npm - sandstream-kit - Versions diffs - 1.1.0 → 1.3.0 - Mend

sandstream-kit 1.1.0 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (129) hide show

package/README.md +101 -92
package/dist/adapters/expo-eas.js +1 -1
package/dist/adapters/expo-eas.js.map +1 -1
package/dist/audit-logging-service.js +1 -1
package/dist/audit-logging-service.js.map +1 -1
package/dist/author-verification.js +1 -1
package/dist/author-verification.js.map +1 -1
package/dist/check-web-search.js +37 -6
package/dist/check-web-search.js.map +1 -1
package/dist/cli-shared.d.ts +4 -0
package/dist/cli-shared.js +11 -0
package/dist/cli-shared.js.map +1 -0
package/dist/cli.js +175 -1189
package/dist/cli.js.map +1 -1
package/dist/commands/audit.d.ts +1 -0
package/dist/commands/audit.js +99 -0
package/dist/commands/audit.js.map +1 -0
package/dist/commands/auth.d.ts +1 -0
package/dist/commands/auth.js +121 -0
package/dist/commands/auth.js.map +1 -0
package/dist/commands/env.d.ts +1 -0
package/dist/commands/env.js +149 -0
package/dist/commands/env.js.map +1 -0
package/dist/commands/hooks.d.ts +1 -0
package/dist/commands/hooks.js +146 -0
package/dist/commands/hooks.js.map +1 -0
package/dist/commands/mcp.d.ts +1 -0
package/dist/commands/mcp.js +120 -0
package/dist/commands/mcp.js.map +1 -0
package/dist/commands/memory.d.ts +1 -0
package/dist/commands/memory.js +534 -0
package/dist/commands/memory.js.map +1 -0
package/dist/config.d.ts +2 -0
package/dist/config.js +4 -0
package/dist/config.js.map +1 -1
package/dist/mcp-server.js +59 -6
package/dist/mcp-server.js.map +1 -1
package/dist/memory/amazonq.d.ts +5 -0
package/dist/memory/amazonq.js +161 -0
package/dist/memory/amazonq.js.map +1 -0
package/dist/memory/cline.d.ts +5 -0
package/dist/memory/cline.js +117 -0
package/dist/memory/cline.js.map +1 -0
package/dist/memory/codex.d.ts +5 -0
package/dist/memory/codex.js +150 -0
package/dist/memory/codex.js.map +1 -0
package/dist/memory/continue.d.ts +5 -0
package/dist/memory/continue.js +116 -0
package/dist/memory/continue.js.map +1 -0
package/dist/memory/cursor.d.ts +4 -0
package/dist/memory/cursor.js +116 -0
package/dist/memory/cursor.js.map +1 -0
package/dist/memory/db.d.ts +12 -1
package/dist/memory/db.js +43 -1
package/dist/memory/db.js.map +1 -1
package/dist/memory/gemini.d.ts +5 -0
package/dist/memory/gemini.js +176 -0
package/dist/memory/gemini.js.map +1 -0
package/dist/memory/hook.d.ts +9 -0
package/dist/memory/hook.js +34 -1
package/dist/memory/hook.js.map +1 -1
package/dist/memory/install.js +1 -0
package/dist/memory/install.js.map +1 -1
package/dist/memory/merge.d.ts +18 -0
package/dist/memory/merge.js +109 -0
package/dist/memory/merge.js.map +1 -0
package/dist/memory/parser.d.ts +9 -0
package/dist/memory/parser.js +40 -3
package/dist/memory/parser.js.map +1 -1
package/dist/memory/suggest.d.ts +21 -0
package/dist/memory/suggest.js +36 -0
package/dist/memory/suggest.js.map +1 -0
package/dist/onepassword.js +1 -1
package/dist/onepassword.js.map +1 -1
package/dist/open.js +8 -2
package/dist/open.js.map +1 -1
package/dist/run.js +1 -1
package/dist/run.js.map +1 -1
package/dist/service-auth.d.ts +31 -0
package/dist/service-auth.js +47 -0
package/dist/service-auth.js.map +1 -0
package/dist/stack-detector.js +53 -76
package/dist/stack-detector.js.map +1 -1
package/dist/status.d.ts +9 -0
package/dist/status.js +119 -0
package/dist/status.js.map +1 -0
package/package.json +9 -4
package/dist/memory/backup 2.d.ts +0 -6
package/dist/memory/backup 2.js +0 -80
package/dist/memory/backup 2.js.map +0 -1
package/dist/memory/db 2.d.ts +0 -40
package/dist/memory/db 2.js +0 -233
package/dist/memory/db 2.js.map +0 -1
package/dist/memory/hook 2.d.ts +0 -6
package/dist/memory/hook 2.js +0 -51
package/dist/memory/hook 2.js.map +0 -1
package/dist/memory/hook.test 2.d.ts +0 -1
package/dist/memory/hook.test 2.js +0 -35
package/dist/memory/hook.test 2.js.map +0 -1
package/dist/memory/install 2.d.ts +0 -8
package/dist/memory/install 2.js +0 -72
package/dist/memory/install 2.js.map +0 -1
package/dist/memory/install.test 2.d.ts +0 -1
package/dist/memory/install.test 2.js +0 -59
package/dist/memory/install.test 2.js.map +0 -1
package/dist/memory/pal 2.d.ts +0 -47
package/dist/memory/pal 2.js +0 -154
package/dist/memory/pal 2.js.map +0 -1
package/dist/memory/project 2.d.ts +0 -1
package/dist/memory/project 2.js +0 -24
package/dist/memory/project 2.js.map +0 -1
package/dist/memory/scan 2.d.ts +0 -15
package/dist/memory/scan 2.js +0 -94
package/dist/memory/scan 2.js.map +0 -1
package/dist/memory/scan.test 2.d.ts +0 -1
package/dist/memory/scan.test 2.js +0 -55
package/dist/memory/scan.test 2.js.map +0 -1
package/dist/memory/shared 2.d.ts +0 -33
package/dist/memory/shared 2.js +0 -120
package/dist/memory/shared 2.js.map +0 -1
package/dist/memory/threads 2.d.ts +0 -37
package/dist/memory/threads 2.js +0 -50
package/dist/memory/threads 2.js.map +0 -1
package/dist/memory/threads.test 2.d.ts +0 -1
package/dist/memory/threads.test 2.js +0 -66
package/dist/memory/threads.test 2.js.map +0 -1
package/dist/memory/types 2.d.ts +0 -52
package/dist/memory/types 2.js +0 -5
package/dist/memory/types 2.js.map +0 -1

