pumuki-ast-hooks 5.6.4 → 5.6.6

package/README.md

@@ -100,6 +100,9 @@ Pumuki addresses these issues by **removing trust from the AI** and replacing it
 * **In-Memory AST Analysis**: `analyzeCodeInMemory()` for proposed code validation
 * **IDE Hooks**: Real-time blocking in Windsurf, Claude Code, OpenCode
 
+<img src="./assets/Hook_02.png" alt="Windsurf pre-write hook output" width="100%" />
+
+<img src="./assets/Hook_01.png" alt="Windsurf post-write hook output" width="100%" />
 ### NEW: MCP Integration
 
 * **MCP Server**: Full Model Context Protocol integration
@@ -107,6 +110,8 @@ Pumuki addresses these issues by **removing trust from the AI** and replacing it
 * **pre_flight_check**: Validate proposed code before writing
 * **set_human_intent**: Track user goals across sessions
 
+![MCP ai_gate_check BLOCKED example](docs/images/ai_gate.png)
+
 ### NEW: Cognitive Layers
 
 * **Human Intent**: Persistent user goal tracking with confidence levels
@@ -122,15 +127,15 @@ Pumuki addresses these issues by **removing trust from the AI** and replacing it
 
 ## Visual Overview
 
-<img src="https://raw.githubusercontent.com/SwiftEnProfundidad/ast-intelligence-hooks/main/docs/images/ast_intelligence_01.svg" alt="AST Intelligence System Overview" width="100%" />
+![AST Intelligence System Overview](docs/images/ast_intelligence_01.svg)
 
-<img src="https://raw.githubusercontent.com/SwiftEnProfundidad/ast-intelligence-hooks/main/docs/images/ast_intelligence_02.svg" alt="AST Intelligence Workflow" width="100%" />
+![AST Intelligence Workflow](docs/images/ast_intelligence_02.svg)
 
-<img src="https://raw.githubusercontent.com/SwiftEnProfundidad/ast-intelligence-hooks/main/docs/images/ast_intelligence_03.svg" alt="AST Intelligence Audit - Part 1" width="100%" />
+![AST Intelligence Audit - Part 1](docs/images/ast_intelligence_03.svg)
 
-<img src="https://raw.githubusercontent.com/SwiftEnProfundidad/ast-intelligence-hooks/main/docs/images/ast_intelligence_04.svg" alt="AST Intelligence Audit - Part 2" width="100%" />
+![AST Intelligence Audit - Part 2](docs/images/ast_intelligence_04.svg)
 
-<img src="https://raw.githubusercontent.com/SwiftEnProfundidad/ast-intelligence-hooks/main/docs/images/ast_intelligence_05.svg" alt="AST Intelligence Audit - Part 3" width="100%" />
+![AST Intelligence Audit - Part 3](docs/images/ast_intelligence_05.svg)
 
 ---
 
@@ -251,6 +256,7 @@ if (result.hasCritical) {
 * Detect critical violations before code is written
 * Platform-aware analysis (iOS, Android, Backend, Frontend)
 * Integration with IDE hooks for real-time blocking
+![Pre-flight check example](docs/images/pre-flight-check.png)
 
 ---
 
@@ -345,6 +351,26 @@ AI generates code → IDE Hook intercepts → AST Intelligence analyzes →
 
 > **Note**: For IDEs without pre-write hooks, the Git pre-commit hook provides 100% enforcement at commit time.
 
