sentinelayer-cli 0.6.2 → 0.8.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (280) hide show
  1. package/README.md +1009 -996
  2. package/bin/create-sentinelayer.js +5 -5
  3. package/bin/sentinelayer-cli.js +4 -4
  4. package/bin/sl.js +5 -5
  5. package/package.json +64 -63
  6. package/src/agents/ai-governance/index.js +12 -0
  7. package/src/agents/ai-governance/tools/base.js +171 -0
  8. package/src/agents/ai-governance/tools/eval-regression.js +47 -0
  9. package/src/agents/ai-governance/tools/hitl-audit.js +81 -0
  10. package/src/agents/ai-governance/tools/index.js +52 -0
  11. package/src/agents/ai-governance/tools/prompt-drift.js +42 -0
  12. package/src/agents/ai-governance/tools/provenance-check.js +69 -0
  13. package/src/agents/backend/index.js +12 -0
  14. package/src/agents/backend/tools/base.js +189 -0
  15. package/src/agents/backend/tools/circuit-breaker-check.js +123 -0
  16. package/src/agents/backend/tools/idempotency-audit.js +105 -0
  17. package/src/agents/backend/tools/index.js +87 -0
  18. package/src/agents/backend/tools/retry-audit.js +132 -0
  19. package/src/agents/backend/tools/timeout-audit.js +144 -0
  20. package/src/agents/code-quality/index.js +12 -0
  21. package/src/agents/code-quality/tools/base.js +159 -0
  22. package/src/agents/code-quality/tools/complexity-measure.js +197 -0
  23. package/src/agents/code-quality/tools/coupling-analysis.js +81 -0
  24. package/src/agents/code-quality/tools/cycle-detect.js +49 -0
  25. package/src/agents/code-quality/tools/dep-graph.js +196 -0
  26. package/src/agents/code-quality/tools/index.js +89 -0
  27. package/src/agents/data-layer/index.js +12 -0
  28. package/src/agents/data-layer/tools/base.js +181 -0
  29. package/src/agents/data-layer/tools/index-audit.js +165 -0
  30. package/src/agents/data-layer/tools/index.js +83 -0
  31. package/src/agents/data-layer/tools/migration-scan.js +135 -0
  32. package/src/agents/data-layer/tools/query-explain.js +120 -0
  33. package/src/agents/data-layer/tools/tenancy-scan.js +166 -0
  34. package/src/agents/documentation/index.js +12 -0
  35. package/src/agents/documentation/tools/api-diff.js +91 -0
  36. package/src/agents/documentation/tools/base.js +151 -0
  37. package/src/agents/documentation/tools/dead-link-check.js +58 -0
  38. package/src/agents/documentation/tools/docstring-coverage.js +78 -0
  39. package/src/agents/documentation/tools/index.js +52 -0
  40. package/src/agents/documentation/tools/readme-freshness.js +61 -0
  41. package/src/agents/envelope/fix-cycle.js +45 -0
  42. package/src/agents/envelope/index.js +31 -0
  43. package/src/agents/envelope/loop.js +150 -0
  44. package/src/agents/envelope/pulse.js +18 -0
  45. package/src/agents/envelope/stream.js +40 -0
  46. package/src/agents/infrastructure/index.js +12 -0
  47. package/src/agents/infrastructure/tools/base.js +171 -0
  48. package/src/agents/infrastructure/tools/checkov-run.js +32 -0
  49. package/src/agents/infrastructure/tools/drift-detect.js +59 -0
  50. package/src/agents/infrastructure/tools/iam-least-priv-check.js +78 -0
  51. package/src/agents/infrastructure/tools/index.js +52 -0
  52. package/src/agents/infrastructure/tools/tflint-run.js +31 -0
  53. package/src/agents/jules/config/definition.js +160 -160
  54. package/src/agents/jules/config/system-prompt.js +182 -182
  55. package/src/agents/jules/error-intake.js +51 -51
  56. package/src/agents/jules/fix-cycle.js +17 -17
  57. package/src/agents/jules/loop.js +460 -450
  58. package/src/agents/jules/pulse.js +10 -10
  59. package/src/agents/jules/stream.js +187 -186
  60. package/src/agents/jules/swarm/file-scanner.js +74 -74
  61. package/src/agents/jules/swarm/index.js +11 -11
  62. package/src/agents/jules/swarm/orchestrator.js +362 -362
  63. package/src/agents/jules/swarm/pattern-hunter.js +123 -123