package/dist/memory/pal 2.d.ts DELETED Viewed

@@ -1,47 +0,0 @@
-import type { DatabaseSync } from "node:sqlite";
-export interface PendingAction {
-    id: string;
-    status: string;
-    title: string;
-    detail: string | null;
-    scope: string | null;
-    kind: string;
-    verify_cmd: string | null;
-    created_at: string | null;
-    next_check: string | null;
-    snooze_until: string | null;
-    closed_at: string | null;
-    verify_passes: number;
-}
-export interface PalAddInput {
-    title: string;
-    detail?: string;
-    scope?: string;
-    kind?: "manual" | "auto";
-    verifyCmd?: string;
-}
-export declare function palAdd(db: DatabaseSync, input: PalAddInput): string;
-export interface PalListOptions {
-    status?: string;
-    /** Restrict to this scope plus globally-scoped (NULL) items. Omit = every scope. */
-    scope?: string;
-}
-export declare function palList(db: DatabaseSync, opts?: PalListOptions): PendingAction[];
-export declare function palDone(db: DatabaseSync, id: string): boolean;
-export declare function palSnooze(db: DatabaseSync, id: string, days: number): boolean;
-export interface AutoVerifyResult {
-    checked: number;
-    closed: string[];
-    reopened: string[];
-}
-/**
- * Auto-verify `auto` items. An OPEN item that passes `confirmPasses` consecutive
- * times is closed (a pass increments the streak, a fail resets it). A CLOSED item
- * whose verify now FAILS is reopened (reopen-on-regress). No-info leaves it alone.
- */
-export declare function palAutoVerify(db: DatabaseSync, confirmPasses?: number): AutoVerifyResult;
-export declare function getLegacyLedgerPath(): string;
-/** Import the old `~/.claude/pal/ledger.jsonl` into pending_actions. Idempotent (by id). */
-export declare function importLegacyLedger(db: DatabaseSync, path?: string): {
-    imported: number;
-};

package/dist/memory/pal 2.js DELETED Viewed

@@ -1,154 +0,0 @@
-/**
- * kit memory — PAL (Pending Action Ledger), folded into the memory store.
- *
- * PAL is the STRUCTURED, actionable layer on top of raw conversation memory:
- * "blocked-on-you" items that survive sessions and auto-close when their verify
- * command starts passing. It lives in the `pending_actions` table of the same
- * SQLite store. Deterministic; the only side effect is running operator-defined
- * verify commands (local shell, with a timeout). Fail-open / no-info aware.
- */
-import { randomBytes } from "node:crypto";
-import { execSync } from "node:child_process";
-import { readFileSync, existsSync } from "node:fs";
-import { homedir } from "node:os";
-import { join } from "node:path";
-function newId(db) {
-    for (let i = 0; i < 100; i++) {
-        const id = randomBytes(2).toString("hex"); // 4 hex chars, e.g. "ec95"
-        if (!db.prepare("SELECT 1 FROM pending_actions WHERE id = ?").get(id))
-            return id;
-    }
-    throw new Error("could not allocate a unique pending-action id");
-}
-export function palAdd(db, input) {
-    const id = newId(db);
-    const kind = input.kind ?? (input.verifyCmd ? "auto" : "manual");
-    db.prepare(`INSERT INTO pending_actions (id, status, title, detail, scope, kind, verify_cmd)
-     VALUES (?, 'open', ?, ?, ?, ?, ?)`).run(id, input.title, input.detail ?? null, input.scope ?? null, kind, input.verifyCmd ?? null);
-    return id;
-}
-export function palList(db, opts = {}) {
-    const status = opts.status ?? "open";
-    if (opts.scope !== undefined) {
-        return db
-            .prepare("SELECT * FROM pending_actions WHERE status = ? AND (scope = ? OR scope IS NULL) ORDER BY created_at, id")
-            .all(status, opts.scope);
-    }
-    return db
-        .prepare("SELECT * FROM pending_actions WHERE status = ? ORDER BY created_at, id")
-        .all(status);
-}
-export function palDone(db, id) {
-    const res = db
-        .prepare("UPDATE pending_actions SET status='closed', closed_at=datetime('now') WHERE id=? AND status!='closed'")
-        .run(id);
-    return Number(res.changes) > 0;
-}
-export function palSnooze(db, id, days) {
-    const d = Math.max(1, Math.floor(days));
-    const res = db
-        .prepare("UPDATE pending_actions SET status='snoozed', snooze_until=datetime('now', ?) WHERE id=?")
-        .run(`+${d} days`, id);
-    return Number(res.changes) > 0;
-}
-/**
- * Run a verify command. true = pass (exit 0), false = ran but failed, null = no-info.
- *
- * SECURITY: this runs `cmd` through a shell on purpose — verify commands routinely
- * need pipes / `&&` (e.g. `curl -fsS … | grep 200`). The trust boundary: `verify_cmd`
- * is OPERATOR-AUTHORED and lives only in the PERSONAL store (~/.kit/memory.db); running
- * it is equivalent to the operator running their own command — no untrusted data is
- * interpolated, so this is not a command-injection sink. INVARIANT for Track D (shared
- * memory): shared/synced items must NEVER carry an executable `verify_cmd` that runs
- * unreviewed — only manual items or review-gated verifies cross the sharing boundary.
- */
-function runVerify(cmd) {
-    try {
-        execSync(cmd, { stdio: "ignore", timeout: 15_000 });
-        return true;
-    }
-    catch (err) {
-        const status = err.status;
-        if (typeof status === "number")
-            return false; // ran, non-zero exit
-        return null; // spawn error / timeout → no-info, leave state unchanged
-    }
-}
-/**
- * Auto-verify `auto` items. An OPEN item that passes `confirmPasses` consecutive
- * times is closed (a pass increments the streak, a fail resets it). A CLOSED item
- * whose verify now FAILS is reopened (reopen-on-regress). No-info leaves it alone.
- */
-export function palAutoVerify(db, confirmPasses = 2) {
-    const out = { checked: 0, closed: [], reopened: [] };
-    const rows = db
-        .prepare("SELECT * FROM pending_actions WHERE kind='auto' AND verify_cmd IS NOT NULL AND status IN ('open','closed')")
-        .all();
-    for (const r of rows) {
-        const result = runVerify(r.verify_cmd);
-        if (result === null)
-            continue; // no-info
-        out.checked++;
-        if (r.status === "open") {
-            if (result) {
-                const passes = r.verify_passes + 1;
-                if (passes >= confirmPasses) {
-                    db.prepare("UPDATE pending_actions SET status='closed', closed_at=datetime('now'), verify_passes=? WHERE id=?").run(passes, r.id);
-                    out.closed.push(r.id);
-                }
-                else {
-                    db.prepare("UPDATE pending_actions SET verify_passes=? WHERE id=?").run(passes, r.id);
-                }
-            }
-            else if (r.verify_passes !== 0) {
-                db.prepare("UPDATE pending_actions SET verify_passes=0 WHERE id=?").run(r.id);
-            }
-        }
-        else if (r.status === "closed" && !result) {
-            db.prepare("UPDATE pending_actions SET status='open', verify_passes=0, closed_at=NULL WHERE id=?").run(r.id);
-            out.reopened.push(r.id);
-        }
-    }
-    return out;
-}
-// ── Migration from the legacy python PAL ledger ───────────────────────────────
-export function getLegacyLedgerPath() {
-    return process.env.KIT_PAL_LEDGER ?? join(homedir(), ".claude", "pal", "ledger.jsonl");
-}
-/** Import the old `~/.claude/pal/ledger.jsonl` into pending_actions. Idempotent (by id). */
-export function importLegacyLedger(db, path = getLegacyLedgerPath()) {
-    if (!existsSync(path))
-        return { imported: 0 };
-    let raw;
-    try {
-        raw = readFileSync(path, "utf8");
-    }
-    catch {
-        return { imported: 0 };
-    }
-    const insert = db.prepare(`INSERT OR IGNORE INTO pending_actions
-     (id, status, title, detail, scope, kind, verify_cmd, created_at, next_check, verify_passes)
-     VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`);
-    let imported = 0;
-    for (const line of raw.split("\n")) {
-        const t = line.trim();
-        if (!t)
-            continue;
-        let e;
-        try {
-            e = JSON.parse(t);
-        }
-        catch {
-            continue;
-        }
-        if (!e.id || !e.title)
-            continue;
-        const status = e.status === "done" ? "closed" : (e.status ?? "open");
-        const kind = e.verify ? "auto" : "manual";
-        const res = insert.run(e.id, status, e.title, e.why ?? null, e.repo ?? null, kind, e.verify ?? null, e.ts ?? null, e.next_check ?? null, e.pass_streak ?? 0);
-        if (Number(res.changes) > 0)
-            imported++;
-    }
-    return { imported };
-}
-//# sourceMappingURL=pal%202.js.map

