pumuki 6.3.216 → 6.3.218

package/core/facts/detectors/text/ios.test.ts

@@ -45,6 +45,7 @@ import {
   hasSwiftNavigationViewUsage,
   hasSwiftNonIBOutletImplicitlyUnwrappedOptionalUsage,
   hasSwiftObservableObjectUsage,
+  hasSwiftOnAppearTaskUsage,
   hasSwiftOnTapGestureUsage,
   hasSwiftOperationQueueUsage,
   hasSwiftContainsUserFilterUsage,
@@ -186,6 +187,43 @@ Task {
   assert.equal(hasSwiftTaskDetachedUsage(negative), false);
 });
 
+test('hasSwiftOnAppearTaskUsage detecta Task dentro de onAppear y preserva task modifier', () => {
+  const source = `
+struct FeedView: View {
+  var body: some View {
+    List(items) { item in
+      Text(item.title)
+    }
+    .onAppear {
+      Task {
+        await viewModel.load()
+      }
+    }
+  }
+}
+`;
+  const safe = `
+struct FeedView: View {
+  var body: some View {
+    List(items) { item in
+      Text(item.title)
+    }
+    .task {
+      await viewModel.load()
+    }
+    .onAppear {
+      analytics.trackScreen()
+    }
+    let text = ".onAppear { Task { await load() } }"
+    // .onAppear { Task { await load() } }
+  }
+}
+`;
+
+  assert.equal(hasSwiftOnAppearTaskUsage(source), true);
+  assert.equal(hasSwiftOnAppearTaskUsage(safe), false);
+});
+
 test('hasSwiftStrongDelegateReferenceUsage detecta delegates fuertes y preserva weak delegates', () => {
   const positive = `
 final class CheckoutCoordinator {

package/core/facts/detectors/text/ios.ts

@@ -437,6 +437,11 @@ export const hasSwiftTaskDetachedUsage = (source: string): boolean => {
   });
 };
 
+export const hasSwiftOnAppearTaskUsage = (source: string): boolean => {
+  const sanitized = sanitizeSwiftSourceForMultilineRegex(source);
+  return /\.onAppear\s*\{[\s\S]{0,500}?\bTask\s*(?:\([^)]*\))?\s*\{/.test(sanitized);
+};
+
 export const hasSwiftStrongDelegateReferenceUsage = (source: string): boolean => {
   const delegatePropertyPattern =
     /\b(?:var|let)\s+(?:[A-Za-z_][A-Za-z0-9_]*(?:Delegate|DataSource)|delegate|dataSource)\s*:\s*(?:any\s+)?[A-Za-z_][A-Za-z0-9_]*(?:Delegate|DataSource)\b/;

package/core/facts/extractHeuristicFacts.ts

@@ -646,6 +646,7 @@ const textDetectorRegistry: ReadonlyArray<TextDetectorRegistryEntry> = [
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftDispatchSemaphoreUsage, ruleId: 'heuristics.ios.dispatchsemaphore.ast', code: 'HEURISTICS_IOS_DISPATCHSEMAPHORE_AST', message: 'AST heuristic detected DispatchSemaphore usage.' },
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftOperationQueueUsage, ruleId: 'heuristics.ios.operation-queue.ast', code: 'HEURISTICS_IOS_OPERATION_QUEUE_AST', message: 'AST heuristic detected OperationQueue usage.' },
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftTaskDetachedUsage, ruleId: 'heuristics.ios.task-detached.ast', code: 'HEURISTICS_IOS_TASK_DETACHED_AST', message: 'AST heuristic detected Task.detached usage.' },
+  { platform: 'ios', pathCheck: isIOSPresentationPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftOnAppearTaskUsage, ruleId: 'heuristics.ios.swiftui.onappear-task.ast', code: 'HEURISTICS_IOS_SWIFTUI_ONAPPEAR_TASK_AST', message: 'AST heuristic detected Task launched from SwiftUI onAppear; .task/.task(id:) provides lifecycle-aware cancellation.' },
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftStrongDelegateReferenceUsage, ruleId: 'heuristics.ios.memory.strong-delegate.ast', code: 'HEURISTICS_IOS_MEMORY_STRONG_DELEGATE_AST', message: 'AST heuristic detected a strong delegate/dataSource reference; weak delegates remain the preferred baseline to avoid retain cycles.' },
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftStrongSelfEscapingClosureUsage, ruleId: 'heuristics.ios.memory.strong-self-escaping-closure.ast', code: 'HEURISTICS_IOS_MEMORY_STRONG_SELF_ESCAPING_CLOSURE_AST', message: 'AST heuristic detected strong self capture in an escaping iOS closure; weak or unowned captures remain the preferred baseline when ownership is not explicit.' },
   { platform: 'ios', pathCheck: isIOSSwiftPath, excludePaths: [isSwiftTestPath], detect: TextIOS.hasSwiftCustomSingletonUsage, ruleId: 'heuristics.ios.architecture.custom-singleton.ast', code: 'HEURISTICS_IOS_ARCHITECTURE_CUSTOM_SINGLETON_AST', message: 'AST heuristic detected a custom static shared singleton in iOS production code; dependency injection remains the preferred baseline for app-owned services.' },