  64. package/src/agents/jules/swarm/sub-agent.js +315 -309
  65. package/src/agents/jules/tools/aidenid-email.js +189 -189
  66. package/src/agents/jules/tools/auth-audit.js +1708 -1691
  67. package/src/agents/jules/tools/dispatch.js +340 -335
  68. package/src/agents/jules/tools/file-edit.js +2 -2
  69. package/src/agents/jules/tools/file-read.js +2 -2
  70. package/src/agents/jules/tools/frontend-analyze.js +570 -570
  71. package/src/agents/jules/tools/glob.js +2 -2
  72. package/src/agents/jules/tools/grep.js +2 -2
  73. package/src/agents/jules/tools/index.js +29 -29
  74. package/src/agents/jules/tools/path-guards.js +2 -2
  75. package/src/agents/jules/tools/runtime-audit.js +507 -507
  76. package/src/agents/jules/tools/shell.js +2 -2
  77. package/src/agents/jules/tools/url-policy.js +100 -100
  78. package/src/agents/mode.js +113 -0
  79. package/src/agents/observability/index.js +12 -0
  80. package/src/agents/observability/tools/alert-audit.js +39 -0
  81. package/src/agents/observability/tools/base.js +181 -0
  82. package/src/agents/observability/tools/dashboard-gap.js +42 -0
  83. package/src/agents/observability/tools/index.js +54 -0
  84. package/src/agents/observability/tools/log-schema-check.js +74 -0
  85. package/src/agents/observability/tools/span-coverage.js +74 -0
  86. package/src/agents/persona-visuals.js +102 -61
  87. package/src/agents/release/index.js +12 -0
  88. package/src/agents/release/tools/base.js +181 -0
  89. package/src/agents/release/tools/changelog-diff.js +86 -0
  90. package/src/agents/release/tools/feature-flag-audit.js +126 -0
  91. package/src/agents/release/tools/index.js +61 -0
  92. package/src/agents/release/tools/rollback-verify.js +129 -0
  93. package/src/agents/release/tools/semver-check.js +109 -0
  94. package/src/agents/reliability/index.js +12 -0
  95. package/src/agents/reliability/tools/backpressure-check.js +129 -0
  96. package/src/agents/reliability/tools/base.js +181 -0
  97. package/src/agents/reliability/tools/chaos-probe.js +109 -0
  98. package/src/agents/reliability/tools/graceful-degradation-check.js +114 -0
  99. package/src/agents/reliability/tools/health-check-audit.js +111 -0
  100. package/src/agents/reliability/tools/index.js +87 -0
  101. package/src/agents/run-persona.js +109 -0
  102. package/src/agents/security/index.js +12 -0
  103. package/src/agents/security/tools/authz-audit.js +134 -0
  104. package/src/agents/security/tools/base.js +190 -0
  105. package/src/agents/security/tools/crypto-review.js +175 -0
  106. package/src/agents/security/tools/index.js +97 -0
  107. package/src/agents/security/tools/sast-scan.js +175 -0
  108. package/src/agents/security/tools/secrets-scan.js +216 -0
  109. package/src/agents/shared-tools/dispatch-core.js +320 -315
  110. package/src/agents/shared-tools/file-edit.js +180 -180
  111. package/src/agents/shared-tools/file-read.js +100 -100
  112. package/src/agents/shared-tools/glob.js +168 -168
  113. package/src/agents/shared-tools/grep.js +228 -228
  114. package/src/agents/shared-tools/index.js +46 -46
  115. package/src/agents/shared-tools/path-guards.js +161 -161
  116. package/src/agents/shared-tools/shell.js +383 -383
  117. package/src/agents/supply-chain/index.js +12 -0
  118. package/src/agents/supply-chain/tools/attestation-check.js +42 -0
  119. package/src/agents/supply-chain/tools/base.js +151 -0
  120. package/src/agents/supply-chain/tools/index.js +52 -0
  121. package/src/agents/supply-chain/tools/lockfile-integrity.js +73 -0
  122. package/src/agents/supply-chain/tools/package-verify.js +56 -0
  123. package/src/agents/supply-chain/tools/sbom-diff.js +34 -0
  124. package/src/agents/testing/index.js +12 -0
  125. package/src/agents/testing/tools/base.js +202 -0
  126. package/src/agents/testing/tools/coverage-gap.js +144 -0
  127. package/src/agents/testing/tools/flake-detect.js +125 -0