package/dist/memory/pal 2.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"pal 2.js","sourceRoot":"","sources":["../../src/memory/pal 2.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AACH,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AA0BjC,SAAS,KAAK,CAAC,EAAgB;IAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,MAAM,EAAE,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,2BAA2B;QACtE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,4CAA4C,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC;YAAE,OAAO,EAAE,CAAC;IACnF,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;AACnE,CAAC;AAED,MAAM,UAAU,MAAM,CAAC,EAAgB,EAAE,KAAkB;IACzD,MAAM,EAAE,GAAG,KAAK,CAAC,EAAE,CAAC,CAAC;IACrB,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IACjE,EAAE,CAAC,OAAO,CACR;uCACmC,CACpC,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,MAAM,IAAI,IAAI,EAAE,KAAK,CAAC,KAAK,IAAI,IAAI,EAAE,IAAI,EAAE,KAAK,CAAC,SAAS,IAAI,IAAI,CAAC,CAAC;IACjG,OAAO,EAAE,CAAC;AACZ,CAAC;AAQD,MAAM,UAAU,OAAO,CAAC,EAAgB,EAAE,OAAuB,EAAE;IACjE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC;IACrC,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QAC7B,OAAO,EAAE;aACN,OAAO,CACN,yGAAyG,CAC1G;aACA,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAA+B,CAAC;IAC3D,CAAC;IACD,OAAO,EAAE;SACN,OAAO,CAAC,wEAAwE,CAAC;SACjF,GAAG,CAAC,MAAM,CAA+B,CAAC;AAC/C,CAAC;AAED,MAAM,UAAU,OAAO,CAAC,EAAgB,EAAE,EAAU;IAClD,MAAM,GAAG,GAAG,EAAE;SACX,OAAO,CACN,uGAAuG,CACxG;SACA,GAAG,CAAC,EAAE,CAAC,CAAC;IACX,OAAO,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;AACjC,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,EAAgB,EAAE,EAAU,EAAE,IAAY;IAClE,MAAM,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;IACxC,MAAM,GAAG,GAAG,EAAE;SACX,OAAO,CACN,yFAAyF,CAC1F;SACA,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IACzB,OAAO,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;AACjC,CAAC;AAED;;;;;;;;;;GAUG;AACH,SAAS,SAAS,CAAC,GAAW;IAC5B,IAAI,CAAC;QACH,QAAQ,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,MAAM,GAAI,GAAkC,CAAC,MAAM,CAAC;QAC1D,IAAI,OAAO,MAAM,KAAK,QAAQ;YAAE,OAAO,KAAK,CAAC,CAAC,qBAAqB;QACnE,OAAO,IAAI,CAAC,CAAC,yDAAyD;IACxE,CAAC;AACH,CAAC;AAQD;;;;GAIG;AACH,MAAM,UAAU,aAAa,CAAC,EAAgB,EAAE,aAAa,GAAG,CAAC;IAC/D,MAAM,GAAG,GAAqB,EAAE,OAAO,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;IACvE,MAAM,IAAI,GAAG,EAAE;SACZ,OAAO,CACN,4GAA4G,CAC7G;SACA,GAAG,EAAgC,CAAC;IACvC,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,UAAoB,CAAC,CAAC;QACjD,IAAI,MAAM,KAAK,IAAI;YAAE,SAAS,CAAC,UAAU;QACzC,GAAG,CAAC,OAAO,EAAE,CAAC;QACd,IAAI,CAAC,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YACxB,IAAI,MAAM,EAAE,CAAC;gBACX,MAAM,MAAM,GAAG,CAAC,CAAC,aAAa,GAAG,CAAC,CAAC;gBACnC,IAAI,MAAM,IAAI,aAAa,EAAE,CAAC;oBAC5B,EAAE,CAAC,OAAO,CACR,mGAAmG,CACpG,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;oBACpB,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACxB,CAAC;qBAAM,CAAC;oBACN,EAAE,CAAC,OAAO,CAAC,uDAAuD,CAAC,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;gBACxF,CAAC;YACH,CAAC;iBAAM,IAAI,CAAC,CAAC,aAAa,KAAK,CAAC,EAAE,CAAC;gBACjC,EAAE,CAAC,OAAO,CAAC,uDAAuD,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAChF,CAAC;QACH,CAAC;aAAM,IAAI,CAAC,CAAC,MAAM,KAAK,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC;YAC5C,EAAE,CAAC,OAAO,CACR,sFAAsF,CACvF,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YACZ,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,iFAAiF;AAEjF,MAAM,UAAU,mBAAmB;IACjC,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,CAAC,CAAC;AACzF,CAAC;AAcD,4FAA4F;AAC5F,MAAM,UAAU,kBAAkB,CAChC,EAAgB,EAChB,OAAe,mBAAmB,EAAE;IAEpC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;IAC9C,IAAI,GAAW,CAAC;IAChB,IAAI,CAAC;QACH,GAAG,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;IACzB,CAAC;IACD,MAAM,MAAM,GAAG,EAAE,CAAC,OAAO,CACvB;;2CAEuC,CACxC,CAAC;IACF,IAAI,QAAQ,GAAG,CAAC,CAAC;IACjB,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACnC,MAAM,CAAC,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QACtB,IAAI,CAAC,CAAC;YAAE,SAAS;QACjB,IAAI,CAAc,CAAC;QACnB,IAAI,CAAC;YACH,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAgB,CAAC;QACnC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QACD,IAAI,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK;YAAE,SAAS;QAChC,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,MAAM,CAAC,CAAC;QACrE,MAAM,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC;QAC1C,MAAM,GAAG,GAAG,MAAM,CAAC,GAAG,CACpB,CAAC,CAAC,EAAE,EACJ,MAAM,EACN,CAAC,CAAC,KAAK,EACP,CAAC,CAAC,GAAG,IAAI,IAAI,EACb,CAAC,CAAC,IAAI,IAAI,IAAI,EACd,IAAI,EACJ,CAAC,CAAC,MAAM,IAAI,IAAI,EAChB,CAAC,CAAC,EAAE,IAAI,IAAI,EACZ,CAAC,CAAC,UAAU,IAAI,IAAI,EACpB,CAAC,CAAC,WAAW,IAAI,CAAC,CACnB,CAAC;QACF,IAAI,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC;YAAE,QAAQ,EAAE,CAAC;IAC1C,CAAC;IACD,OAAO,EAAE,QAAQ,EAAE,CAAC;AACtB,CAAC"}

