npm - sinapse-ai - Versions diffs - 1.7.0 → 1.9.0 - Mend

sinapse-ai 1.7.0 → 1.9.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (368) hide show

package/.claude/CLAUDE.md +5 -11
package/.claude/hooks/README.md +14 -1
package/.claude/hooks/code-intel-pretool.cjs +115 -0
package/.claude/hooks/enforce-delegation.cjs +31 -3
package/.claude/hooks/enforce-framework-boundary.cjs +324 -0
package/.claude/hooks/enforce-permission-mode.cjs +249 -0
package/.claude/hooks/mind-clone-governance.py +212 -212
package/.claude/hooks/read-protection.py +152 -152
package/.claude/hooks/secret-scanning.cjs +34 -43
package/.claude/hooks/slug-validation.py +175 -175
package/.claude/hooks/sql-governance.py +183 -183
package/.claude/hooks/synapse-engine.cjs +23 -23
package/.claude/hooks/telemetry-post-tool.cjs +128 -0
package/.claude/hooks/telemetry-stop.cjs +132 -0
package/.claude/hooks/verify-packages.cjs +9 -2
package/.claude/rules/documentation-first.md +1 -1
package/.claude/rules/hook-governance.md +3 -1
package/.claude/rules/project-intelligence.md +1 -1
package/.codex/agents/analyst.md +4 -371
package/.codex/agents/animations-orqx.md +4 -57
package/.codex/agents/architect.md +4 -560
package/.codex/agents/brand-orqx.md +4 -95
package/.codex/agents/claude-mastery-chief.md +4 -0
package/.codex/agents/cloning-orqx.md +4 -70
package/.codex/agents/commercial-orqx.md +4 -67
package/.codex/agents/config-engineer.md +2 -2
package/.codex/agents/content-orqx.md +4 -77
package/.codex/agents/copy-orqx.md +4 -65
package/.codex/agents/cost-optimizer.md +4 -0
package/.codex/agents/council-orqx.md +4 -68
package/.codex/agents/courses-orqx.md +4 -64
package/.codex/agents/cro-persuasion.md +4 -0
package/.codex/agents/cyber-orqx.md +4 -67
package/.codex/agents/data-engineer.md +4 -542
package/.codex/agents/design-orqx.md +4 -65
package/.codex/agents/design-system.md +4 -210
package/.codex/agents/developer.md +4 -666
package/.codex/agents/devops.md +4 -668
package/.codex/agents/finance-orqx.md +4 -57
package/.codex/agents/fiscal-compliance-br.md +4 -0
package/.codex/agents/forecast-strategist.md +4 -0
package/.codex/agents/growth-orqx.md +4 -75
package/.codex/agents/hooks-architect.md +2 -2
package/.codex/agents/mcp-integrator.md +2 -2
package/.codex/agents/paidmedia-orqx.md +4 -67
package/.codex/agents/platform-aesthetic-director.md +4 -0
package/.codex/agents/premium-packaging-strategist.md +4 -0
package/.codex/agents/product-lead.md +4 -371
package/.codex/agents/product-orqx.md +4 -57
package/.codex/agents/product-surface-director.md +4 -0
package/.codex/agents/project-integrator.md +2 -2
package/.codex/agents/project-lead.md +4 -414
package/.codex/agents/quality-gate.md +4 -547
package/.codex/agents/research-orqx.md +4 -67
package/.codex/agents/roadmap-sentinel.md +2 -2
package/.codex/agents/skill-craftsman.md +2 -2
package/.codex/agents/snps-orqx.md +4 -684
package/.codex/agents/sop-extractor.md +4 -61
package/.codex/agents/sprint-lead.md +4 -324
package/.codex/agents/squad-creator.md +4 -402
package/.codex/agents/storytelling-orqx.md +4 -65
package/.codex/agents/swarm-orqx.md +4 -64
package/.codex/agents/ux-design-expert.md +4 -532
package/.codex/agents/ux-designer.md +4 -124
package/.codex/command-registry.json +9 -9
package/.codex/delegation-matrix.json +373 -838
package/.codex/delegation-parity.json +657 -0
package/.codex/handoff-packet.parity.schema.json +148 -0
package/.codex/handoff-packet.template.json +26 -0
package/.codex/instructions.md +6 -6
package/.codex/scripts/resolve-codex-agent.js +482 -0
package/.codex/scripts/resolve-codex-command.js +75 -12
package/.codex/scripts/resolve-codex-delegation.js +131 -92
package/.codex/skills/sinapse-claude/SKILL.md +3 -3
package/.codex/skills/sinapse-po/SKILL.md +1 -1
package/.codex/tasks/resolve-sinapse-conflict.md +1 -1
package/.sinapse-ai/cli/commands/health/index.js +24 -0
package/.sinapse-ai/constitution.md +5 -5
package/.sinapse-ai/core/README.md +11 -0
package/.sinapse-ai/core/config/config-loader.js +19 -0
package/.sinapse-ai/core/doctor/checks/git-hooks.js +97 -19
package/.sinapse-ai/core/events/dashboard-emitter.js +30 -9
package/.sinapse-ai/core/execution/build-orchestrator.js +4 -1
package/.sinapse-ai/core/execution/parallel-executor.js +7 -1
package/.sinapse-ai/core/execution/subagent-dispatcher.js +126 -28
package/.sinapse-ai/core/execution/wave-executor.js +4 -1
package/.sinapse-ai/core/grounding/README.md +71 -11
package/.sinapse-ai/core/health-check/checks/project/framework-config.js +38 -2
package/.sinapse-ai/core/health-check/checks/project/package-json.js +47 -3
package/.sinapse-ai/core/health-check/checks/services/gemini-cli.js +117 -0