+### PreToolUse Guard (`hooks/pre-tool-use-guard.ts`)
+
+This repository includes a **PreToolUse guard hook** that runs *before* `Edit` / `Write` / `MultiEdit` operations (where supported by the IDE integration).
+
+When it runs:
+
+* In IDEs that support **PreToolUse** interception (e.g. Claude Code integrations)
+* Before code is written to disk
+
+What it does:
+
+* Analyzes the **proposed code** using `analyzeCodeInMemory()`.
+* If the IDE only provides **partial diffs** (`tool_input.edits`), the hook reconstructs the final candidate file content by applying `old_string → new_string` edits over the current file content, then analyzes the result.
+* **Blocks** the operation when **CRITICAL/HIGH** violations are detected (exit code `2`).
+
+Why it exists:
+
+* To ensure **enforcement happens before write**, not only at commit time.
+* To prevent silent injection of high-impact patterns (e.g. empty `catch {}`) during AI-assisted edits.
+
 See [`scripts/hooks-system/infrastructure/cascade-hooks/README.md`](./scripts/hooks-system/infrastructure/cascade-hooks/README.md) for installation instructions.
 
 ---
@@ -384,6 +410,23 @@ Initialize AI evidence:
 npx ai-start
 ```
 
+### What is `ai-start` and when should you run it?
+
+`ai-start` refreshes the project AI context and updates `.AI_EVIDENCE.json` so the system has a **fresh, auditable source of truth** before any AI-assisted work.
+
+Run it when:
+
+* **Starting a new day/session** (fresh context)
+* **After pulling a lot of changes** (context drift prevention)
+* **After fixing blocking violations** (to refresh gate + evidence)
+
+What it does:
+
+* Detects active platforms (iOS/Android/Backend/Frontend)
+* Refreshes the evidence file (`.AI_EVIDENCE.json`)
+* Helps the AI gate operate deterministically (block/allow)
+
+![ai-start execution example](docs/images/ai-start.png)
 ---
 
 ## Installation & Lifecycle Commands

package/hooks/pre-tool-use-guard.ts

@@ -1,6 +1,9 @@
 #!/usr/bin/env node
 import { readFileSync, existsSync } from 'fs';
 import { join } from 'path';
+import { createRequire } from 'module';
+
+const require = createRequire(import.meta.url);
 
 interface ToolInput {
     tool_name: string;
@@ -9,6 +12,10 @@ interface ToolInput {
         target_file?: string;
         contents?: string;
         new_string?: string;
+        edits?: Array<{
+            old_string?: string;
+            new_string?: string;
+        }>;
     };
 }
 
@@ -58,6 +65,39 @@ function matchesPathPattern(filePath: string, patterns: string[]): boolean {
     return false;
 }
 
+function resolveFilePath(projectDir: string, filePath: string): string {
+    if (!filePath) return filePath;
+    if (filePath.startsWith('/')) return filePath;
+    return join(projectDir, filePath);
+}
+
+function applyStringEdits(baseContent: string, edits: Array<{ old_string?: string; new_string?: string }>): {
+    content: string;
+    appliedCount: number;
+} {
+    let content = baseContent;
+    let appliedCount = 0;
+
+    for (const edit of edits) {
+        const oldStr = edit?.old_string;
+        const newStr = edit?.new_string;
+        if (!newStr) continue;
+
+        if (oldStr && content.includes(oldStr)) {
+            content = content.replace(oldStr, newStr);
+            appliedCount += 1;
+            continue;
+        }
+
+        // If we can't locate old_string (or it's missing), we cannot safely place the change.
+        // Best-effort fallback: append to end so AST still sees the new code.
+        content = `${content}\n${newStr}`;
+        appliedCount += 1;
+    }
+
+    return { content, appliedCount };
+}
+
 function shouldSkip(skipConditions?: SkipConditions, filePath?: string): boolean {
     if (!skipConditions) {
         return false;
@@ -94,7 +134,71 @@ async function main() {
         }
 
         const projectDir = process.env.CLAUDE_PROJECT_DIR || process.cwd();
-        const { getSkillRulesPath } = await import('./getSkillRulesPath.js');
+        const resolvedFilePath = resolveFilePath(projectDir, filePath);
+