package/dist/memory/project 2.d.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export declare function getCurrentProjectRoot(cwd?: string): string;

package/dist/memory/project 2.js DELETED Viewed

@@ -1,24 +0,0 @@
-/**
- * kit memory — current-project resolution.
- *
- * Memory search defaults to the current project (relevance + blast-radius
- * containment); the repo root is the project boundary. Falls back to cwd when not
- * inside a git repo. Pure read — no model calls, no writes.
- */
-import { execFileSync } from "node:child_process";
-export function getCurrentProjectRoot(cwd = process.cwd()) {
-    try {
-        const root = execFileSync("git", ["rev-parse", "--show-toplevel"], {
-            cwd,
-            encoding: "utf8",
-            stdio: ["ignore", "pipe", "ignore"],
-        }).trim();
-        if (root)
-            return root;
-    }
-    catch {
-        // not a git repo (or git unavailable) — fall back to cwd
-    }
-    return cwd;
-}
-//# sourceMappingURL=project%202.js.map

package/dist/memory/project 2.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"project 2.js","sourceRoot":"","sources":["../../src/memory/project 2.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,MAAM,UAAU,qBAAqB,CAAC,MAAc,OAAO,CAAC,GAAG,EAAE;IAC/D,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,YAAY,CAAC,KAAK,EAAE,CAAC,WAAW,EAAE,iBAAiB,CAAC,EAAE;YACjE,GAAG;YACH,QAAQ,EAAE,MAAM;YAChB,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC;SACpC,CAAC,CAAC,IAAI,EAAE,CAAC;QACV,IAAI,IAAI;YAAE,OAAO,IAAI,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,yDAAyD;IAC3D,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/memory/scan 2.d.ts DELETED Viewed