package/.sinapse-ai/core/health-check/checks/services/index.js +2 -0
package/.sinapse-ai/core/health-check/healers/index.js +40 -3
package/.sinapse-ai/core/ideation/ideation-engine.js +170 -121
package/.sinapse-ai/core/ids/gate-evaluator.js +318 -0
package/.sinapse-ai/core/ids/gates/g5-semantic-handshake.js +190 -0
package/.sinapse-ai/core/ids/gates/g6-ci-integrity.js +162 -0
package/.sinapse-ai/core/ids/index.js +30 -0
package/.sinapse-ai/core/memory/__tests__/active-modules.verify.js +11 -0
package/.sinapse-ai/core/orchestration/agent-invoker.js +29 -6
package/.sinapse-ai/core/orchestration/brownfield-handler.js +36 -3
package/.sinapse-ai/core/orchestration/executors/epic-3-executor.js +76 -5
package/.sinapse-ai/core/orchestration/executors/epic-4-executor.js +63 -17
package/.sinapse-ai/core/orchestration/executors/epic-6-executor.js +153 -41
package/.sinapse-ai/core/orchestration/executors/epic-executor.js +40 -0
package/.sinapse-ai/core/orchestration/greenfield-handler.js +87 -3
package/.sinapse-ai/core/orchestration/master-orchestrator.js +105 -7
package/.sinapse-ai/core/orchestration/parallel-executor.js +6 -1
package/.sinapse-ai/core/orchestration/workflow-executor.js +41 -0
package/.sinapse-ai/core/registry/squad-agent-resolver.js +253 -0
package/.sinapse-ai/core/telemetry/ids-sink.js +188 -0
package/.sinapse-ai/core/ui/observability-panel.js +240 -0
package/.sinapse-ai/core/utils/output-formatter.js +8 -290
package/.sinapse-ai/core-config.yaml +29 -1
package/.sinapse-ai/data/entity-registry.yaml +15056 -13761
package/.sinapse-ai/development/agents/developer.md +2 -0
package/.sinapse-ai/development/agents/devops.md +9 -0
package/.sinapse-ai/development/agents/snps-orqx.md +12 -22
package/.sinapse-ai/development/external-executors/README.md +18 -0
package/.sinapse-ai/development/external-executors/codex.md +56 -0
package/.sinapse-ai/development/scripts/populate-entity-registry.js +65 -9
package/.sinapse-ai/development/scripts/squad/squad-downloader.js +54 -11
package/.sinapse-ai/development/tasks/build-autonomous.md +11 -1
package/.sinapse-ai/development/tasks/build-resume.md +8 -0
package/.sinapse-ai/development/tasks/build-status.md +8 -0
package/.sinapse-ai/development/tasks/build.md +8 -0
package/.sinapse-ai/development/tasks/cleanup-worktrees.md +8 -1
package/.sinapse-ai/development/tasks/delegate-to-external-executor.md +152 -0
package/.sinapse-ai/development/tasks/github-devops-pre-push-quality-gate.md +46 -29
package/.sinapse-ai/development/tasks/gotcha.md +8 -0
package/.sinapse-ai/development/tasks/gotchas.md +8 -0
package/.sinapse-ai/development/tasks/ids-health.md +14 -6
package/.sinapse-ai/development/tasks/list-mcps.md +15 -0
package/.sinapse-ai/development/tasks/merge-worktree.md +8 -1
package/.sinapse-ai/development/tasks/qa-review-build.md +18 -0
package/.sinapse-ai/development/tasks/remove-mcp.md +8 -1
package/.sinapse-ai/development/tasks/update-sinapse.md +3 -3
package/.sinapse-ai/development/tasks/validate-agents.md +26 -14
package/.sinapse-ai/development/templates/service-template/README.md.hbs +159 -159
package/.sinapse-ai/development/templates/service-template/__tests__/index.test.ts.hbs +238 -238
package/.sinapse-ai/development/templates/service-template/client.ts.hbs +404 -404
package/.sinapse-ai/development/templates/service-template/errors.ts.hbs +183 -183
package/.sinapse-ai/development/templates/service-template/index.ts.hbs +121 -121
package/.sinapse-ai/development/templates/service-template/package.json.hbs +88 -88
package/.sinapse-ai/development/templates/service-template/types.ts.hbs +146 -146
package/.sinapse-ai/development/templates/squad-template/LICENSE +22 -22
package/.sinapse-ai/git-hooks/lib/framework-guard.js +258 -0
package/.sinapse-ai/git-hooks/lib/secret-scanner-core.js +283 -0
package/.sinapse-ai/git-hooks/lib/staged-secret-scan.js +179 -0
package/.sinapse-ai/git-hooks/lib/staged-sql-guard.js +204 -0
package/.sinapse-ai/git-hooks/post-commit +28 -0
package/.sinapse-ai/git-hooks/pre-commit +81 -0
package/.sinapse-ai/git-hooks/pre-push +77 -0
package/.sinapse-ai/hooks/ids-post-commit.js +13 -11
package/.sinapse-ai/hooks/ids-pre-push.js +9 -7
package/.sinapse-ai/hooks/sinapse-brand-grounding.cjs +4 -7
package/.sinapse-ai/hooks/sinapse-ds-grounding.cjs +4 -7
package/.sinapse-ai/hooks/sinapse-vault-grounding.cjs +4 -7
package/.sinapse-ai/infrastructure/integrations/ai-providers/ai-provider-factory.js +4 -1
package/.sinapse-ai/infrastructure/integrations/ai-providers/claude-provider.js +57 -55
package/.sinapse-ai/infrastructure/scripts/codex-parity/resolve.js +161 -0