+        const proposedCodeDirect = (input.tool_input?.contents || input.tool_input?.new_string || '').trim();
+        const isTestFile = /\.(spec|test)\.(js|ts|swift|kt)$/i.test(resolvedFilePath);
+
+        let candidateCode = proposedCodeDirect;
+        if (!candidateCode) {
+            const edits = Array.isArray(input.tool_input?.edits) ? input.tool_input.edits : [];
+            if (edits.length > 0) {
+                let baseContent = '';
+                try {
+                    if (existsSync(resolvedFilePath)) {
+                        baseContent = readFileSync(resolvedFilePath, 'utf8');
+                    }
+                } catch {
+                    baseContent = '';
+                }
+
+                const applied = applyStringEdits(baseContent, edits);
+                candidateCode = (applied.content || '').trim();
+            }
+        }
+
+        if (!isTestFile && candidateCode.length > 0) {
+            try {
+                const { analyzeCodeInMemory } = require(join(projectDir, 'scripts', 'hooks-system', 'infrastructure', 'ast', 'ast-core'));
+                const analysis = analyzeCodeInMemory(candidateCode, resolvedFilePath);
+                if (analysis && (analysis.hasCritical || analysis.hasHigh)) {
+                    const violations = Array.isArray(analysis.violations)
+                        ? analysis.violations.filter((v: unknown) => {
+                            if (!v || typeof v !== 'object') return false;
+                            const severity = (v as { severity?: unknown }).severity;
+                            return severity === 'CRITICAL' || severity === 'HIGH';
+                        })
+                        : [];
+
+                    const message = [
+                        '',
+                        '🚫 AST INTELLIGENCE BLOCKED THIS WRITE',
+                        `File: ${resolvedFilePath}`,
+                        ...violations.map((v: unknown) => {
+                            const obj = (v && typeof v === 'object')
+                                ? (v as { ruleId?: unknown; rule?: unknown; message?: unknown })
+                                : {};
+                            const ruleId = (typeof obj.ruleId === 'string' && obj.ruleId.length > 0)
+                                ? obj.ruleId
+                                : (typeof obj.rule === 'string' && obj.rule.length > 0)
+                                    ? obj.rule
+                                    : 'unknown';
+                            const message = typeof obj.message === 'string' ? obj.message : '';
+                            return `  ❌ [${ruleId}] ${message}`;
+                        }),
+                        ''
+                    ].join('\n');
+                    process.stderr.write(message);
+                    process.exit(2);
+                }
+            } catch (error) {
+                if (process.env.DEBUG) {
+                    process.stderr.write(`PreToolUse AST check failed: ${error instanceof Error ? error.message : String(error)}\n`);
+                }
+            }
+        }
+
+        const { getSkillRulesPath } = await import('./getSkillRulesPath.ts');
         const rulesPath = getSkillRulesPath(projectDir);
 
         if (!rulesPath || !existsSync(rulesPath)) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki-ast-hooks",
-  "version": "5.6.4",
+  "version": "5.6.6",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {
@@ -134,4 +134,4 @@
     "./skills": "./skills/skill-rules.json",
     "./hooks": "./hooks/index.js"
   }
-}
+}

package/scripts/hooks-system/.audit-reports/auto-recovery.log

@@ -0,0 +1,3 @@
+{"timestamp":"2026-01-11T00:41:26.979Z","level":"info","component":"AutoRecovery","event":"NotificationCenterService shutdown","data":{"totalEnqueued":0,"totalSent":0,"totalDeduplicated":0,"totalCooldownSkipped":0,"totalFailed":0,"totalRetries":0,"queueSize":0,"deduplication":{"size":0},"cooldowns":{"activeCooldowns":0}},"context":{}}