@@ -1,15 +0,0 @@
-import type { DatabaseSync } from "node:sqlite";
-export type ScanConfidence = "high" | "heuristic";
-export interface ScanFinding {
-    label: string;
-    preview: string;
-    confidence: ScanConfidence;
-    /** How many cells matched this (label, preview). */
-    count: number;
-    /** One example location, e.g. "messages#23839.content". */
-    sample: string;
-    /** Distinct project hints (which repo the secret leaked in), e.g. ["acme-app"]. */
-    projects: string[];
-}
-/** Scan every text cell for stored secrets. Deduped, confidence-tiered, project-attributed. */
-export declare function scanDbForSecrets(db: DatabaseSync): ScanFinding[];

package/dist/memory/scan 2.js DELETED Viewed

@@ -1,94 +0,0 @@
-/**
- * kit memory — secret scan over the store.
- *
- * The memory DB is secret-dense (it indexes raw transcripts). gitleaks and most
- * scanners only see text files, not SQLite cell contents — so this scans the text
- * columns directly, reusing kit's SECRET_PATTERNS via findSecrets (DRY). Findings
- * are MASKED (label + short preview), never the raw secret.
- *
- * Findings are DEDUPED by (label, preview) with an occurrence count, split by
- * CONFIDENCE so the genuinely dangerous keys (sk_live, AIzaSy, AKIA, ghp_, …) are
- * not buried under the over-eager `KEY=value` heuristic, and ATTRIBUTED to the
- * project(s) they leaked in (via each row's cwd) so you know which provider account
- * to rotate. Only high-confidence findings make `kit memory scan` exit non-zero.
- */
-import { basename } from "node:path";
-import { findSecrets } from "../utils/redactSecrets.js";
-const TARGETS = [
-    {
-        table: "messages",
-        idCol: "id",
-        columns: ["content"],
-        select: "SELECT id, content, cwd AS __project FROM messages",
-    },
-    {
-        table: "tool_uses",
-        idCol: "id",
-        columns: ["tool_input"],
-        select: "SELECT tool_uses.id AS id, tool_uses.tool_input AS tool_input, m.cwd AS __project " +
-            "FROM tool_uses LEFT JOIN messages m ON m.uuid = tool_uses.message_uuid",
-    },
-    {
-        table: "pending_actions",
-        idCol: "id",
-        columns: ["title", "detail", "verify_cmd"],
-        select: "SELECT id, title, detail, verify_cmd, scope AS __project FROM pending_actions",
-    },
-    {
-        table: "saved_threads",
-        idCol: "name",
-        columns: ["summary"],
-        select: "SELECT name, summary, project_path AS __project FROM saved_threads",
-    },
-];
-// Heuristic labels are pattern-based guesses (KEY=value, tfstate blobs) that
-// frequently match benign env vars / file paths. Everything else is a structured,
-// high-confidence credential pattern.
-const HEURISTIC_LABELS = new Set(["kv-secret", "tfstate-value"]);
-function projectName(raw) {
-    if (typeof raw !== "string" || !raw)
-        return null;
-    return raw.includes("/") ? basename(raw) : raw;
-}
-/** Scan every text cell for stored secrets. Deduped, confidence-tiered, project-attributed. */
-export function scanDbForSecrets(db) {
-    const byKey = new Map();
-    for (const target of TARGETS) {
-        const rows = db.prepare(target.select).all();
-        for (const row of rows) {
-            const proj = projectName(row.__project);
-            for (const col of target.columns) {
-                const val = row[col];
-                if (typeof val !== "string" || !val)
-                    continue;
-                for (const f of findSecrets(val)) {
-                    const key = `${f.label} ${f.preview}`;
-                    let entry = byKey.get(key);
-                    if (!entry) {
-                        entry = {
-                            label: f.label,
-                            preview: f.preview,
-                            confidence: HEURISTIC_LABELS.has(f.label) ? "heuristic" : "high",
-                            count: 0,
-                            sample: `${target.table}#${row[target.idCol]}.${col}`,
-                            projects: [],
-                            _projects: new Set(),
-                        };
-                        byKey.set(key, entry);
-                    }
-                    entry.count++;
-                    if (proj)
-                        entry._projects.add(proj);
-                }
-            }
-        }
-    }
-    return [...byKey.values()]
-        .map(({ _projects, ...f }) => ({ ...f, projects: [..._projects].sort() }))
-        .sort((a, b) => {
-        if (a.confidence !== b.confidence)
-            return a.confidence === "high" ? -1 : 1;
-        return b.count - a.count;
-    });
-}
-//# sourceMappingURL=scan%202.js.map

package/dist/memory/scan 2.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"scan 2.js","sourceRoot":"","sources":["../../src/memory/scan 2.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAErC,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAwBxD,MAAM,OAAO,GAAa;IACxB;QACE,KAAK,EAAE,UAAU;QACjB,KAAK,EAAE,IAAI;QACX,OAAO,EAAE,CAAC,SAAS,CAAC;QACpB,MAAM,EAAE,oDAAoD;KAC7D;IACD;QACE,KAAK,EAAE,WAAW;QAClB,KAAK,EAAE,IAAI;QACX,OAAO,EAAE,CAAC,YAAY,CAAC;QACvB,MAAM,EACJ,oFAAoF;YACpF,wEAAwE;KAC3E;IACD;QACE,KAAK,EAAE,iBAAiB;QACxB,KAAK,EAAE,IAAI;QACX,OAAO,EAAE,CAAC,OAAO,EAAE,QAAQ,EAAE,YAAY,CAAC;QAC1C,MAAM,EAAE,+EAA+E;KACxF;IACD;QACE,KAAK,EAAE,eAAe;QACtB,KAAK,EAAE,MAAM;QACb,OAAO,EAAE,CAAC,SAAS,CAAC;QACpB,MAAM,EAAE,oEAAoE;KAC7E;CACF,CAAC;AAEF,6EAA6E;AAC7E,kFAAkF;AAClF,sCAAsC;AACtC,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,CAAC;AAEjE,SAAS,WAAW,CAAC,GAAY;IAC/B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IACjD,OAAO,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;AACjD,CAAC;AAED,+FAA+F;AAC/F,MAAM,UAAU,gBAAgB,CAAC,EAAgB;IAC/C,MAAM,KAAK,GAAG,IAAI,GAAG,EAAoD,CAAC;IAC1E,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,MAAM,IAAI,GAAG,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAA+B,CAAC;QAC1E,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACvB,MAAM,IAAI,GAAG,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YACxC,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACjC,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;gBACrB,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,CAAC,GAAG;oBAAE,SAAS;gBAC9C,KAAK,MAAM,CAAC,IAAI,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;oBACjC,MAAM,GAAG,GAAG,GAAG,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,OAAO,EAAE,CAAC;oBACtC,IAAI,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;oBAC3B,IAAI,CAAC,KAAK,EAAE,CAAC;wBACX,KAAK,GAAG;4BACN,KAAK,EAAE,CAAC,CAAC,KAAK;4BACd,OAAO,EAAE,CAAC,CAAC,OAAO;4BAClB,UAAU,EAAE,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,MAAM;4BAChE,KAAK,EAAE,CAAC;4BACR,MAAM,EAAE,GAAG,MAAM,CAAC,KAAK,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,EAAE;4BACrD,QAAQ,EAAE,EAAE;4BACZ,SAAS,EAAE,IAAI,GAAG,EAAU;yBAC7B,CAAC;wBACF,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;oBACxB,CAAC;oBACD,KAAK,CAAC,KAAK,EAAE,CAAC;oBACd,IAAI,IAAI;wBAAE,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;SACvB,GAAG,CAAC,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,QAAQ,EAAE,CAAC,GAAG,SAAS,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;SACzE,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACb,IAAI,CAAC,CAAC,UAAU,KAAK,CAAC,CAAC,UAAU;YAAE,OAAO,CAAC,CAAC,UAAU,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3E,OAAO,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;IAC3B,CAAC,CAAC,CAAC;AACP,CAAC"}