package/core/rules/presets/heuristics/ios.ts

@@ -181,6 +181,25 @@ export const iosRules: RuleSet = [
       code: 'HEURISTICS_IOS_TASK_DETACHED_AST',
     },
   },
+  {
+    id: 'heuristics.ios.swiftui.onappear-task.ast',
+    description: 'Detects Task launches from SwiftUI onAppear where .task can provide lifecycle cancellation.',
+    severity: 'WARN',
+    platform: 'ios',
+    locked: true,
+    when: {
+      kind: 'Heuristic',
+      where: {
+        ruleId: 'heuristics.ios.swiftui.onappear-task.ast',
+      },
+    },
+    then: {
+      kind: 'Finding',
+      message:
+        'AST heuristic detected Task launched from SwiftUI onAppear; .task/.task(id:) provides lifecycle-aware cancellation.',
+      code: 'HEURISTICS_IOS_SWIFTUI_ONAPPEAR_TASK_AST',
+    },
+  },
   {
     id: 'heuristics.ios.memory.strong-delegate.ast',
     description: 'Detects strong delegate/dataSource references in iOS production code.',

package/integrations/config/skillsDetectorRegistry.ts

@@ -244,6 +244,14 @@ const registryByRuleId: Record<string, SkillsDetectorBinding> = {
   'skills.ios.no-legacy-onchange': heuristicDetector('ios.legacy-onchange', [
     'heuristics.ios.legacy-onchange.ast',
   ]),
+  'skills.ios.guideline.ios.task-task-id-trabajos-async-con-cancelacio-n-automa-tica': heuristicDetector(
+    'ios.swiftui.onappear-task',
+    ['heuristics.ios.swiftui.onappear-task.ast']
+  ),
+  'skills.ios.guideline.ios-swiftui-expert.use-task-modifier-for-automatic-cancellation-of-async-work': heuristicDetector(
+    'ios.swiftui.onappear-task',
+    ['heuristics.ios.swiftui.onappear-task.ast']
+  ),
   'skills.ios.no-uiscreen-main-bounds': heuristicDetector('ios.uiscreen-main-bounds', [
     'heuristics.ios.uiscreen-main-bounds.ast',
   ]),

package/integrations/config/skillsMarkdownRules.ts

@@ -360,6 +360,15 @@ const normalizeKnownRuleTarget = (
     if (includes('uiscreen main bounds') || includes('uiscreen.main.bounds')) {
       return 'skills.ios.no-uiscreen-main-bounds';
     }
+    if (
+      includes('task/.task(id') ||
+      includes('trabajos async con cancelacion automatica') ||
+      includes('trabajos async con cancelacio n automa tica') ||
+      includes('task modifier for automatic cancellation') ||
+      includes('automatic cancellation of async work')
+    ) {
+      return 'skills.ios.guideline.ios-swiftui-expert.use-task-modifier-for-automatic-cancellation-of-async-work';
+    }
     if (
       includes('swift testing over xctest') ||
       includes('prefer import testing') ||

