 33 | Backend | Reducir MEDIUM priorizando reglas de testing y observabilidad | [Medium violations](../docs/medium-violations.md) |
-
-**Top MEDIUM violations:**
-- `backend.error.custom_exceptions`: 108 violaciones
-- `backend.config.missing_env_separation`: 112 violaciones
-- `backend.metrics.missing_prometheus`: 79 violaciones
-- `backend.reliability.missing_bulkhead`: 57 violaciones
-- `backend.testing.mocks`: 40 violaciones
-
----
-
-## 🔵 Phase 3: LOW Violations (602)
-| Status | Violation | Count | Owner | DOD | Doc |
-|--------|-----------|-------|-------------|-----|-----|
-| ⏳ | LOW | 602 | Backend | Reducir LOW con foco en patrones de desarrollo y documentación | [Low violations](../docs/low-violations.md) |
-
----
-
-## 🎯 Top violations (by impact/prioridad actual)
-| Priority | Violation | Count | Notes |
-|----------|-----------|-------|------|
-| P0 | backend.config.missing_env_separation | 112 | Configuración sin separación por entorno |
-| P0 | backend.error.custom_exceptions | 108 | Excepciones personalizadas sin estructura |
-| P0 | backend.event.handler | 86 | Event handlers sin idempotencia garantizada |
-| P0 | backend.metrics.missing_prometheus | 79 | Métricas de aplicación faltantes |
-| P1 | backend.reliability.missing_bulkhead | 57 | Patrón de resiliencia faltante |
-| P1 | backend.testing.mocks | 40 | Uso de mocks en tests |
-| P1 | backend.observability.missing_prometheus | 37 | Métricas de observabilidad |
-| P1 | backend.auth.missing_cors | 25 | CORS no configurado |
-| P1 | backend.security.missing_audit_logging | 22 | Logging de auditoría faltante |
-| P1 | shell.maintainability.large_script | 1 | Script extenso en infraestructura |
-
----
-
-## 📈 Progress Metrics
-| Phase | Total | Completed | % |
-|------|-------|------------|---|
-| BLOCKERS (CRITICAL + HIGH) | 0 | 0 | 0% |
-| MEDIUM | 33 | 0 | 0% |
-| LOW | 515 | 0 | 0% |
-| **TOTAL** | **548** | **0** | **0%** |
-
-**Updated risks:**
-1) MEDIUM/LOW pueden requerir cambios más invasivos en la arquitectura; 2) Mantener compatibilidad backward en librería; 3) Evitar impacto en performance de análisis AST.
-
-**Collaborative notes:**
-- Actual scan (audit 2026-01-05 23:35): 645 violaciones (1 CRIT, 1 HIGH, 41 MED, 602 LOW) - reducidas de 673 (-28 total).
-- Falsos positivos corregidos: backend.security.plain_password, backend.performance.n_plus_one, backend.error.exposes, backend.error.empty_catch.
-- God scripts de infraestructura excluidos: audit-orchestrator, git-wrapper, gitflow-enforcer (-4 CRITICAL).
-- Analyzers/detectors/scanners/parsers excluidos de god classes: iOS/Android/Frontend analyzers, SourceKittenParser (-10 CRITICAL).
-- Services de infraestructura excluidos de god classes: EvidenceMonitor.js (-1 CRITICAL).
-- N+1 queries en infraestructura AST excluidos (-1 CRITICAL).
-- Archivos principales AST excluidos de god classes: ast-ios.js, ast-frontend.js, ast-backend.js, ast-android.js, text-scanner.js (sin cambios en conteo CRITICAL/HIGH).
-- MEDIUM violations reducidas de 47 a 41 (-6) como efecto secundario de las correcciones.
-- CRITICAL restantes: 1 (no identificado tras múltiples intentos de análisis y correcciones).
-- HIGH restantes: 1 (no identificado tras múltiples intentos de análisis y correcciones).
-- Foco siguiente: MEDIUM violations restantes (custom_exceptions, env_separation, prometheus).
-- Mantener `bash scripts/hooks-system/bin/update-evidence.sh --auto` tras fixes.
+## ✅ Tasks (by severity)
+- ⏳ 🔴 **CRITICAL** — 11
+- ✅ 🟠 **HIGH** — 0
+- ⏳ � **MEDIUM** — 34
+- ⏳ � **LOW** — 501

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki-ast-hooks",
-  "version": "5.5.48",
+  "version": "5.5.49",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {
@@ -134,4 +134,4 @@
     "./skills": "./skills/skill-rules.json",
     "./hooks": "./hooks/index.js"
   }
-}
+}

package/scripts/hooks-system/.audit_tmp/hook-metrics.jsonl

@@ -42,3 +42,63 @@
 {"timestamp":1767729940607,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
 {"timestamp":1767729940607,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
 {"timestamp":1767729940607,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767733906067,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767733906068,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767733906068,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767733906068,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767736064942,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767736064942,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767736064942,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767736064942,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767736302382,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767736302382,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767736302382,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767736302382,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737160652,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737160652,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767737160652,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767737160652,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737286027,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737286027,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767737286027,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767737286027,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737360415,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737360415,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767737360415,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767737360415,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737582187,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737582188,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767737582188,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767737582188,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737730369,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767737730369,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767737730369,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767737730369,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738078809,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738078809,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767738078809,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767738078809,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738286461,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738286461,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767738286461,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767738286461,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738456212,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738456212,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767738456212,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767738456212,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738461405,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767738461406,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767738461406,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767738461406,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739376705,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739376706,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767739376706,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767739376706,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739502661,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739502662,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767739502662,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767739502662,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739777882,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1767739777882,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1767739777882,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1767739777882,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}

package/scripts/hooks-system/infrastructure/orchestration/intelligent-audit.js

@@ -235,6 +235,28 @@ function toRepoRelativePath(filePath) {
   return normalized;
 }
 
+function isAuditTmpPath(repoRelativePath) {
+  const normalized = normalizePathForMatch(repoRelativePath);
+  return normalized.startsWith('.audit_tmp/') || normalized.includes('/.audit_tmp/');
+}
+
+function isViolationInStagedFiles(violationPath, stagedSet) {
+  if (!violationPath) {
+    return false;
+  }
+
+  const repoRelative = toRepoRelativePath(violationPath);
+  if (!repoRelative) {
+    return false;
+  }
+
+  if (isAuditTmpPath(repoRelative)) {
+    return false;
+  }
+
+  return stagedSet.has(repoRelative);
+}
+
 function resolveAuditTmpDir() {
   const configured = (env.get('AUDIT_TMP', '') || '').trim();
   if (configured.length > 0) {
@@ -273,18 +295,7 @@ async function runIntelligentAudit() {
 
       const stagedViolations = rawViolations.filter(v => {
         const violationPath = toRepoRelativePath(v.filePath || v.file || '');
-        if (!violationPath) {
-          return false;
-        }
-        if (stagedSet.has(violationPath)) {
-          return true;
-        }
-        for (const sf of stagedSet) {
-          if (sf && (violationPath === sf || violationPath.endsWith('/' + sf) || violationPath.includes('/' + sf))) {
-            return true;
-          }
-        }
-        return false;
+        return isViolationInStagedFiles(violationPath, stagedSet);
       });
 
       console.log(`[Intelligent Audit] Gate scope: STAGING (${stagedFiles.length} files)`);
@@ -683,4 +694,4 @@ if (require.main === module) {
   });
 }
 
-module.exports = { runIntelligentAudit };
+module.exports = { runIntelligentAudit, isViolationInStagedFiles, toRepoRelativePath };