package/dist/memory/scan.test 2.d.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export {};

package/dist/memory/scan.test 2.js DELETED Viewed

@@ -1,55 +0,0 @@
-import { describe, it } from "node:test";
-import assert from "node:assert/strict";
-import { openMemoryDb, upsertSession, insertMessage } from "./db.js";
-import { scanDbForSecrets } from "./scan.js";
-describe("memory secret-scan", () => {
-    it("flags a stored secret (masked, high-confidence) and locates it", () => {
-        const db = openMemoryDb(":memory:");
-        upsertSession(db, { sessionId: "s1", harness: "claude-code" });
-        const fake = "sk_live_" + "A".repeat(24); // synthetic, non-real
-        insertMessage(db, { uuid: "u1", sessionId: "s1", type: "user", content: `the key is ${fake}` });
-        insertMessage(db, { uuid: "u2", sessionId: "s1", type: "user", content: "totally clean message" });
-        const findings = scanDbForSecrets(db);
-        assert.equal(findings.length, 1);
-        assert.equal(findings[0]?.label, "stripe-key");
-        assert.equal(findings[0]?.confidence, "high");
-        assert.equal(findings[0]?.count, 1);
-        assert.match(findings[0]?.sample ?? "", /^messages#\d+\.content$/);
-        assert.ok(!findings[0]?.preview.includes("A".repeat(24)), "preview is masked, not the raw secret");
-        db.close();
-    });
-    it("dedupes the same secret across rows with an occurrence count", () => {
-        const db = openMemoryDb(":memory:");
-        upsertSession(db, { sessionId: "s1", harness: "claude-code" });
-        const fake = "sk_live_" + "B".repeat(24);
-        insertMessage(db, { uuid: "u1", sessionId: "s1", type: "user", content: `key ${fake}` });
-        insertMessage(db, { uuid: "u2", sessionId: "s1", type: "user", content: `again ${fake}` });
-        const findings = scanDbForSecrets(db);
-        assert.equal(findings.length, 1, "one unique finding, not two");
-        assert.equal(findings[0]?.count, 2);
-        db.close();
-    });
-    it("attributes a finding to the project it leaked in (via cwd)", () => {
-        const db = openMemoryDb(":memory:");
-        upsertSession(db, { sessionId: "s1", harness: "claude-code" });
-        const fake = "sk_live_" + "C".repeat(24);
-        insertMessage(db, {
-            uuid: "u1",
-            sessionId: "s1",
-            type: "user",
-            content: `key ${fake}`,
-            cwd: "/Users/me/dev/app-a",
-        });
-        const findings = scanDbForSecrets(db);
-        assert.deepEqual(findings[0]?.projects, ["app-a"]);
-        db.close();
-    });
-    it("returns nothing for a clean db", () => {
-        const db = openMemoryDb(":memory:");
-        upsertSession(db, { sessionId: "s1", harness: "claude-code" });
-        insertMessage(db, { uuid: "u1", sessionId: "s1", type: "user", content: "no secrets here" });
-        assert.deepEqual(scanDbForSecrets(db), []);
-        db.close();
-    });
-});
-//# sourceMappingURL=scan.test%202.js.map

package/dist/memory/scan.test 2.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"scan.test 2.js","sourceRoot":"","sources":["../../src/memory/scan.test 2.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,WAAW,CAAC;AACzC,OAAO,MAAM,MAAM,oBAAoB,CAAC;AACxC,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACrE,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAE7C,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;IAClC,EAAE,CAAC,gEAAgE,EAAE,GAAG,EAAE;QACxE,MAAM,EAAE,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC;QACpC,aAAa,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,CAAC,CAAC;QAC/D,MAAM,IAAI,GAAG,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,sBAAsB;QAChE,aAAa,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,cAAc,IAAI,EAAE,EAAE,CAAC,CAAC;QAChG,aAAa,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,uBAAuB,EAAE,CAAC,CAAC;QACnG,MAAM,QAAQ,GAAG,gBAAgB,CAAC,EAAE,CAAC,CAAC;QACtC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;QAC/C,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,MAAM,CAAC,CAAC;QAC9C,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;QACpC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,MAAM,IAAI,EAAE,EAAE,yBAAyB,CAAC,CAAC;QACnE,MAAM,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,EAAE,uCAAuC,CAAC,CAAC;QACnG,EAAE,CAAC,KAAK,EAAE,CAAC;IACb,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8DAA8D,EAAE,GAAG,EAAE;QACtE,MAAM,EAAE,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC;QACpC,aAAa,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,CAAC,CAAC;QAC/D,MAAM,IAAI,GAAG,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACzC,aAAa,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,EAAE,EAAE,CAAC,CAAC;QACzF,aAAa,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,IAAI,EAAE,EAAE,CAAC,CAAC;QAC3F,MAAM,QAAQ,GAAG,gBAAgB,CAAC,EAAE,CAAC,CAAC;QACtC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,6BAA6B,CAAC,CAAC;QAChE,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;QACpC,EAAE,CAAC,KAAK,EAAE,CAAC;IACb,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4DAA4D,EAAE,GAAG,EAAE;QACpE,MAAM,EAAE,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC;QACpC,aAAa,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,CAAC,CAAC;QAC/D,MAAM,IAAI,GAAG,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACzC,aAAa,CAAC,EAAE,EAAE;YAChB,IAAI,EAAE,IAAI;YACV,SAAS,EAAE,IAAI;YACf,IAAI,EAAE,MAAM;YACZ,OAAO,EAAE,OAAO,IAAI,EAAE;YACtB,GAAG,EAAE,qBAAqB;SAC3B,CAAC,CAAC;QACH,MAAM,QAAQ,GAAG,gBAAgB,CAAC,EAAE,CAAC,CAAC;QACtC,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;QACnD,EAAE,CAAC,KAAK,EAAE,CAAC;IACb,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;QACxC,MAAM,EAAE,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC;QACpC,aAAa,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,CAAC,CAAC;QAC/D,aAAa,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE,CAAC,CAAC;QAC7F,MAAM,CAAC,SAAS,CAAC,gBAAgB,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;QAC3C,EAAE,CAAC,KAAK,EAAE,CAAC;IACb,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/memory/shared 2.d.ts DELETED Viewed