  128. package/src/agents/testing/tools/index.js +85 -0
  129. package/src/agents/testing/tools/mutation-test.js +143 -0
  130. package/src/agents/testing/tools/snapshot-diff.js +103 -0
  131. package/src/ai/aidenid.js +1021 -1009
  132. package/src/ai/client.js +553 -553
  133. package/src/ai/domain-target-store.js +268 -268
  134. package/src/ai/identity-store.js +270 -270
  135. package/src/ai/proxy.js +137 -137
  136. package/src/ai/site-store.js +145 -145
  137. package/src/audit/agents/architecture.js +180 -180
  138. package/src/audit/agents/compliance.js +179 -179
  139. package/src/audit/agents/documentation.js +165 -165
  140. package/src/audit/agents/performance.js +145 -145
  141. package/src/audit/agents/security.js +215 -215
  142. package/src/audit/agents/testing.js +172 -172
  143. package/src/audit/orchestrator.js +557 -557
  144. package/src/audit/package.js +204 -204
  145. package/src/audit/registry.js +284 -284
  146. package/src/audit/replay.js +103 -103
  147. package/src/auth/gate.js +428 -371
  148. package/src/auth/http.js +681 -611
  149. package/src/auth/service.js +1106 -1106
  150. package/src/auth/session-store.js +813 -813
  151. package/src/cli.js +257 -252
  152. package/src/commands/ai/identity-lifecycle.js +1338 -1338
  153. package/src/commands/ai/provision-governance.js +1272 -1272
  154. package/src/commands/ai/shared.js +147 -147
  155. package/src/commands/ai.js +11 -11
  156. package/src/commands/apply.js +12 -12
  157. package/src/commands/audit.js +1171 -1166
  158. package/src/commands/auth.js +419 -419
  159. package/src/commands/chat.js +184 -191
  160. package/src/commands/config.js +184 -184
  161. package/src/commands/cost.js +311 -311
  162. package/src/commands/daemon/core.js +850 -850
  163. package/src/commands/daemon/extended.js +1048 -1048
  164. package/src/commands/daemon/shared.js +213 -213
  165. package/src/commands/daemon.js +11 -11
  166. package/src/commands/guide.js +174 -174
  167. package/src/commands/ingest.js +58 -58
  168. package/src/commands/init.js +55 -55
  169. package/src/commands/legacy-args.js +20 -10
  170. package/src/commands/mcp.js +461 -461
  171. package/src/commands/omargate.js +63 -29
  172. package/src/commands/persona.js +65 -20
  173. package/src/commands/plugin.js +260 -260
  174. package/src/commands/policy.js +132 -132
  175. package/src/commands/prompt.js +238 -238
  176. package/src/commands/review.js +704 -704
  177. package/src/commands/scan.js +865 -872
  178. package/src/commands/session.js +1238 -0
  179. package/src/commands/spec.js +771 -716
  180. package/src/commands/swarm.js +651 -651
  181. package/src/commands/telemetry.js +202 -202
  182. package/src/commands/watch.js +511 -511
  183. package/src/config/agent-dictionary.js +182 -182
  184. package/src/config/io.js +56 -56
  185. package/src/config/paths.js +18 -18
  186. package/src/config/schema.js +55 -55
  187. package/src/config/service.js +184 -184
  188. package/src/coord/events-log.js +141 -0
  189. package/src/coord/handshake.js +719 -0
  190. package/src/coord/index.js +35 -0
  191. package/src/coord/paths.js +84 -0
  192. package/src/coord/priority.js +62 -0
  193. package/src/coord/tarjan.js +157 -0
  194. package/src/cost/budget.js +235 -235
  195. package/src/cost/history.js +188 -188
  196. package/src/cost/tokenizer.js +160 -0
  197. package/src/cost/tracker.js +232 -171
  198. package/src/daemon/artifact-lineage.js +896 -534
  199. package/src/daemon/assignment-ledger.js +1083 -770
  200. package/src/daemon/ast-drift.js +496 -0
  201. package/src/daemon/ast-parser-layer.js +258 -258
  202. package/src/daemon/budget-governor.js +633 -633
  203. package/src/daemon/callgraph-overlay.js +646 -646
  204. package/src/daemon/error-worker.js +1209 -626
  205. package/src/daemon/fix-cycle.js +384 -377
  206. package/src/daemon/hybrid-mapper.js +929 -929