package/.sinapse-ai/infrastructure/scripts/dashboard-status-writer.js +6 -2
package/.sinapse-ai/infrastructure/scripts/ide-sync/index.js +139 -21
package/.sinapse-ai/infrastructure/scripts/ide-sync/persona-renderer.js +97 -0
package/.sinapse-ai/infrastructure/scripts/sync-codex-local-first.js +156 -1
package/.sinapse-ai/infrastructure/scripts/validate-codex-delegation.js +1 -4
package/.sinapse-ai/infrastructure/scripts/validate-codex-integration.js +41 -5
package/.sinapse-ai/infrastructure/templates/coderabbit.yaml.template +280 -280
package/.sinapse-ai/infrastructure/templates/config/env.example +16 -16
package/.sinapse-ai/infrastructure/templates/config/gitignore-additions.tmpl +59 -59
package/.sinapse-ai/infrastructure/templates/github/CODEOWNERS.template +12 -12
package/.sinapse-ai/infrastructure/templates/github-workflows/ci.yml.template +170 -170
package/.sinapse-ai/infrastructure/templates/github-workflows/pr-automation.yml.template +331 -331
package/.sinapse-ai/infrastructure/templates/github-workflows/release.yml.template +197 -197
package/.sinapse-ai/infrastructure/templates/gitignore/gitignore-brownfield-merge.tmpl +19 -19
package/.sinapse-ai/infrastructure/templates/gitignore/gitignore-node.tmpl +86 -86
package/.sinapse-ai/infrastructure/templates/gitignore/gitignore-python.tmpl +146 -146
package/.sinapse-ai/infrastructure/templates/gitignore/gitignore-sinapse-base.tmpl +64 -64
package/.sinapse-ai/infrastructure/templates/safe-collab/CODEOWNERS.template +16 -16
package/.sinapse-ai/infrastructure/templates/sinapse-sync.yaml.template +183 -183
package/.sinapse-ai/install-manifest.yaml +239 -223
package/.sinapse-ai/local-config.yaml.template +65 -65
package/.sinapse-ai/product/templates/adr.hbs +126 -126
package/.sinapse-ai/product/templates/dbdr.hbs +242 -242
package/.sinapse-ai/product/templates/epic.hbs +213 -213
package/.sinapse-ai/product/templates/ide-rules/codex-rules.md +30 -0
package/.sinapse-ai/product/templates/pmdr.hbs +187 -187
package/.sinapse-ai/product/templates/prd-v2.0.hbs +217 -217
package/.sinapse-ai/product/templates/prd.hbs +202 -202
package/.sinapse-ai/product/templates/statusline/statusline-script.js +31 -8
package/.sinapse-ai/product/templates/statusline/track-agent-clear.cjs +79 -0
package/.sinapse-ai/product/templates/statusline/track-agent.cjs +218 -0
package/.sinapse-ai/product/templates/story.hbs +264 -264
package/.sinapse-ai/product/templates/task.hbs +171 -171
package/.sinapse-ai/product/templates/tmpl-comment-on-examples.sql +159 -159
package/.sinapse-ai/product/templates/tmpl-migration-script.sql +92 -92
package/.sinapse-ai/product/templates/tmpl-rls-granular-policies.sql +105 -105
package/.sinapse-ai/product/templates/tmpl-rls-kiss-policy.sql +11 -11
package/.sinapse-ai/product/templates/tmpl-rls-roles.sql +136 -136
package/.sinapse-ai/product/templates/tmpl-rls-simple.sql +78 -78
package/.sinapse-ai/product/templates/tmpl-rls-tenant.sql +153 -153
package/.sinapse-ai/product/templates/tmpl-rollback-script.sql +78 -78
package/.sinapse-ai/product/templates/tmpl-seed-data.sql +141 -141
package/.sinapse-ai/product/templates/tmpl-smoke-test.sql +17 -17
package/.sinapse-ai/product/templates/tmpl-staging-copy-merge.sql +140 -140
package/.sinapse-ai/product/templates/tmpl-stored-proc.sql +141 -141
package/.sinapse-ai/product/templates/tmpl-trigger.sql +153 -153
package/.sinapse-ai/product/templates/tmpl-view-materialized.sql +134 -134
package/.sinapse-ai/product/templates/tmpl-view.sql +178 -178
package/.sinapse-ai/scripts/pm.sh +18 -6
package/AGENTS.md +193 -0
package/LICENSE +63 -63
package/README.en.md +17 -18
package/README.md +18 -19
package/bin/cli.js +18 -1
package/bin/commands/agents.js +96 -0
package/bin/commands/doctor.js +15 -0
package/bin/commands/ideate.js +129 -0
package/bin/commands/install.js +194 -22
package/bin/commands/status.js +14 -1
package/bin/commands/uninstall.js +40 -0
package/bin/commands/update.js +52 -0
package/bin/lib/setup-statusline.js +191 -0
package/bin/postinstall.js +50 -4
package/bin/sinapse-init.js +11 -83
package/bin/sinapse.js +146 -2
package/bin/utils/framework-guard.js +17 -4
package/bin/utils/secret-scanner-core.js +283 -0
package/bin/utils/staged-secret-scan.js +106 -40
package/bin/utils/staged-sql-guard.js +204 -0
package/bin/utils/validate-publish.js +63 -0
package/docs/agent-reference-guide.md +4 -6
package/docs/framework/agent-prefix-convention.md +58 -0
package/docs/framework/collaboration-activation.md +45 -0
package/docs/security/overview.md +1 -1
package/package.json +16 -8
package/packages/installer/src/index.js +26 -0
package/packages/installer/src/installer/git-hooks-installer.js +546 -0
