pumuki 6.3.231 → 6.3.233

package/core/gate/evaluateGate.test.ts

@@ -75,3 +75,33 @@ test('evaluateGate devuelve BLOCK cuando existe al menos un finding bloqueante',
   assert.equal(result.warnings.length, 1);
   assert.equal(result.warnings[0]?.ruleId, 'rule.warn');
 });
+
+test('evaluateGate bloquea cualquier severidad cuando la policy zero-violations usa INFO', () => {
+  const findings: Finding[] = [
+    {
+      ruleId: 'rule.info',
+      severity: 'INFO',
+      code: 'RULE_INFO',
+      message: 'Info finding',
+    },
+    {
+      ruleId: 'rule.warn',
+      severity: 'WARN',
+      code: 'RULE_WARN',
+      message: 'Warn finding',
+    },
+  ];
+
+  const result = evaluateGate(findings, {
+    stage: 'PRE_PUSH',
+    blockOnOrAbove: 'INFO',
+    warnOnOrAbove: 'INFO',
+  });
+
+  assert.equal(result.outcome, 'BLOCK');
+  assert.deepEqual(
+    result.blocking.map((finding) => finding.ruleId),
+    ['rule.info', 'rule.warn']
+  );
+  assert.deepEqual(result.warnings, []);
+});

package/core/gate/evaluateRules.test.ts

@@ -32,15 +32,46 @@ test('evaluateRules genera finding cuando la condicion coincide y usa code expli
   const findings = evaluateRules(rules, facts);
 
   assert.equal(findings.length, 1);
-  assert.deepEqual(findings[0], {
-    ruleId: 'rule.explicit.code',
-    severity: 'WARN',
-    code: 'BACKEND_FILE_MODIFIED',
-    message: 'Backend file modified.',
-    filePath: 'apps/backend/src/main.ts',
-    matchedBy: 'FileChange',
-    source: 'git',
-  });
+  assert.equal(findings[0]?.ruleId, 'rule.explicit.code');
+  assert.equal(findings[0]?.severity, 'WARN');
+  assert.equal(findings[0]?.code, 'BACKEND_FILE_MODIFIED');
+  assert.equal(findings[0]?.message, 'Backend file modified.');
+  assert.equal(findings[0]?.filePath, 'apps/backend/src/main.ts');
+  assert.equal(findings[0]?.matchedBy, 'FileChange');
+  assert.equal(findings[0]?.source, 'git');
+  assert.equal(findings[0]?.blocking, true);
+});
+
+test('evaluateRules marca cualquier severity como bloqueante bajo contrato zero-violations', () => {
+  const rules: RuleSet = [
+    {
+      id: 'rule.info.blocking',
+      description: 'Info still blocks in enterprise zero-violations mode.',
+      severity: 'INFO',
+      when: {
+        kind: 'FileChange',
+        where: { pathPrefix: 'apps/frontend/', changeType: 'modified' },
+      },
+      then: {
+        kind: 'Finding',
+        message: 'Any finding blocks.',
+      },
+    },
+  ];
+  const facts = [
+    {
+      kind: 'FileChange',
+      path: 'apps/frontend/src/App.tsx',
+      changeType: 'modified',
+      source: 'git',
+    },
+  ] as const;
+
+  const findings = evaluateRules(rules, facts);
+
+  assert.equal(findings.length, 1);
+  assert.equal(findings[0]?.severity, 'INFO');
+  assert.equal(findings[0]?.blocking, true);
 });
 
 test('evaluateRules usa id de la regla como code cuando no se define en consecuencia', () => {

package/core/gate/evaluateRules.ts

@@ -23,8 +23,7 @@ type FindingTarget = {
   expected_fix?: string;
 };
 
-const isBlockingSeverity = (severity: RuleDefinition['severity']): boolean =>
-  severity === 'CRITICAL' || severity === 'ERROR';
+const isBlockingSeverity = (_severity: RuleDefinition['severity']): boolean => true;
 
 export type EvaluateRulesCoverageResult = {
   findings: ReadonlyArray<Finding>;

package/integrations/gate/stagePolicies.ts

@@ -124,26 +124,35 @@ const toGatePolicyRecordFromEnterpriseThresholds = (
   };
 };
 
+const ZERO_VIOLATION_BLOCK_ON_OR_ABOVE: GatePolicy['blockOnOrAbove'] = 'INFO';
+const ZERO_VIOLATION_WARN_ON_OR_ABOVE: GatePolicy['warnOnOrAbove'] = 'INFO';
+
+const enforceZeroViolationPolicy = (policy: GatePolicy): GatePolicy => ({
+  ...policy,
+  blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+  warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
+});
+
 const defaultPolicyByStage: Record<SkillsStage, GatePolicy> = {
   PRE_WRITE: {
     stage: 'PRE_WRITE',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   PRE_COMMIT: {
     stage: 'PRE_COMMIT',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   PRE_PUSH: {
     stage: 'PRE_PUSH',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   CI: {
     stage: 'CI',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
 };
 