  207. package/src/daemon/ingest-refresh.js +79 -11
  208. package/src/daemon/jira-lifecycle.js +767 -632
  209. package/src/daemon/operator-control.js +657 -657
  210. package/src/daemon/pulse.js +327 -327
  211. package/src/daemon/reliability-lane.js +471 -471
  212. package/src/daemon/scope-engine.js +1068 -0
  213. package/src/daemon/watchdog.js +971 -971
  214. package/src/events/schema.js +190 -0
  215. package/src/guide/generator.js +316 -316
  216. package/src/ingest/engine.js +933 -918
  217. package/src/ingest/ownership.js +380 -0
  218. package/src/interactive/index.js +97 -97
  219. package/src/legacy-cli.js +3228 -2994
  220. package/src/mcp/registry.js +695 -695
  221. package/src/memory/blackboard.js +301 -301
  222. package/src/memory/retrieval.js +581 -581
  223. package/src/orchestrator/kai-chen.js +126 -0
  224. package/src/plugin/manifest.js +553 -553
  225. package/src/policy/packs.js +144 -144
  226. package/src/prompt/generator.js +136 -118
  227. package/src/review/ai-review.js +672 -679
  228. package/src/review/compliance-pack.js +389 -0
  229. package/src/review/investor-dd-config.js +54 -0
  230. package/src/review/investor-dd-file-loop.js +303 -0
  231. package/src/review/investor-dd-file-router.js +406 -0
  232. package/src/review/investor-dd-html-report.js +233 -0
  233. package/src/review/investor-dd-notification.js +120 -0
  234. package/src/review/investor-dd-orchestrator.js +405 -0
  235. package/src/review/investor-dd-persona-runner.js +275 -0
  236. package/src/review/live-validator.js +253 -0
  237. package/src/review/local-review.js +1351 -1305
  238. package/src/review/omargate-interactive.js +68 -68
  239. package/src/review/omargate-orchestrator.js +492 -300
  240. package/src/review/persona-prompts.js +484 -296
  241. package/src/review/reconciliation-rules.js +329 -0
  242. package/src/review/replay.js +235 -235
  243. package/src/review/report.js +664 -664
  244. package/src/review/reproducibility-chain.js +136 -0
  245. package/src/review/scan-modes.js +147 -42
  246. package/src/review/spec-binding.js +487 -487
  247. package/src/scaffold/generator.js +67 -67
  248. package/src/scaffold/templates.js +150 -150
  249. package/src/scan/generator.js +418 -418
  250. package/src/scan/gh-secrets.js +107 -107
  251. package/src/session/agent-registry.js +359 -0
  252. package/src/session/analytics.js +479 -0
  253. package/src/session/daemon.js +1396 -0
  254. package/src/session/file-locks.js +666 -0
  255. package/src/session/paths.js +37 -0
  256. package/src/session/recap.js +567 -0
  257. package/src/session/redact.js +82 -0
  258. package/src/session/runtime-bridge.js +762 -0
  259. package/src/session/scoring.js +406 -0
  260. package/src/session/setup-guides.js +304 -0
  261. package/src/session/store.js +704 -0
  262. package/src/session/stream.js +333 -0
  263. package/src/session/sync.js +753 -0
  264. package/src/session/tasks.js +1054 -0
  265. package/src/session/templates.js +188 -0
  266. package/src/spec/generator.js +619 -519
  267. package/src/spec/regenerate.js +237 -237
  268. package/src/spec/templates.js +91 -91
  269. package/src/swarm/dashboard.js +247 -247
  270. package/src/swarm/factory.js +363 -363
  271. package/src/swarm/pentest.js +934 -934
  272. package/src/swarm/registry.js +419 -419
  273. package/src/swarm/report.js +158 -158
  274. package/src/swarm/runtime.js +569 -576
  275. package/src/swarm/scenario-dsl.js +272 -272
  276. package/src/telemetry/ledger.js +302 -302
  277. package/src/telemetry/session-tracker.js +234 -234
  278. package/src/telemetry/sync.js +203 -203
  279. package/src/ui/command-hints.js +13 -13
  280. package/src/ui/markdown.js +220 -220
package/src/scaffold/generator.js CHANGED
@@ -1,67 +1,67 @@
1
- /**
2
- * Scaffold generator — writes template files into a project directory.