package/integrations/gate/evaluateAiGate.ts

@@ -1144,7 +1144,15 @@ const collectEvidenceViolations = (
   }
 
   if (result.evidence.ai_gate.status === 'BLOCKED') {
-    violations.push(toErrorViolation('EVIDENCE_GATE_BLOCKED', 'Evidence AI gate status is BLOCKED.'));
+    const gateBlockedMessage = 'Evidence AI gate status is BLOCKED.';
+    violations.push(
+      isAdvisoryDocumentationRenderSlice(repoRoot, ageSeconds, maxAgeSeconds)
+        ? toWarnViolation(
+            'EVIDENCE_GATE_BLOCKED',
+            `${gateBlockedMessage} Advisory because the current slice only contains documentation/render/tooling artifacts and evidence is fresh.`
+          )
+        : toErrorViolation('EVIDENCE_GATE_BLOCKED', gateBlockedMessage)
+    );
   }
 
   if (stage === 'PRE_WRITE') {
@@ -1164,6 +1172,107 @@ const collectEvidenceViolations = (
   return { violations, ageSeconds };
 };
 
+const SUPPORTED_FUNCTIONAL_EXTENSIONS = new Set([
+  '.swift',
+  '.ts',
+  '.tsx',
+  '.js',
+  '.jsx',
+  '.kt',
+  '.kts',
+]);
+
+const DOCUMENTATION_RENDER_TOOLING_EXTENSIONS = new Set([
+  '.css',
+  '.html',
+  '.json',
+  '.md',
+  '.mdx',
+  '.txt',
+]);
+
+const normalizeGitPath = (value: string): string => value.replace(/\\/g, '/').replace(/^"|"$/g, '');
+
+const extractGitStatusPath = (line: string): string | null => {
+  const payload = line.slice(3).trim();
+  if (payload.length === 0) {
+    return null;
+  }
+  const renameSeparator = ' -> ';
+  if (payload.includes(renameSeparator)) {
+    return normalizeGitPath(payload.slice(payload.lastIndexOf(renameSeparator) + renameSeparator.length));
+  }
+  return normalizeGitPath(payload);
+};
+
+const collectGitStatusPaths = (repoRoot: string): readonly string[] => {
+  if (!existsSync(resolve(repoRoot, '.git'))) {
+    return [];
+  }
+  try {
+    return execFileSync('git', ['status', '--porcelain', '--untracked-files=all'], {
+      cwd: repoRoot,
+      encoding: 'utf8',
+      stdio: ['ignore', 'pipe', 'ignore'],
+    })
+      .split(/\r?\n/)
+      .map(extractGitStatusPath)
+      .filter((path): path is string => path !== null);
+  } catch {
+    return [];
+  }
+};
+
+const pathExtension = (path: string): string => {
+  const basename = path.split('/').pop() ?? '';
+  const dotIndex = basename.lastIndexOf('.');
+  return dotIndex >= 0 ? basename.slice(dotIndex).toLowerCase() : '';
+};
+
+const isSupportedFunctionalPath = (path: string): boolean =>
+  SUPPORTED_FUNCTIONAL_EXTENSIONS.has(pathExtension(path));
+
+const isDocumentationRenderToolingPath = (path: string): boolean => {
+  const normalized = path.toLowerCase();
+  if (normalized.startsWith('docs/') && DOCUMENTATION_RENDER_TOOLING_EXTENSIONS.has(pathExtension(normalized))) {
+    return true;
+  }
+  if (normalized.endsWith('.md') || normalized.endsWith('.mdx')) {
+    return true;
+  }
+  if (
+    normalized.startsWith('stack-my-architecture-pumuki/dist/') ||
+    normalized.startsWith('stack-my-architecture-hub/pumuki/')
+  ) {
+    return DOCUMENTATION_RENDER_TOOLING_EXTENSIONS.has(pathExtension(normalized));
+  }
+  if (normalized === 'stack-my-architecture-pumuki/scripts/build-html.py') {
+    return true;
+  }
+  if (normalized === 'package.json' || normalized === 'package-lock.json') {
+    return true;
+  }
+  return false;
+};
+
+const isAdvisoryDocumentationRenderSlice = (
+  repoRoot: string,
+  ageSeconds: number,
+  maxAgeSeconds: number
+): boolean => {
+  if (ageSeconds > maxAgeSeconds) {
+    return false;
+  }
+  const paths = collectGitStatusPaths(repoRoot);
+  if (paths.length === 0) {
+    return false;
+  }
+  return (
+    paths.every(isDocumentationRenderToolingPath) &&
+    !paths.some(isSupportedFunctionalPath)
+  );
+};
+
 const toEvidenceSourceDescriptor = (
   result: EvidenceReadResult,
   repoRoot: string