package/packages/installer/src/installer/sinapse-ai-installer.js +87 -0
package/packages/installer/src/wizard/feedback.js +1 -1
package/packages/installer/src/wizard/ide-config-generator.js +40 -25
package/packages/installer/src/wizard/index.js +50 -0
package/packages/installer/src/wizard/validators.js +38 -1
package/packages/installer/tests/unit/artifact-copy-pipeline/artifact-copy-pipeline.test.js +24 -1
package/packages/installer/tests/unit/doctor/doctor-checks.test.js +42 -3
package/packages/installer/tests/unit/entity-registry-bootstrap.test.js +10 -4
package/packages/installer/tests/unit/git-hooks-installer.test.js +262 -0
package/packages/sinapse-install/bin/edmcp.js +0 -0
package/packages/sinapse-install/bin/sinapse-install.js +0 -0
package/scripts/audit-tasks.cjs +112 -91
package/scripts/check-markdown-links.py +352 -352
package/scripts/eval-runner.js +422 -0
package/scripts/generate-install-manifest.js +13 -9
package/scripts/generate-synapse-runtime.js +51 -0
package/scripts/prepare-hooks.js +58 -0
package/scripts/regenerate-orqx-stubs.ps1 +2 -2
package/scripts/validate-agents-md.js +128 -0
package/scripts/validate-all.js +2 -0
package/scripts/validate-evals.js +466 -0
package/scripts/validate-schemas.js +539 -0
package/scripts/validate-squad-orqx.js +9 -2
package/sinapse/agents/sinapse-orqx.md +12 -22
package/sinapse/agents/snps-orqx.md +11 -21
package/squads/claude-code-mastery/squad.yaml +8 -0
package/squads/squad-animations/squad.yaml +1 -1
package/squads/squad-brand/squad.yaml +1 -1
package/squads/squad-cloning/squad.yaml +1 -1
package/squads/squad-commercial/squad.yaml +2 -3
package/squads/squad-content/squad.yaml +1 -1
package/squads/squad-copy/squad.yaml +2 -3
package/squads/squad-courses/squad.yaml +1 -1
package/squads/squad-cybersecurity/squad.yaml +2 -3
package/squads/{squad-artdir → squad-design}/agents/cro-persuasion.md +1 -1
package/squads/{squad-artdir → squad-design}/agents/platform-aesthetic-director.md +2 -2
package/squads/{squad-artdir → squad-design}/agents/premium-packaging-strategist.md +2 -2
package/squads/{squad-artdir → squad-design}/agents/product-surface-director.md +3 -3
package/squads/squad-design/squad.yaml +6 -3
package/squads/squad-finance/squad.yaml +7 -1
package/squads/squad-growth/squad.yaml +1 -1
package/squads/squad-paidmedia/squad.yaml +2 -3
package/squads/squad-product/squad.yaml +1 -1
package/squads/squad-research/squad.yaml +2 -3
package/squads/squad-storytelling/squad.yaml +2 -3
package/.codex/agents/brad-frost.md +0 -46
package/.codex/agents/claude-orqx.md +0 -72
package/.codex/agents/copy-chief.md +0 -162
package/.codex/agents/cyber-chief.md +0 -169
package/.codex/agents/dan-mall.md +0 -43
package/.codex/agents/data-chief.md +0 -198
package/.codex/agents/dave-malouf.md +0 -43
package/.codex/agents/db-sage.md +0 -152
package/.codex/agents/design-chief.md +0 -226
package/.codex/agents/dev.md +0 -102
package/.codex/agents/legal-chief.md +0 -199
package/.codex/agents/nano-banana-generator.md +0 -42
package/.codex/agents/pm.md +0 -81
package/.codex/agents/po.md +0 -85
package/.codex/agents/qa.md +0 -98
package/.codex/agents/sm.md +0 -77
package/.codex/agents/squad-chief.md +0 -1553
package/.codex/agents/squad.md +0 -66
package/.codex/agents/story-chief.md +0 -180
package/.codex/agents/tools-orqx.md +0 -219
package/.codex/agents/traffic-masters-chief.md +0 -211
package/.sinapse-ai/data/registry-update-log.jsonl +0 -72
package/.sinapse-ai/development/scripts/elicitation-engine.js +0 -385
package/.sinapse-ai/development/scripts/elicitation-session-manager.js +0 -300
package/.sinapse-ai/development/tasks/test-validation-task.md +0 -172
package/.sinapse-ai/monitor/hooks/lib/__init__.py +0 -2
package/.sinapse-ai/monitor/hooks/lib/enrich.py +0 -59
package/.sinapse-ai/monitor/hooks/lib/send_event.py +0 -48
package/.sinapse-ai/monitor/hooks/notification.py +0 -30
package/.sinapse-ai/monitor/hooks/post_tool_use.py +0 -46
package/.sinapse-ai/monitor/hooks/pre_compact.py +0 -30
package/.sinapse-ai/monitor/hooks/pre_tool_use.py +0 -41
package/.sinapse-ai/monitor/hooks/stop.py +0 -30
package/.sinapse-ai/monitor/hooks/subagent_stop.py +0 -30
package/.sinapse-ai/monitor/hooks/user_prompt_submit.py +0 -39
package/.sinapse-ai/product/templates/statusline/track-agent.sh +0 -69
package/bin/sinapse-graph.js +0 -19
package/docs/codex-integration-process.md +0 -22
package/docs/codex-parity-program.md +0 -27
package/scripts/install-monitor-hooks.sh +0 -82
package/squads/squad-artdir/README.md +0 -90
package/squads/squad-artdir/agents/accessibility-guardian.md +0 -184
package/squads/squad-artdir/agents/artdir-orqx.md +0 -222