3
- * Skips files that already exist unless force is true.
4
- */
5
- import fs from "node:fs";
6
- import fsp from "node:fs/promises";
7
- import path from "node:path";
8
-
9
- async function ensureDir(dirPath) {
10
- await fsp.mkdir(dirPath, { recursive: true });
11
- }
12
-
13
- export async function generateScaffold({ projectDir, templateFiles, packageJsonTemplate, readmeContent, force }) {
14
- const written = [];
15
- const skipped = [];
16
-
17
- // Write template files (src/, tests/, .gitignore, etc.)
18
- for (const [relativePath, content] of Object.entries(templateFiles)) {
19
- const fullPath = path.join(projectDir, relativePath);
20
- if (!force && fs.existsSync(fullPath)) {
21
- skipped.push({ path: relativePath, reason: "already exists" });
22
- continue;
23
- }
24
- await ensureDir(path.dirname(fullPath));
25
- await fsp.writeFile(fullPath, content, "utf-8");
26
- written.push(relativePath);
27
- }
28
-
29
- // Merge or create package.json
30
- const pkgPath = path.join(projectDir, "package.json");
31
- if (fs.existsSync(pkgPath)) {
32
- const existing = JSON.parse(await fsp.readFile(pkgPath, "utf-8"));
33
- // Merge dependencies and scripts without overwriting existing keys
34
- if (packageJsonTemplate.dependencies) {
35
- existing.dependencies = { ...packageJsonTemplate.dependencies, ...(existing.dependencies || {}) };
36
- }
37
- if (packageJsonTemplate.devDependencies) {
38
- existing.devDependencies = { ...packageJsonTemplate.devDependencies, ...(existing.devDependencies || {}) };
39
- }
40
- if (packageJsonTemplate.scripts) {
41
- existing.scripts = { ...packageJsonTemplate.scripts, ...(existing.scripts || {}) };
42
- }
43
- if (!existing.type) {
44
- existing.type = packageJsonTemplate.type || "module";
45
- }
46
- await fsp.writeFile(pkgPath, JSON.stringify(existing, null, 2) + "\n", "utf-8");
47
- written.push("package.json (merged)");
48
- } else {
49
- await ensureDir(path.dirname(pkgPath));
50
- await fsp.writeFile(pkgPath, JSON.stringify(packageJsonTemplate, null, 2) + "\n", "utf-8");
51
- written.push("package.json");
52
- }
53
-
54
- // Write README.md
55
- if (readmeContent) {
56
- const readmePath = path.join(projectDir, "README.md");
57
- if (!force && fs.existsSync(readmePath)) {
58
- skipped.push({ path: "README.md", reason: "already exists" });
59
- } else {
60
- await ensureDir(path.dirname(readmePath));
61
- await fsp.writeFile(readmePath, readmeContent, "utf-8");
62
- written.push("README.md");
63
- }
64
- }
65
-
66
- return { written, skipped };
67
- }
1
+ /**
2
+ * Scaffold generator — writes template files into a project directory.
3
+ * Skips files that already exist unless force is true.
4
+ */
5
+ import fs from "node:fs";
6
+ import fsp from "node:fs/promises";
7
+ import path from "node:path";
8
+
9
+ async function ensureDir(dirPath) {
10
+ await fsp.mkdir(dirPath, { recursive: true });
11
+ }
12
+
13
+ export async function generateScaffold({ projectDir, templateFiles, packageJsonTemplate, readmeContent, force }) {
14
+ const written = [];
15
+ const skipped = [];
16
+
17
+ // Write template files (src/, tests/, .gitignore, etc.)