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki",
-  "version": "6.3.216",
+  "version": "6.3.218",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/skills.lock.json

@@ -1,7 +1,7 @@
 {
   "version": "1.0",
   "compilerVersion": "1.0.0",
-  "generatedAt": "2026-05-13T13:25:12.010Z",
+  "generatedAt": "2026-05-13T13:40:06.121Z",
   "bundles": [
     {
       "name": "android-guidelines",
@@ -5764,8 +5764,20 @@
       "name": "ios-guidelines",
       "version": "1.0.0",
       "source": "file:vendor/skills/ios-enterprise-rules/SKILL.md",
-      "hash": "c7b96d97cd02175dacf17b64cb8bdd1be7b5978dd2f74c7feb3bf3d462311467",
+      "hash": "2d56094eff6a0b688d9f20ef6970de5945dfa74aaf3a3973dfee2091b9e98542",
       "rules": [
+        {
+          "id": "skills.ios.guideline.ios-swiftui-expert.use-task-modifier-for-automatic-cancellation-of-async-work",
+          "description": ".task/.task(id:) - Trabajos async con cancelación automática",
+          "severity": "WARN",
+          "platform": "ios",
+          "sourceSkill": "ios-guidelines",
+          "sourcePath": "vendor/skills/ios-enterprise-rules/SKILL.md",
+          "confidence": "MEDIUM",
+          "locked": true,
+          "evaluationMode": "AUTO",
+          "origin": "core"
+        },
         {
           "id": "skills.ios.guideline.ios.accessibility-identifiers-para-localizar-elementos",
           "description": "Accessibility identifiers - Para localizar elementos",
@@ -7927,18 +7939,6 @@
           "evaluationMode": "DECLARATIVE",
           "origin": "core"
         },
-        {
-          "id": "skills.ios.guideline.ios.task-task-id-trabajos-async-con-cancelacio-n-automa-tica",
-          "description": ".task/.task(id:) - Trabajos async con cancelación automática",
-          "severity": "WARN",
-          "platform": "ios",
-          "sourceSkill": "ios-guidelines",
-          "sourcePath": "vendor/skills/ios-enterprise-rules/SKILL.md",
-          "confidence": "MEDIUM",
-          "locked": true,
-          "evaluationMode": "DECLARATIVE",
-          "origin": "core"
-        },
         {
           "id": "skills.ios.guideline.ios.taskgroup-para-operaciones-paralelas",
           "description": "TaskGroup - Para operaciones paralelas",
@@ -8632,7 +8632,7 @@
       "name": "ios-swiftui-expert-guidelines",
       "version": "1.0.0",
       "source": "file:vendor/skills/swiftui-expert-skill/SKILL.md",
-      "hash": "33a19bd25ca8546d49f2070956784e4fe3f653a25365c8a9734af5cd46b8ec60",
+      "hash": "05e71c648612ed794d4e8122105fc3f508e09b7f92db94a24bd3daa45335d6b7",
       "rules": [
         {
           "id": "skills.ios.guideline.ios-swiftui-expert.always-mark-state-and-stateobject-as-private-makes-dependencies-clear",
@@ -8907,7 +8907,7 @@
           "sourcePath": "vendor/skills/swiftui-expert-skill/SKILL.md",
           "confidence": "MEDIUM",
           "locked": true,
-          "evaluationMode": "DECLARATIVE",
+          "evaluationMode": "AUTO",
           "origin": "core"
         },
         {