package/squads/squad-artdir/agents/color-psychologist.md +0 -166
package/squads/squad-artdir/agents/design-system-architect.md +0 -100
package/squads/squad-artdir/agents/ia-architect.md +0 -169
package/squads/squad-artdir/agents/interaction-designer.md +0 -162
package/squads/squad-artdir/agents/layout-engineer.md +0 -163
package/squads/squad-artdir/agents/motion-architect.md +0 -185
package/squads/squad-artdir/agents/type-systemist.md +0 -138
package/squads/squad-artdir/agents/visual-strategist.md +0 -127
package/squads/squad-artdir/checklists/seven-pillars-validation-checklist.md +0 -172
package/squads/squad-artdir/knowledge-base/case-nyo-ia-reference.md +0 -289
package/squads/squad-artdir/knowledge-base/deliverables-templates.md +0 -457
package/squads/squad-artdir/knowledge-base/motion-technique-catalog.md +0 -247
package/squads/squad-artdir/knowledge-base/premium-packaging-principles.md +0 -133
package/squads/squad-artdir/knowledge-base/psychological-toolkit.md +0 -229
package/squads/squad-artdir/knowledge-base/saas-art-direction-canon.md +0 -242
package/squads/squad-artdir/knowledge-base/seven-pillars-framework.md +0 -289
package/squads/squad-artdir/knowledge-base/ten-pillars-framework.md +0 -221
package/squads/squad-artdir/package.json +0 -20
package/squads/squad-artdir/squad.yaml +0 -299
package/squads/squad-artdir/tasks/audit-conversion.md +0 -97
package/squads/squad-artdir/tasks/audit-drift-multi-surface.md +0 -55
package/squads/squad-artdir/tasks/consult-saas-canon.md +0 -54
package/squads/squad-artdir/tasks/create-art-direction-brief.md +0 -110
package/squads/squad-artdir/tasks/create-premium-packaging-brief.md +0 -61
package/squads/squad-artdir/tasks/create-wireflow.md +0 -84
package/squads/squad-artdir/tasks/design-color-system.md +0 -81
package/squads/squad-artdir/tasks/design-product-surface.md +0 -60
package/squads/squad-artdir/tasks/design-token-system.md +0 -58
package/squads/squad-artdir/tasks/diagnose-visual-language.md +0 -92
package/squads/squad-artdir/tasks/first-5-minutes-choreography.md +0 -65
package/squads/squad-artdir/tasks/specify-motion-system.md +0 -84
package/squads/squad-artdir/tasks/validate-against-pillars.md +0 -143
package/squads/squad-artdir/templates/art-direction-brief-template.md +0 -215
package/squads/squad-artdir/workflows/conversion-audit-cycle.yaml +0 -142
package/squads/squad-artdir/workflows/full-art-direction-cycle.yaml +0 -179
package/squads/squad-artdir/workflows/saas-platform-art-direction-cycle.yaml +0 -338
package/squads/squad-commercial/agents/legal-chief.md +0 -199
package/squads/squad-copy/agents/copy-chief.md +0 -162
package/squads/squad-cybersecurity/agents/cyber-chief.md +0 -169
package/squads/squad-design/agents/design-chief.md +0 -226
package/squads/squad-paidmedia/agents/traffic-masters-chief.md +0 -211
package/squads/squad-research/agents/data-chief.md +0 -198
package/squads/squad-storytelling/agents/story-chief.md +0 -180

package/.sinapse-ai/product/templates/tmpl-rls-roles.sql CHANGED Viewed

@@ -1,136 +1,136 @@
--- RLS Roles Template
--- Role-Based Access Control (RBAC) foundation for RLS policies
--- Created: :created_date
---
--- This template sets up the foundation for role-based RLS policies
--- =============================================================================
--- ROLES TABLE
--- =============================================================================
-CREATE TABLE IF NOT EXISTS roles (
-    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-    name TEXT NOT NULL UNIQUE,
-    description TEXT,
-    permissions JSONB DEFAULT '[]'::JSONB,
-    created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-    updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-);
--- Insert default roles
-INSERT INTO roles (name, description, permissions) VALUES
-    ('admin', 'Full system access', '["*"]'::JSONB),
-    ('editor', 'Can read and modify content', '["read", "write", "update"]'::JSONB),
-    ('viewer', 'Read-only access', '["read"]'::JSONB),
-    ('creator', 'Can create new content', '["read", "write"]'::JSONB)
-ON CONFLICT (name) DO NOTHING;
--- =============================================================================
--- USER ROLES TABLE (Many-to-Many)
--- =============================================================================
-CREATE TABLE IF NOT EXISTS user_roles (
-    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-    user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
-    role_id UUID NOT NULL REFERENCES roles(id) ON DELETE CASCADE,
-    granted_by UUID REFERENCES auth.users(id),