18
+ for (const [relativePath, content] of Object.entries(templateFiles)) {
19
+ const fullPath = path.join(projectDir, relativePath);
20
+ if (!force && fs.existsSync(fullPath)) {
21
+ skipped.push({ path: relativePath, reason: "already exists" });
22
+ continue;
23
+ }
24
+ await ensureDir(path.dirname(fullPath));
25
+ await fsp.writeFile(fullPath, content, "utf-8");
26
+ written.push(relativePath);
27
+ }
28
+
29
+ // Merge or create package.json
30
+ const pkgPath = path.join(projectDir, "package.json");
31
+ if (fs.existsSync(pkgPath)) {
32
+ const existing = JSON.parse(await fsp.readFile(pkgPath, "utf-8"));
33
+ // Merge dependencies and scripts without overwriting existing keys
34
+ if (packageJsonTemplate.dependencies) {
35
+ existing.dependencies = { ...packageJsonTemplate.dependencies, ...(existing.dependencies || {}) };
36
+ }
37
+ if (packageJsonTemplate.devDependencies) {
38
+ existing.devDependencies = { ...packageJsonTemplate.devDependencies, ...(existing.devDependencies || {}) };
39
+ }
40
+ if (packageJsonTemplate.scripts) {
41
+ existing.scripts = { ...packageJsonTemplate.scripts, ...(existing.scripts || {}) };
42
+ }
43
+ if (!existing.type) {
44
+ existing.type = packageJsonTemplate.type || "module";
45
+ }
46
+ await fsp.writeFile(pkgPath, JSON.stringify(existing, null, 2) + "\n", "utf-8");
47
+ written.push("package.json (merged)");
48
+ } else {
49
+ await ensureDir(path.dirname(pkgPath));
50
+ await fsp.writeFile(pkgPath, JSON.stringify(packageJsonTemplate, null, 2) + "\n", "utf-8");
51
+ written.push("package.json");
52
+ }
53
+
54
+ // Write README.md
55
+ if (readmeContent) {
56
+ const readmePath = path.join(projectDir, "README.md");
57
+ if (!force && fs.existsSync(readmePath)) {
58
+ skipped.push({ path: "README.md", reason: "already exists" });
59
+ } else {
60
+ await ensureDir(path.dirname(readmePath));
61
+ await fsp.writeFile(readmePath, readmeContent, "utf-8");
62
+ written.push("README.md");
63
+ }
64
+ }
65
+
66
+ return { written, skipped };
67
+ }
package/src/scaffold/templates.js CHANGED
@@ -1,150 +1,150 @@
1
- /**
2
- * Project code scaffold templates.
3
- *
4
- * Each template returns a map of { relativePath: fileContent } that the
5
- * generator writes into the target project directory, skipping files
6
- * that already exist unless --force is set.