@@ -1,33 +0,0 @@
-export type SharedKind = "decision" | "convention" | "how-built" | "status" | "security" | "note";
-export interface SharedEntry {
-    id: string;
-    area: string;
-    kind: SharedKind;
-    title: string;
-    body: string;
-    refs: string[];
-    author: string;
-    ts: string;
-    source_ref?: string;
-}
-export interface ShareInput {
-    area: string;
-    kind: SharedKind;
-    title: string;
-    body: string;
-    refs?: string[];
-}
-export declare function getSharedPath(root: string): string;
-export declare function readShared(root: string): SharedEntry[];
-/**
- * Promote one entry into the shared store. Fail-closed: refuses (throws) if any
- * text field contains a secret. Only allow-listed fields are persisted — no raw
- * tool output / env dumps can sneak in. Author + source_ref give provenance.
- */
-export declare function shareEntry(root: string, input: ShareInput, now: string): SharedEntry;
-export declare function listAreas(root: string): {
-    area: string;
-    count: number;
-}[];
-export declare function queryArea(root: string, area: string): SharedEntry[];
-export declare function searchShared(root: string, query: string): SharedEntry[];

package/dist/memory/shared 2.js DELETED Viewed

@@ -1,120 +0,0 @@
-/**
- * kit memory — shared project / responsibility-area memory (the curated tier).
- *
- * This is CONTEXT, not raw memory: durable, curated, intentional knowledge that
- * is safe to share with the team and travels with the repo. Treated LIKE CODE:
- *  - committed TEXT (.kit/shared/memory.jsonl) → diffable, PR-reviewable, gitleaks-scannable;
- *  - deny-by-default — nothing is auto-shared, you promote entries explicitly;
- *  - allow-listed schema — only safe fields (no raw dumps);
- *  - fail-closed secret-scan on write (reuses kit's SECRET_PATTERNS);
- *  - provenance + receipts (author + source_ref) so colleagues can trust it.
- *
- * Organized by `area` (e.g. "stripe", "whatsapp", "plugins") so a growing system
- * stays navigable: "how did we build X, what's next, is it secure?" = that area's
- * entries (with receipts). Entries are few (curated) → plain JSONL + JS query; no
- * second database. Querying never calls a model.
- */
-import { randomBytes } from "node:crypto";
-import { execFileSync } from "node:child_process";
-import { existsSync, readFileSync, appendFileSync, mkdirSync } from "node:fs";
-import { join, dirname } from "node:path";
-import { findSecrets } from "../utils/redactSecrets.js";
-export function getSharedPath(root) {
-    return join(root, ".kit", "shared", "memory.jsonl");
-}
-function gitAuthor(root) {
-    const read = (key) => {
-        try {
-            return execFileSync("git", ["config", key], {
-                cwd: root,
-                encoding: "utf8",
-                stdio: ["ignore", "pipe", "ignore"],
-            }).trim();
-        }
-        catch {
-            return "";
-        }
-    };
-    const name = read("user.name");
-    const email = read("user.email");
-    if (name && email)
-        return `${name} <${email}>`;
-    return name || email || "unknown";
-}
-function gitHead(root) {
-    try {
-        const sha = execFileSync("git", ["rev-parse", "--short", "HEAD"], {
-            cwd: root,
-            encoding: "utf8",
-            stdio: ["ignore", "pipe", "ignore"],
-        }).trim();
-        return sha || undefined;
-    }
-    catch {
-        return undefined;
-    }
-}
-export function readShared(root) {
-    const path = getSharedPath(root);
-    if (!existsSync(path))
-        return [];
-    const out = [];
-    for (const line of readFileSync(path, "utf8").split("\n")) {
-        const t = line.trim();
-        if (!t)
-            continue;
-        try {
-            out.push(JSON.parse(t));
-        }
-        catch {
-            // skip malformed lines, keep the rest readable
-        }
-    }
-    return out;
-}
-/**
- * Promote one entry into the shared store. Fail-closed: refuses (throws) if any
- * text field contains a secret. Only allow-listed fields are persisted — no raw
- * tool output / env dumps can sneak in. Author + source_ref give provenance.
- */
-export function shareEntry(root, input, now) {
-    const refs = input.refs ?? [];
-    const scanned = [input.title, input.body, ...refs].join("\n");
-    const found = findSecrets(scanned);
-    if (found.length) {
-        throw new Error(`refused: entry contains ${found.length} secret(s) (${found
-            .map((f) => f.label)
-            .join(", ")}) — shared memory must be secret-clean`);
-    }
-    const entry = {
-        id: randomBytes(3).toString("hex"),
-        area: input.area,
-        kind: input.kind,
-        title: input.title,
-        body: input.body,
-        refs,
-        author: gitAuthor(root),
-        ts: now,
-        source_ref: gitHead(root),
-    };
-    const path = getSharedPath(root);
-    mkdirSync(dirname(path), { recursive: true });
-    appendFileSync(path, JSON.stringify(entry) + "\n");
-    return entry;
-}
-export function listAreas(root) {
-    const counts = new Map();
-    for (const e of readShared(root))
-        counts.set(e.area, (counts.get(e.area) ?? 0) + 1);
-    return [...counts.entries()]
-        .map(([area, count]) => ({ area, count }))
-        .sort((a, b) => a.area.localeCompare(b.area));
-}
-export function queryArea(root, area) {
-    return readShared(root).filter((e) => e.area === area);
-}
-export function searchShared(root, query) {
-    const q = query.toLowerCase();
-    return readShared(root).filter((e) => e.title.toLowerCase().includes(q) || e.body.toLowerCase().includes(q));
-}
-//# sourceMappingURL=shared%202.js.map