+{"timestamp":"2026-01-11T00:47:24.400Z","level":"info","component":"AutoRecovery","event":"NotificationCenterService shutdown","data":{"totalEnqueued":0,"totalSent":0,"totalDeduplicated":0,"totalCooldownSkipped":0,"totalFailed":0,"totalRetries":0,"queueSize":0,"deduplication":{"size":0},"cooldowns":{"activeCooldowns":0}},"context":{}}
+{"timestamp":"2026-01-11T00:48:07.599Z","level":"info","component":"AutoRecovery","event":"NotificationCenterService shutdown","data":{"totalEnqueued":0,"totalSent":0,"totalDeduplicated":0,"totalCooldownSkipped":0,"totalFailed":0,"totalRetries":0,"queueSize":0,"deduplication":{"size":0},"cooldowns":{"activeCooldowns":0}},"context":{}}

package/scripts/hooks-system/.audit-reports/install-wizard.log

@@ -0,0 +1,12 @@
+{"timestamp":"2026-01-11T00:41:26.266Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_START","data":{"repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"},"context":{}}
+{"timestamp":"2026-01-11T00:41:26.274Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_CONFIG_EXISTS","data":{"configPath":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.hook-system/config.json"},"context":{}}
+{"timestamp":"2026-01-11T00:41:26.275Z","level":"error","component":"InstallWizard","event":"INSTALL_WIZARD_SYMLINK_FAILED","data":{"error":"EEXIST: file already exists, symlink '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/scripts/hooks-system/bin/guard-supervisor.js' -> '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.git/hooks/guard-supervisor'"},"context":{}}
+{"timestamp":"2026-01-11T00:41:26.275Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_COMPLETED","data":{},"context":{}}
+{"timestamp":"2026-01-11T00:47:24.957Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_START","data":{"repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"},"context":{}}
+{"timestamp":"2026-01-11T00:47:24.965Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_CONFIG_EXISTS","data":{"configPath":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.hook-system/config.json"},"context":{}}
+{"timestamp":"2026-01-11T00:47:24.965Z","level":"error","component":"InstallWizard","event":"INSTALL_WIZARD_SYMLINK_FAILED","data":{"error":"EEXIST: file already exists, symlink '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/scripts/hooks-system/bin/guard-supervisor.js' -> '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.git/hooks/guard-supervisor'"},"context":{}}
+{"timestamp":"2026-01-11T00:47:24.965Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_COMPLETED","data":{},"context":{}}
+{"timestamp":"2026-01-11T00:48:08.380Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_START","data":{"repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"},"context":{}}
+{"timestamp":"2026-01-11T00:48:08.399Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_CONFIG_EXISTS","data":{"configPath":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.hook-system/config.json"},"context":{}}
+{"timestamp":"2026-01-11T00:48:08.400Z","level":"error","component":"InstallWizard","event":"INSTALL_WIZARD_SYMLINK_FAILED","data":{"error":"EEXIST: file already exists, symlink '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/scripts/hooks-system/bin/guard-supervisor.js' -> '/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system/.git/hooks/guard-supervisor'"},"context":{}}
+{"timestamp":"2026-01-11T00:48:08.400Z","level":"info","component":"InstallWizard","event":"INSTALL_WIZARD_COMPLETED","data":{},"context":{}}

package/scripts/hooks-system/.audit_tmp/hook-metrics.jsonl

@@ -230,3 +230,75 @@
 {"timestamp":1768038658259,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
 {"timestamp":1768038658259,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