7
- */
8
-
9
- export function getExpressTemplate({ projectName, description }) {
10
- const safeName = String(projectName || "my-app").replace(/[^a-zA-Z0-9_-]/g, "-").toLowerCase();
11
- const safeDesc = String(description || `${safeName} API`);
12
-
13
- return {
14
- "src/index.js": `import express from "express";
15
- import dotenv from "dotenv";
16
- import { healthRouter } from "./routes/health.js";
17
-
18
- dotenv.config();
19
-
20
- const app = express();
21
- app.use(express.json());
22
-
23
- app.use("/api/health", healthRouter);
24
-
25
- const PORT = process.env.PORT || 3000;
26
- app.listen(PORT, () => {
27
- console.log(\`${safeName} listening on port \${PORT}\`);
28
- });
29
-
30
- export default app;
31
- `,
32
-
33
- "src/routes/health.js": `import { Router } from "express";
34
-
35
- export const healthRouter = Router();
36
-
37
- healthRouter.get("/", (_req, res) => {
38
- res.json({ status: "ok", timestamp: new Date().toISOString() });
39
- });
40
- `,
41
-
42
- "tests/health.test.js": `import assert from "node:assert/strict";
43
- import { test } from "node:test";
44
-
45
- test("health endpoint returns ok status", async () => {
46
- // Dynamically import to avoid port binding during test
47
- const { default: app } = await import("../src/index.js");
48
- // Verify app is an express instance
49
- assert.ok(app, "Express app should be exported");
50
- assert.equal(typeof app.listen, "function", "App should have listen method");
51
- });
52
- `,
53
-
54
- ".gitignore": `node_modules/
55
- .env
56
- dist/
57
- coverage/
58
- .sentinelayer/
59
- *.log
60
- `,
61
-
62
- ".env.example": `PORT=3000
63
- # Add your environment variables here
64
- `,
65
- };
66
- }
67
-
68
- export function getPackageJsonTemplate({ projectName, description }) {
69
- const safeName = String(projectName || "my-app").replace(/[^a-zA-Z0-9_-]/g, "-").toLowerCase();
70
- return {
71
- name: safeName,
72
- version: "0.1.0",
73
- description: String(description || `${safeName} API`),
74
- type: "module",
75
- main: "src/index.js",
76
- scripts: {
77
- start: "node src/index.js",
78
- dev: "node --watch src/index.js",
79
- test: "node --test tests/**/*.test.js",
80
- },
81
- dependencies: {
82
- express: "^5.1.0",
83
- dotenv: "^16.4.7",
84
- jsonwebtoken: "^9.0.2",
85
- bcrypt: "^5.1.1",
86
- },
87
- devDependencies: {},
88
- engines: {
89
- node: ">=20.0.0",
90
- },
91
- };
92
- }
93
-
94
- export function buildReadmeContent({ projectName, description, techStack }) {
95
- const name = String(projectName || "my-app");
96
- const desc = String(description || `${name} project`);
97
- const stack = String(techStack || "Node.js + Express");
98
-
99
- return `# ${name}
100
-
101
- ${desc}
102
-
103
- ## Tech Stack
104
-
105
- ${stack}
106
-
107
- ## Getting Started
108
-
109
- \`\`\`bash
110
- npm install
111
- cp .env.example .env
112
- npm run dev
113
- \`\`\`
114
-
115
- ## Testing
116
-
117
- \`\`\`bash
118
- npm test
119
- \`\`\`
120
-
121
- ## Project Structure
122
-
123
- \`\`\`
124
- ${name}/
125
- ├── src/
126
- │ ├── index.js # Application entry point
127
- │ └── routes/ # API route handlers
128
- ├── tests/ # Test files
129
- ├── docs/ # SentinelLayer spec & build guide
130
- ├── prompts/ # Agent execution prompts
131
- ├── .github/workflows/ # CI/CD (Omar Gate)
132
- └── tasks/ # Build checklist
133
- \`\`\`
134
-
135
- ## Security
136
-
137
- This project uses [SentinelLayer](https://sentinelayer.com) Omar Gate for automated security review on every PR.
138
-
139
- ---
140
- Generated with [create-sentinelayer](https://www.npmjs.com/package/sentinelayer-cli)
141
- `;
142
- }
143
-
144
- export const TEMPLATE_REGISTRY = {
145
- "rest-api-express": {
146
- name: "REST API (Express.js)",
147
- getFiles: getExpressTemplate,
148
- getPackageJson: getPackageJsonTemplate,
149
- },
150
- };
1
+ /**
2
+ * Project code scaffold templates.
3
+ *
4
+ * Each template returns a map of { relativePath: fileContent } that the
5
+ * generator writes into the target project directory, skipping files
6
+ * that already exist unless --force is set.