package/dist/memory/shared 2.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"shared 2.js","sourceRoot":"","sources":["../../src/memory/shared 2.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,cAAc,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAC9E,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AA8BxD,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,OAAO,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;AACtD,CAAC;AAED,SAAS,SAAS,CAAC,IAAY;IAC7B,MAAM,IAAI,GAAG,CAAC,GAAW,EAAU,EAAE;QACnC,IAAI,CAAC;YACH,OAAO,YAAY,CAAC,KAAK,EAAE,CAAC,QAAQ,EAAE,GAAG,CAAC,EAAE;gBAC1C,GAAG,EAAE,IAAI;gBACT,QAAQ,EAAE,MAAM;gBAChB,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC;aACpC,CAAC,CAAC,IAAI,EAAE,CAAC;QACZ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC,CAAC;IACF,MAAM,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,CAAC;IAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC;IACjC,IAAI,IAAI,IAAI,KAAK;QAAE,OAAO,GAAG,IAAI,KAAK,KAAK,GAAG,CAAC;IAC/C,OAAO,IAAI,IAAI,KAAK,IAAI,SAAS,CAAC;AACpC,CAAC;AAED,SAAS,OAAO,CAAC,IAAY;IAC3B,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,KAAK,EAAE,CAAC,WAAW,EAAE,SAAS,EAAE,MAAM,CAAC,EAAE;YAChE,GAAG,EAAE,IAAI;YACT,QAAQ,EAAE,MAAM;YAChB,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC;SACpC,CAAC,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,GAAG,IAAI,SAAS,CAAC;IAC1B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,IAAY;IACrC,MAAM,IAAI,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACjC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IACjC,MAAM,GAAG,GAAkB,EAAE,CAAC;IAC9B,KAAK,MAAM,IAAI,IAAI,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1D,MAAM,CAAC,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QACtB,IAAI,CAAC,CAAC;YAAE,SAAS;QACjB,IAAI,CAAC;YACH,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAgB,CAAC,CAAC;QACzC,CAAC;QAAC,MAAM,CAAC;YACP,+CAA+C;QACjD,CAAC;IACH,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,UAAU,CAAC,IAAY,EAAE,KAAiB,EAAE,GAAW;IACrE,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,IAAI,EAAE,CAAC;IAC9B,MAAM,OAAO,GAAG,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC9D,MAAM,KAAK,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;IACnC,IAAI,KAAK,CAAC,MAAM,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,2BAA2B,KAAK,CAAC,MAAM,eAAe,KAAK;aACxD,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC;aACnB,IAAI,CAAC,IAAI,CAAC,wCAAwC,CACtD,CAAC;IACJ,CAAC;IACD,MAAM,KAAK,GAAgB;QACzB,EAAE,EAAE,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;QAClC,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,IAAI;QACJ,MAAM,EAAE,SAAS,CAAC,IAAI,CAAC;QACvB,EAAE,EAAE,GAAG;QACP,UAAU,EAAE,OAAO,CAAC,IAAI,CAAC;KAC1B,CAAC;IACF,MAAM,IAAI,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACjC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9C,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC;IACnD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,IAAY;IACpC,MAAM,MAAM,GAAG,IAAI,GAAG,EAAkB,CAAC;IACzC,KAAK,MAAM,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC;QAAE,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IACpF,OAAO,CAAC,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;SACzB,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;SACzC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;AAClD,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,IAAY,EAAE,IAAY;IAClD,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;AACzD,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,IAAY,EAAE,KAAa;IACtD,MAAM,CAAC,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC;IAC9B,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,MAAM,CAC5B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,CAC7E,CAAC;AACJ,CAAC"}

package/dist/memory/threads 2.d.ts DELETED Viewed

@@ -1,37 +0,0 @@
-/**
- * kit memory — named copilots (saved threads).
- *
- * Claude Code's resume list labels sessions by the first message you happened to
- * type, so the thread you want is unfindable. Here you bookmark the threads worth
- * keeping under a real name ("a fleet of named copilots"); a small curated list
- * replaces the scrap heap. Scoped per project by default (the personal store holds
- * all projects; this just filters). Pure read/write — no model calls.
- */
-import type { DatabaseSync } from "node:sqlite";
-export interface SavedThread {
-    name: string;
-    session_id: string;
-    summary: string | null;
-    project_path: string | null;
-    saved_at: string | null;
-}
-export interface SaveThreadInput {
-    name: string;
-    sessionId: string;
-    summary?: string;
-    projectPath?: string;
-}
-export declare function saveThread(db: DatabaseSync, input: SaveThreadInput): void;
-export declare function listThreads(db: DatabaseSync, opts?: {
-    projectPath?: string;
-}): SavedThread[];
-export declare function getThread(db: DatabaseSync, name: string): SavedThread | undefined;
-export declare function removeThread(db: DatabaseSync, name: string): boolean;
-/** Most recent session that touched this project (by message timestamp). */
-export declare function latestSessionId(db: DatabaseSync, opts?: {
-    projectPath?: string;
-}): string | undefined;
-/** Resolve a thread by name, or by 1-based index into the (scoped) list. */
-export declare function resolveThread(db: DatabaseSync, ref: string, opts?: {
-    projectPath?: string;
-}): SavedThread | undefined;