-    granted_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-    expires_at TIMESTAMPTZ, -- NULL means never expires
-    UNIQUE(user_id, role_id)
-);
--- Index for fast role lookups
-CREATE INDEX IF NOT EXISTS idx_user_roles_user_id ON user_roles(user_id);
-CREATE INDEX IF NOT EXISTS idx_user_roles_role_id ON user_roles(role_id);
--- =============================================================================
--- HELPER FUNCTIONS FOR RLS
--- =============================================================================
--- Check if user has a specific role
-CREATE OR REPLACE FUNCTION has_role(role_name TEXT)
-RETURNS BOOLEAN AS $$
-BEGIN
-    RETURN EXISTS (
-        SELECT 1
-        FROM user_roles ur
-        JOIN roles r ON ur.role_id = r.id
-        WHERE ur.user_id = auth.uid()
-        AND r.name = role_name
-        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
-    );
-END;
-$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
--- Check if user has any of the specified roles
-CREATE OR REPLACE FUNCTION has_any_role(role_names TEXT[])
-RETURNS BOOLEAN AS $$
-BEGIN
-    RETURN EXISTS (
-        SELECT 1
-        FROM user_roles ur
-        JOIN roles r ON ur.role_id = r.id
-        WHERE ur.user_id = auth.uid()
-        AND r.name = ANY(role_names)
-        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
-    );
-END;
-$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
--- Check if user has a specific permission
-CREATE OR REPLACE FUNCTION has_permission(permission TEXT)
-RETURNS BOOLEAN AS $$
-BEGIN
-    RETURN EXISTS (
-        SELECT 1
-        FROM user_roles ur
-        JOIN roles r ON ur.role_id = r.id
-        WHERE ur.user_id = auth.uid()
-        AND (
-            r.permissions @> '["*"]'::JSONB
-            OR r.permissions @> to_jsonb(permission)
-        )
-        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
-    );
-END;
-$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
--- =============================================================================
--- RLS ON ROLES TABLES
--- =============================================================================
--- Roles table: Admins can manage, everyone can read
-ALTER TABLE roles ENABLE ROW LEVEL SECURITY;
-CREATE POLICY "roles_select" ON roles
-FOR SELECT TO authenticated
-USING (true);
-CREATE POLICY "roles_admin" ON roles
-FOR ALL TO authenticated
-USING (has_role('admin'))
-WITH CHECK (has_role('admin'));
--- User roles: Users see their own, admins see all
-ALTER TABLE user_roles ENABLE ROW LEVEL SECURITY;
-CREATE POLICY "user_roles_select" ON user_roles
-FOR SELECT TO authenticated
-USING (user_id = auth.uid() OR has_role('admin'));
-CREATE POLICY "user_roles_admin" ON user_roles
-FOR ALL TO authenticated
-USING (has_role('admin'))
-WITH CHECK (has_role('admin'));
--- =============================================================================
--- USAGE EXAMPLE IN OTHER POLICIES
--- =============================================================================
---
--- CREATE POLICY "my_table_select" ON my_table
--- FOR SELECT TO authenticated
--- USING (
---     user_id = auth.uid()
---     OR has_any_role(ARRAY['admin', 'viewer'])
--- );
---
+-- RLS Roles Template
+-- Role-Based Access Control (RBAC) foundation for RLS policies
+-- Created: :created_date
+--
+-- This template sets up the foundation for role-based RLS policies
+-- =============================================================================
+-- ROLES TABLE
+-- =============================================================================
+CREATE TABLE IF NOT EXISTS roles (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    name TEXT NOT NULL UNIQUE,
+    description TEXT,
+    permissions JSONB DEFAULT '[]'::JSONB,
+    created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+    updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
+);
+-- Insert default roles
+INSERT INTO roles (name, description, permissions) VALUES
+    ('admin', 'Full system access', '["*"]'::JSONB),
+    ('editor', 'Can read and modify content', '["read", "write", "update"]'::JSONB),
+    ('viewer', 'Read-only access', '["read"]'::JSONB),
+    ('creator', 'Can create new content', '["read", "write"]'::JSONB)
+ON CONFLICT (name) DO NOTHING;
+-- =============================================================================
+-- USER ROLES TABLE (Many-to-Many)
+-- =============================================================================
+CREATE TABLE IF NOT EXISTS user_roles (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
+    role_id UUID NOT NULL REFERENCES roles(id) ON DELETE CASCADE,
+    granted_by UUID REFERENCES auth.users(id),