7
+ */
8
+
9
+ export function getExpressTemplate({ projectName, description }) {
10
+ const safeName = String(projectName || "my-app").replace(/[^a-zA-Z0-9_-]/g, "-").toLowerCase();
11
+ const safeDesc = String(description || `${safeName} API`);
12
+
13
+ return {
14
+ "src/index.js": `import express from "express";
15
+ import dotenv from "dotenv";
16
+ import { healthRouter } from "./routes/health.js";
17
+
18
+ dotenv.config();
19
+
20
+ const app = express();
21
+ app.use(express.json());
22
+
23
+ app.use("/api/health", healthRouter);
24
+
25
+ const PORT = process.env.PORT || 3000;
26
+ app.listen(PORT, () => {
27
+ console.log(\`${safeName} listening on port \${PORT}\`);
28
+ });
29
+
30
+ export default app;
31
+ `,
32
+
33
+ "src/routes/health.js": `import { Router } from "express";
34
+
35
+ export const healthRouter = Router();
36
+
37
+ healthRouter.get("/", (_req, res) => {
38
+ res.json({ status: "ok", timestamp: new Date().toISOString() });
39
+ });
40
+ `,
41
+
42
+ "tests/health.test.js": `import assert from "node:assert/strict";
43
+ import { test } from "node:test";
44
+
45
+ test("health endpoint returns ok status", async () => {
46
+ // Dynamically import to avoid port binding during test
47
+ const { default: app } = await import("../src/index.js");
48
+ // Verify app is an express instance
49
+ assert.ok(app, "Express app should be exported");
50
+ assert.equal(typeof app.listen, "function", "App should have listen method");
51
+ });
52
+ `,
53
+
54
+ ".gitignore": `node_modules/
55
+ .env
56
+ dist/
57
+ coverage/
58
+ .sentinelayer/
59
+ *.log
60
+ `,
61
+
62
+ ".env.example": `PORT=3000
63
+ # Add your environment variables here
64
+ `,
65
+ };
66
+ }
67
+
68
+ export function getPackageJsonTemplate({ projectName, description }) {
69
+ const safeName = String(projectName || "my-app").replace(/[^a-zA-Z0-9_-]/g, "-").toLowerCase();
70
+ return {
71
+ name: safeName,
72
+ version: "0.1.0",
73
+ description: String(description || `${safeName} API`),
74
+ type: "module",
75
+ main: "src/index.js",
76
+ scripts: {
77
+ start: "node src/index.js",
78
+ dev: "node --watch src/index.js",
79
+ test: "node --test tests/**/*.test.js",
80
+ },
81
+ dependencies: {
82
+ express: "^5.1.0",
83
+ dotenv: "^16.4.7",
84
+ jsonwebtoken: "^9.0.2",
85
+ bcrypt: "^5.1.1",
86
+ },
87
+ devDependencies: {},
88
+ engines: {
89
+ node: ">=20.0.0",
90
+ },
91
+ };
92
+ }
93
+
94
+ export function buildReadmeContent({ projectName, description, techStack }) {
95
+ const name = String(projectName || "my-app");
96
+ const desc = String(description || `${name} project`);
97
+ const stack = String(techStack || "Node.js + Express");
98
+
99
+ return `# ${name}
100
+
101
+ ${desc}
102
+
103
+ ## Tech Stack
104
+
105
+ ${stack}
106
+
107
+ ## Getting Started
108
+
109
+ \`\`\`bash
110
+ npm install
111
+ cp .env.example .env
112
+ npm run dev
113
+ \`\`\`
114
+
115
+ ## Testing
116
+
117
+ \`\`\`bash
118
+ npm test
119
+ \`\`\`
120
+
121
+ ## Project Structure
122
+
123
+ \`\`\`
124
+ ${name}/
125
+ ├── src/
126
+ │ ├── index.js # Application entry point
127
+ │ └── routes/ # API route handlers
128
+ ├── tests/ # Test files
129
+ ├── docs/ # SentinelLayer spec & build guide
130
+ ├── prompts/ # Agent execution prompts
131
+ ├── .github/workflows/ # CI/CD (Omar Gate)
132
+ └── tasks/ # Build checklist
133
+ \`\`\`
134
+
135
+ ## Security
136
+
137
+ This project uses [SentinelLayer](https://sentinelayer.com) Omar Gate for automated security review on every PR.
138
+
139
+ ---
140
+ Generated with [create-sentinelayer](https://www.npmjs.com/package/sentinelayer-cli)
141
+ `;
142
+ }
143
+
144
+ export const TEMPLATE_REGISTRY = {
145
+ "rest-api-express": {
146
+ name: "REST API (Express.js)",
147
+ getFiles: getExpressTemplate,
148
+ getPackageJson: getPackageJsonTemplate,
149
+ },
150
+ };