 {"timestamp":1768038658259,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086977,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086978,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092086979,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444397,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444398,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444399,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444400,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092444400,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092444400,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092444400,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487594,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487595,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487595,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487595,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487596,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487597,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487597,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487597,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487597,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487597,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487598,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487598,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487598,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487598,"hook":"audit_logger","operation":"constructor","status":"started","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}
+{"timestamp":1768092487598,"hook":"audit_logger","operation":"ensure_dir","status":"started"}
+{"timestamp":1768092487599,"hook":"audit_logger","operation":"ensure_dir","status":"success"}
+{"timestamp":1768092487599,"hook":"audit_logger","operation":"constructor","status":"success","repoRoot":"/Users/juancarlosmerlosalbarracin/Developer/Projects/ast-intelligence-hooks/scripts/hooks-system"}

package/scripts/hooks-system/bin/__tests__/cli-audit-no-stack.spec.js

@@ -0,0 +1,22 @@
+jest.mock('child_process', () => ({
+    execSync: jest.fn(() => {
+        const err = new Error('audit failed');
+        err.status = 1;
+        throw err;
+    })
+}));
+
+describe('cli audit', () => {
+    it('exits with the same status instead of throwing a stacktrace', () => {
+        const cli = require('../cli.js');
+
+        const exitSpy = jest.spyOn(process, 'exit').mockImplementation((code) => {
+            throw new Error(`process.exit:${code}`);
+        });
+
+        expect(() => cli.commands.audit()).toThrow('process.exit:1');
+        expect(exitSpy).toHaveBeenCalledWith(1);
+
+        exitSpy.mockRestore();
+    });
+});

package/scripts/hooks-system/bin/cli.js

@@ -47,6 +47,89 @@ function resolveRepoRoot() {
   return process.cwd();
 }
 
+function getCurrentBranchSafe() {
+  try {
+    const output = execSync('git branch --show-current', { encoding: 'utf8', stdio: ['ignore', 'pipe', 'ignore'] });
+    return output.trim() || null;
+  } catch (e) {
+    return null;
+  }
+}
+
+function getStagedFilesSafe() {
+  try {
+    const output = execSync('git diff --cached --name-only', { encoding: 'utf8', stdio: ['ignore', 'pipe', 'ignore'] });
+    return output.trim().split('\n').filter(Boolean);
+  } catch (e) {
+    return [];
+  }
+}
+
+function proposeHumanIntent({ evidence, branch, stagedFiles }) {
+  const safeEvidence = (evidence && typeof evidence === 'object') ? evidence : {};
+  const safeBranch = branch || safeEvidence.current_context?.current_branch || 'unknown';
+  const staged = Array.isArray(stagedFiles) ? stagedFiles : [];
+
+  const detectedPlatforms = ['ios', 'android', 'backend', 'frontend']
+    .filter(p => safeEvidence.platforms && safeEvidence.platforms[p] && safeEvidence.platforms[p].detected);
+
+  const gateStatus = safeEvidence.ai_gate?.status || safeEvidence.severity_metrics?.gate_status || 'unknown';
+
+  const branchLower = String(safeBranch).toLowerCase();
+  const hasIosTouch = staged.some(f => String(f).toLowerCase().endsWith('.swift')) || detectedPlatforms.includes('ios');
+  const hasAndroidTouch = staged.some(f => /\.(kt|kts|java)$/i.test(String(f))) || detectedPlatforms.includes('android');
+  const hasBackendTouch = staged.some(f => String(f).toLowerCase().includes('backend') || String(f).toLowerCase().includes('services/')) || detectedPlatforms.includes('backend');