+    granted_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+    expires_at TIMESTAMPTZ, -- NULL means never expires
+    UNIQUE(user_id, role_id)
+);
+-- Index for fast role lookups
+CREATE INDEX IF NOT EXISTS idx_user_roles_user_id ON user_roles(user_id);
+CREATE INDEX IF NOT EXISTS idx_user_roles_role_id ON user_roles(role_id);
+-- =============================================================================
+-- HELPER FUNCTIONS FOR RLS
+-- =============================================================================
+-- Check if user has a specific role
+CREATE OR REPLACE FUNCTION has_role(role_name TEXT)
+RETURNS BOOLEAN AS $$
+BEGIN
+    RETURN EXISTS (
+        SELECT 1
+        FROM user_roles ur
+        JOIN roles r ON ur.role_id = r.id
+        WHERE ur.user_id = auth.uid()
+        AND r.name = role_name
+        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
+    );
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
+-- Check if user has any of the specified roles
+CREATE OR REPLACE FUNCTION has_any_role(role_names TEXT[])
+RETURNS BOOLEAN AS $$
+BEGIN
+    RETURN EXISTS (
+        SELECT 1
+        FROM user_roles ur
+        JOIN roles r ON ur.role_id = r.id
+        WHERE ur.user_id = auth.uid()
+        AND r.name = ANY(role_names)
+        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
+    );
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
+-- Check if user has a specific permission
+CREATE OR REPLACE FUNCTION has_permission(permission TEXT)
+RETURNS BOOLEAN AS $$
+BEGIN
+    RETURN EXISTS (
+        SELECT 1
+        FROM user_roles ur
+        JOIN roles r ON ur.role_id = r.id
+        WHERE ur.user_id = auth.uid()
+        AND (
+            r.permissions @> '["*"]'::JSONB
+            OR r.permissions @> to_jsonb(permission)
+        )
+        AND (ur.expires_at IS NULL OR ur.expires_at > NOW())
+    );
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER STABLE;
+-- =============================================================================
+-- RLS ON ROLES TABLES
+-- =============================================================================
+-- Roles table: Admins can manage, everyone can read
+ALTER TABLE roles ENABLE ROW LEVEL SECURITY;
+CREATE POLICY "roles_select" ON roles
+FOR SELECT TO authenticated
+USING (true);
+CREATE POLICY "roles_admin" ON roles
+FOR ALL TO authenticated
+USING (has_role('admin'))
+WITH CHECK (has_role('admin'));
+-- User roles: Users see their own, admins see all
+ALTER TABLE user_roles ENABLE ROW LEVEL SECURITY;
+CREATE POLICY "user_roles_select" ON user_roles
+FOR SELECT TO authenticated
+USING (user_id = auth.uid() OR has_role('admin'));
+CREATE POLICY "user_roles_admin" ON user_roles
+FOR ALL TO authenticated
+USING (has_role('admin'))
+WITH CHECK (has_role('admin'));
+-- =============================================================================
+-- USAGE EXAMPLE IN OTHER POLICIES
+-- =============================================================================
+--
+-- CREATE POLICY "my_table_select" ON my_table
+-- FOR SELECT TO authenticated
+-- USING (
+--     user_id = auth.uid()
+--     OR has_any_role(ARRAY['admin', 'viewer'])
+-- );
+--

package/.sinapse-ai/product/templates/tmpl-rls-simple.sql CHANGED Viewed

@@ -1,78 +1,78 @@
--- Simple RLS Policy Template
--- Table: :table_name
--- Security Model: Simple owner-based access
--- Created: :created_date
---
--- This template creates a simple RLS policy where users can only
--- access rows they own (based on user_id column)
--- Enable RLS on table
-ALTER TABLE :table_name ENABLE ROW LEVEL SECURITY;
--- =============================================================================
--- SIMPLE OWNER-BASED POLICY
--- =============================================================================
--- Drop existing policies if re-running
-DROP POLICY IF EXISTS ":table_name_owner_policy" ON :table_name;
--- Single policy for all operations (SELECT, INSERT, UPDATE, DELETE)
--- Users can only access rows where user_id matches their auth.uid()
-CREATE POLICY ":table_name_owner_policy"
-ON :table_name
-FOR ALL
-TO authenticated
-USING (auth.uid() = user_id)
-WITH CHECK (auth.uid() = user_id);
--- =============================================================================
--- OPTIONAL: Allow service role to bypass RLS
--- =============================================================================
--- Note: This is enabled by default in Supabase
--- The service_role can access all rows regardless of RLS policies
--- Be careful with service_role key exposure
--- =============================================================================