@@ -624,7 +633,7 @@ export const resolvePolicyForStage = (
     const profilePolicy = profileName
       ? hardModePolicyProfileByStage[profileName][stage]
       : null;
-    const hardModePolicy = profilePolicy ?? hardModePolicyByStage[stage];
+    const hardModePolicy = enforceZeroViolationPolicy(profilePolicy ?? hardModePolicyByStage[stage]);
     const bundle = profileName
       ? `gate-policy.hard-mode.${profileName}.${stage}`
       : `gate-policy.hard-mode.${stage}`;
@@ -693,8 +702,8 @@ export const resolvePolicyForStage = (
 
   const resolvedPolicy: GatePolicy = {
     stage: defaults.stage,
-    blockOnOrAbove: stageOverride.blockOnOrAbove,
-    warnOnOrAbove: stageOverride.warnOnOrAbove,
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   };
 
   const bundle = `gate-policy.skills.policy.${stage}`;

package/integrations/lifecycle/audit.ts

@@ -256,10 +256,7 @@ const toResultScope = (params: {
 };
 
 const isFindingBlocking = (finding: SnapshotFinding): boolean => {
-  if (typeof finding.blocking === 'boolean') {
-    return finding.blocking;
-  }
-  return finding.severity === 'CRITICAL' || finding.severity === 'ERROR';
+  return Boolean(finding.ruleId);
 };
 
 const toLifecycleAuditFinding = (finding: SnapshotFinding): LifecycleAuditFinding => ({

package/integrations/policy/policyProfiles.ts

@@ -85,26 +85,37 @@ const toGatePolicyRecordFromEnterpriseThresholds = (
   };
 };
 
+const ZERO_VIOLATION_BLOCK_ON_OR_ABOVE: GatePolicy['blockOnOrAbove'] = 'INFO';
+const ZERO_VIOLATION_WARN_ON_OR_ABOVE: GatePolicy['warnOnOrAbove'] = 'INFO';
+
+const enforceZeroViolationPolicy = (policy: GatePolicy): GatePolicy => {
+  return {
+    ...policy,
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
+  };
+};
+
 const defaultPolicyByStage: Record<SkillsStage, GatePolicy> = {
   PRE_WRITE: {
     stage: 'PRE_WRITE',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   PRE_COMMIT: {
     stage: 'PRE_COMMIT',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   PRE_PUSH: {
     stage: 'PRE_PUSH',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
   CI: {
     stage: 'CI',
-    blockOnOrAbove: 'ERROR',
-    warnOnOrAbove: 'WARN',
+    blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+    warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
   },
 };
 
@@ -374,7 +385,7 @@ export const resolveExplicitPolicyProfileForStage = (
     const profilePolicy = profileName
       ? hardModePolicyProfileByStage[profileName][stage]
       : null;
-    const hardModePolicy = profilePolicy ?? hardModePolicyByStage[stage];
+    const hardModePolicy = enforceZeroViolationPolicy(profilePolicy ?? hardModePolicyByStage[stage]);
     return {
       policy: hardModePolicy,
       source: 'hard-mode',
@@ -394,8 +405,8 @@ export const resolveExplicitPolicyProfileForStage = (
   return {
     policy: {
       stage: defaults.stage,
-      blockOnOrAbove: stageOverride.blockOnOrAbove,
-      warnOnOrAbove: stageOverride.warnOnOrAbove,
+      blockOnOrAbove: ZERO_VIOLATION_BLOCK_ON_OR_ABOVE,
+      warnOnOrAbove: ZERO_VIOLATION_WARN_ON_OR_ABOVE,
     },
     source: 'skills.policy',
     layer: 'policy-pack',

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki",
-  "version": "6.3.231",
+  "version": "6.3.233",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/scripts/framework-menu-system-notifications-payloads-audit.ts

@@ -8,20 +8,20 @@ export const buildAuditSummaryPayload = (
 ): SystemNotificationPayload => {
   if (event.criticalViolations > 0) {
     return {
-      title: 'AST Audit Complete',
+      title: 'AST Audit Blocked',
       message: `🔴 ${event.criticalViolations} CRITICAL, ${event.highViolations} HIGH violations`,
     };
   }
   if (event.highViolations > 0) {
     return {
-      title: 'AST Audit Complete',
+      title: 'AST Audit Blocked',
       message: `🟡 ${event.highViolations} HIGH violations found`,
     };
   }
   if (event.totalViolations > 0) {
     return {
-      title: 'AST Audit Complete',
-      message: `🔵 ${event.totalViolations} violations (no blockers)`,
+      title: 'AST Audit Blocked',
+      message: `🔴 ${event.totalViolations} violations block the gate`,
     };
   }
   return {