+  const hasFrontendTouch = staged.some(f => String(f).toLowerCase().includes('frontend') || /\.(tsx?|jsx?)$/i.test(String(f))) || detectedPlatforms.includes('frontend');
+
+  const platforms = [
+    hasIosTouch ? 'ios' : null,
+    hasAndroidTouch ? 'android' : null,
+    hasBackendTouch ? 'backend' : null,
+    hasFrontendTouch ? 'frontend' : null
+  ].filter(Boolean);
+
+  const platformLabel = platforms.length > 0 ? platforms.join('+') : (detectedPlatforms.length > 0 ? detectedPlatforms.join('+') : 'repo');
+
+  let primaryGoal = `Continue work on ${platformLabel} changes`;
+  if (gateStatus === 'BLOCKED') {
+    primaryGoal = `Unblock AI gate by fixing ${platformLabel} violations`;
+  }
+
+  if (branchLower.startsWith('fix/') || branchLower.startsWith('bugfix/') || branchLower.startsWith('hotfix/')) {
+    primaryGoal = gateStatus === 'BLOCKED'
+      ? `Unblock AI gate by fixing ${platformLabel} violations (bugfix)`
+      : `Fix ${platformLabel} issues on ${safeBranch}`;
+  }
+
+  const secondary = [];
+  if (gateStatus === 'BLOCKED') {
+    secondary.push('Fix HIGH/CRITICAL violations first');
+  }
+  if (platforms.includes('ios')) {
+    secondary.push('Keep tests compliant (makeSUT + trackForMemoryLeaks)');
+  }
+
+  const constraints = [];
+  constraints.push('Do not bypass hooks (--no-verify)');
+  constraints.push('Follow platform rules (rules*.mdc)');
+
+  const confidence = platforms.length > 0 || detectedPlatforms.length > 0 ? 'medium' : 'low';
+
+  return {
+    primary_goal: primaryGoal,
+    secondary_goals: secondary,
+    non_goals: [],
+    constraints,
+    confidence_level: confidence,
+    derived_from: {
+      branch: safeBranch,
+      staged_files_count: staged.length,
+      platforms: platforms.length > 0 ? platforms : detectedPlatforms,
+      gate_status: gateStatus
+    }
+  };
+}
+
 function buildHealthSnapshot() {
   const repoRoot = resolveRepoRoot();
   const result = {
@@ -136,7 +219,55 @@ function buildHealthSnapshot() {
 
 const commands = {
   audit: () => {
-    execSync(`bash ${path.join(HOOKS_ROOT, 'presentation/cli/audit.sh')}`, { stdio: 'inherit' });
+    try {
+      execSync(`bash ${path.join(HOOKS_ROOT, 'presentation/cli/audit.sh')}`, { stdio: 'inherit' });
+    } catch (err) {
+      const status = (err && typeof err.status === 'number') ? err.status : 1;
+      process.exit(status);
+    }
+  },
+
+  'wrap-up': () => {
+    commands['evidence:full-update']();
+    try {
+      const repoRoot = resolveRepoRoot();
+      const evidencePath = path.join(repoRoot, '.AI_EVIDENCE.json');
+      if (!fs.existsSync(evidencePath)) {
+        return;
+      }
+
+      let evidence = {};
+      try {
+        evidence = JSON.parse(fs.readFileSync(evidencePath, 'utf8'));
+      } catch {
+        if (process.env.DEBUG) {
+          process.stderr.write('[wrap-up] Failed to parse .AI_EVIDENCE.json\n');
+        }
+        return;
+      }
+
+      const branch = getCurrentBranchSafe();
+      const stagedFiles = getStagedFilesSafe();
+      const proposed = proposeHumanIntent({ evidence, branch, stagedFiles });
+
+      console.log('\n💡 Suggested Human Intent (proposal only):');
+      console.log(`  Primary Goal: ${proposed.primary_goal}`);
+      console.log(`  Secondary:    ${(proposed.secondary_goals || []).join(', ') || '(none)'}`);
+      console.log(`  Constraints:  ${(proposed.constraints || []).join(', ') || '(none)'}`);
+      console.log(`  Confidence:   ${proposed.confidence_level || 'unset'}`);
+      console.log(`  Branch:       ${(proposed.derived_from && proposed.derived_from.branch) || '(unknown)'}`);
+      console.log(`  Gate:         ${(proposed.derived_from && proposed.derived_from.gate_status) || '(unknown)'}`);
+
+      const suggestedCmd = `ast-hooks intent set --goal="${proposed.primary_goal}" --confidence=${proposed.confidence_level || 'medium'} --expires=24h`;
+      console.log('\n✅ To apply it, run:');
+      console.log(`  ${suggestedCmd}`);