--- OPTIONAL: Public read access (if needed)
--- =============================================================================
--- Uncomment if you want anonymous users to read data
---
--- DROP POLICY IF EXISTS ":table_name_public_read" ON :table_name;
--- CREATE POLICY ":table_name_public_read"
--- ON :table_name
--- FOR SELECT
--- TO anon
--- USING (is_public = true);
--- =============================================================================
--- VERIFICATION
--- =============================================================================
--- Test the policy:
---
--- 1. As authenticated user (should see only their rows):
---    SET LOCAL ROLE authenticated;
---    SET LOCAL request.jwt.claims = '{"sub": "user-uuid-here"}';
---    SELECT * FROM :table_name;
---
--- 2. As service role (should see all rows):
---    SET LOCAL ROLE service_role;
---    SELECT * FROM :table_name;
---
--- 3. As anonymous (should see nothing unless public_read enabled):
---    SET LOCAL ROLE anon;
---    SELECT * FROM :table_name;
--- =============================================================================
--- TABLE REQUIREMENTS
--- =============================================================================
--- This template assumes :table_name has a user_id column:
---
--- CREATE TABLE :table_name (
---     id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
---     user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
---     -- other columns...
---     created_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
--- );
---
--- CREATE INDEX idx_:table_name_user_id ON :table_name(user_id);
+-- Simple RLS Policy Template
+-- Table: :table_name
+-- Security Model: Simple owner-based access
+-- Created: :created_date
+--
+-- This template creates a simple RLS policy where users can only
+-- access rows they own (based on user_id column)
+-- Enable RLS on table
+ALTER TABLE :table_name ENABLE ROW LEVEL SECURITY;
+-- =============================================================================
+-- SIMPLE OWNER-BASED POLICY
+-- =============================================================================
+-- Drop existing policies if re-running
+DROP POLICY IF EXISTS ":table_name_owner_policy" ON :table_name;
+-- Single policy for all operations (SELECT, INSERT, UPDATE, DELETE)
+-- Users can only access rows where user_id matches their auth.uid()
+CREATE POLICY ":table_name_owner_policy"
+ON :table_name
+FOR ALL
+TO authenticated
+USING (auth.uid() = user_id)
+WITH CHECK (auth.uid() = user_id);
+-- =============================================================================
+-- OPTIONAL: Allow service role to bypass RLS
+-- =============================================================================
+-- Note: This is enabled by default in Supabase
+-- The service_role can access all rows regardless of RLS policies
+-- Be careful with service_role key exposure
+-- =============================================================================
+-- OPTIONAL: Public read access (if needed)
+-- =============================================================================
+-- Uncomment if you want anonymous users to read data
+--
+-- DROP POLICY IF EXISTS ":table_name_public_read" ON :table_name;
+-- CREATE POLICY ":table_name_public_read"
+-- ON :table_name
+-- FOR SELECT
+-- TO anon
+-- USING (is_public = true);
+-- =============================================================================
+-- VERIFICATION
+-- =============================================================================
+-- Test the policy:
+--
+-- 1. As authenticated user (should see only their rows):
+--    SET LOCAL ROLE authenticated;
+--    SET LOCAL request.jwt.claims = '{"sub": "user-uuid-here"}';
+--    SELECT * FROM :table_name;
+--
+-- 2. As service role (should see all rows):
+--    SET LOCAL ROLE service_role;
+--    SELECT * FROM :table_name;
+--
+-- 3. As anonymous (should see nothing unless public_read enabled):
+--    SET LOCAL ROLE anon;
+--    SELECT * FROM :table_name;
+-- =============================================================================
+-- TABLE REQUIREMENTS
+-- =============================================================================
+-- This template assumes :table_name has a user_id column:
+--
+-- CREATE TABLE :table_name (
+--     id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+--     user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
+--     -- other columns...
+--     created_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
+-- );
+--
+-- CREATE INDEX idx_:table_name_user_id ON :table_name(user_id);