+      console.log('');
+    } catch (error) {
+      if (process.env.DEBUG) {
+        process.stderr.write(`[wrap-up] Intent suggestion failed: ${error && error.message ? error.message : String(error)}\n`);
+      }
+      // Best-effort: wrap-up should succeed even if suggestion fails
+    }
   },
 
   'evidence:update': () => {
@@ -326,6 +457,38 @@ const commands = {
       return;
     }
 
+    if (subcommand === 'suggest') {
+      if (!fs.existsSync(evidencePath)) {
+        console.log('❌ No .AI_EVIDENCE.json found');
+        process.exit(1);
+      }
+
+      let evidence = {};
+      try {
+        evidence = JSON.parse(fs.readFileSync(evidencePath, 'utf8'));
+      } catch (e) {
+        console.log(`❌ Failed to read .AI_EVIDENCE.json: ${e.message}`);
+        process.exit(1);
+      }
+
+      const branch = getCurrentBranchSafe();
+      const stagedFiles = getStagedFilesSafe();
+      const proposed = proposeHumanIntent({ evidence, branch, stagedFiles });
+
+      console.log('\n💡 Suggested Human Intent (proposal only):');
+      console.log(`  Primary Goal: ${proposed.primary_goal}`);
+      console.log(`  Secondary:    ${(proposed.secondary_goals || []).join(', ') || '(none)'}`);
+      console.log(`  Constraints:  ${(proposed.constraints || []).join(', ') || '(none)'}`);
+      console.log(`  Confidence:   ${proposed.confidence_level || 'unset'}`);
+      console.log(`  Branch:       ${(proposed.derived_from && proposed.derived_from.branch) || '(unknown)'}`);
+      console.log(`  Gate:         ${(proposed.derived_from && proposed.derived_from.gate_status) || '(unknown)'}`);
+
+      const suggestedCmd = `ast-hooks intent set --goal="${proposed.primary_goal}" --confidence=${proposed.confidence_level || 'medium'} --expires=24h`;
+      console.log('\n✅ To apply it, run:');
+      console.log(`  ${suggestedCmd}`);
+      console.log('');
+      return;
+    }
     if (subcommand === 'clear') {
       if (!fs.existsSync(evidencePath)) {
         console.log('❌ No .AI_EVIDENCE.json found');
@@ -350,7 +513,7 @@ const commands = {
       return;
     }
 
-    console.log('❌ Unknown subcommand. Use: show, set, clear');
+    console.log('❌ Unknown subcommand. Use: show, suggest, set, clear');
     process.exit(1);
   },
 
@@ -363,24 +526,27 @@ Usage:
 
 Commands:
   audit            Run interactive audit menu
+  wrap-up          End of day: refresh evidence + propose human intent (no writes)
   ast              Run AST Intelligence analysis only
   install          Install hooks in new project
   verify-policy    Verify --no-verify policy compliance
   progress         Show violation progress report
   health           Show hook-system health snapshot (JSON)
   gitflow          Check Git Flow compliance (check|reset)
-  intent           Manage human intent (show|set|clear)
+  intent           Manage human intent (show|suggest|set|clear)
   help             Show this help message
   version          Show version
 
 Examples:
   ast-hooks audit
+  ast-hooks wrap-up
   ast-hooks ast
   ast-hooks install
   ast-hooks verify-policy
   ast-hooks progress
   ast-hooks health
   ast-hooks intent show
+  ast-hooks intent suggest
   ast-hooks intent set --goal="Implement feature X" --expires=24h
   ast-hooks intent clear
 
@@ -408,9 +574,12 @@ Documentation:
   }
 };
 
-if (!command || !commands[command]) {
-  commands.help();
-  process.exit(command ? 1 : 0);
+if (require.main === module) {
+  if (!command || !commands[command]) {
+    commands.help();
+    process.exit(command ? 1 : 0);
+  }
+  commands[command]();
 }
 
-commands[command]();
+module.exports = { commands };

package/scripts/hooks-system/bin/update-evidence.sh

@@ -26,3 +26,11 @@ fi
 
 AUTO_EVIDENCE_TRIGGER="$AUTO_TRIGGER" AUTO_EVIDENCE_REASON="$AUTO_REASON" AUTO_EVIDENCE_SUMMARY="$AUTO_SUMMARY" \
   node "$CLI" evidence:full-update
+
+EXIT_CODE=$?
+if [[ "$EXIT_CODE" -ne 0 ]]; then
+  echo " Evidence updated but gate reported violations (exit code: $EXIT_CODE)." >&2
+  exit 0
+fi
+
+exit 0