soloforge 1.1.44 → 1.1.46

package/dist/verify/audit/governance_report.js

@@ -1,194 +0,0 @@
-/**
- * Governance Report — 审计层模块。
- *
- * 职责边界：
- * - 负责：PolicySummary 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：audit_pool、escape_report、capability_action_advisor、risk_sampler、index、artifact_contract_registry
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import { validateArtifactContracts } from "../../domain/contracts/artifact_contract_registry.js";
-import { debug } from "../../shared/logger.js";
-function deepCopyRule(rule) {
-    return { ...rule };
-}
-function deepCopyDecision(decision) {
-    return {
-        ...decision,
-        evidence_ids: [...decision.evidence_ids],
-        triggered_rules: decision.triggered_rules.map(deepCopyRule),
-    };
-}
-function deepCopySummary(summary) {
-    return {
-        ...summary,
-        action: deepCopyDecision(summary.action),
-    };
-}
-/**
- * 生成治理健康报告。
- * 汇总审计池、逃逸报告、能力决策和抽样决策的统计数据，识别危险策略和降级候选。
- * 支持双层机制、制品契约、配置优先级契约和核心原则的治理检查。
- * @param auditStats - 审计池统计数据
- * @param auditItems - 审计条目列表
- * @param escapeReports - 逃逸报告列表
- * @param escapeStats - 逃逸报告统计数据
- * @param decisions - 能力动作决策列表
- * @param now - 报告生成时间（可选，默认当前时间）
- * @param sampleDecisions - 抽样决策列表（可选）
- * @param dualLayerFindings - 双层机制发现列表（可选）
- * @param dualLayerMechanismCount - 双层机制总数（可选）
- * @param artifacts - 输出制品列表（可选，用于制品契约检查）
- * @param configConflicts - 配置冲突列表（可选，来自 detectConflicts）
- * @param configRedundancies - 配置冗余列表（可选，来自 detectRedundancies）
- * @param corePrinciples - 核心原则遵循性报告列表（可选）
- * @returns 完整的治理健康报告
- */
-/**
- * 生成治理健康报告。
- * @param options - 报告选项，包含审计池和能力状态存储
- * @returns 治理报告，包含任务统计、逃逸分析和降级建议
- */
-export function generateReport(auditStats, _auditItems, escapeReports, escapeStats, decisions, now, sampleDecisions, dualLayerFindings, dualLayerMechanismCount, artifacts, configConflicts, configRedundancies, corePrinciples, contractFindings, totalRegistryContracts) {
-    debug("治理报告", "生成治理健康报告");
-    const nonFPReports = escapeReports.filter((r) => r.failure_type !== "false_positive");
-    const fpReports = escapeReports.filter((r) => r.failure_type === "false_positive");
-    const sampledCount = sampleDecisions
-        ? sampleDecisions.filter((d) => d.should_sample).length
-        : null;
-    // 从决策构建每个策略的汇总
-    const policyMap = new Map();
-    for (const decision of decisions) {
-        const pid = decision.policy_id;
-        const policyEscapes = nonFPReports.filter((r) => r.policy_id === pid);
-        const policyFP = fpReports.filter((r) => r.policy_id === pid);
-        policyMap.set(pid, {
-            policy_id: pid,
-            escape_count: policyEscapes.length,
-            false_positive_count: policyFP.length,
-            action: deepCopyDecision(decision),
-        });
-    }
-    // 危险策略: 有逃逸且非 keep 动作的策略
-    debug("治理报告", "识别危险策略，总决策数=" + decisions.length);
-    const dangerPolicies = [...policyMap.values()]
-        .filter((p) => p.escape_count > 0 && p.action.recommended_action !== "keep")
-        .sort((a, b) => b.escape_count - a.escape_count)
-        .map(deepCopySummary);
-    // 降级候选: 动作为 downgrade 或 disable
-    debug("治理报告", "识别降级候选策略");
-    const downgradeCandidates = [...policyMap.values()]
-        .filter((p) => p.action.recommended_action === "downgrade" || p.action.recommended_action === "disable")
-        .sort((a, b) => {
-        const priority = (d) => (d.recommended_action === "disable" ? 0 : 1);
-        return priority(a.action) - priority(b.action);
-    })
-        .map(deepCopySummary);
-    // Top fixes: 非 FP 逃逸报告按 due_date 排序，最多 5 条
-    debug("治理报告", "整理 top fixes，非误报逃逸数=" + nonFPReports.length);
-    const topFixes = nonFPReports
-        .slice()
-        .sort((a, b) => a.due_date.localeCompare(b.due_date))
-        .slice(0, 5)
-        .map((r) => ({
-        escape_id: r.escape_id,
-        policy_id: r.policy_id,
-        failure_type: r.failure_type,
-        fix_required: r.fix_required,
-        owner: r.owner,
-        due_date: r.due_date,
-    }));
-    // 双层机制汇总
-    if (dualLayerFindings)
-        debug("治理报告", "双层机制发现数=" + dualLayerFindings.length);
-    const dlHardFails = (dualLayerFindings ?? []).filter((f) => f.severity === "hard_fail");
-    const dlAdvisory = (dualLayerFindings ?? []).filter((f) => f.severity === "advisory");
-    const dlSummary = dualLayerFindings
-        ? {
-            total_mechanisms: dualLayerMechanismCount ?? 0,
-            dual_layer_enforced_count: (dualLayerMechanismCount ?? 0) - dlHardFails.length,
-            hard_fail_count: dlHardFails.length,
-            advisory_count: dlAdvisory.length,
-            findings: [...dualLayerFindings],
-        }
-        : undefined;
-    // 制品治理 
-    if (artifacts && artifacts.length > 0)
-        debug("治理报告", "检查制品契约，制品数=" + artifacts.length);
-    let artifactGovernance;
-    if (artifacts && artifacts.length > 0) {
-        const findings = validateArtifactContracts(artifacts);
-        artifactGovernance = {
-            artifact_count: artifacts.length,
-            hard_fail_count: findings.filter(f => f.severity === "hard_fail").length,
-            advisory_count: findings.filter(f => f.severity === "advisory").length,
-            findings,
-        };
-    }
-    // 配置治理（三层配置冲突/冗余检测，替代旧 config_precedence_governance）
-    const allConflicts = configConflicts ?? [];
-    const allRedundancies = configRedundancies ?? [];
-    if (allConflicts.length > 0 || allRedundancies.length > 0) {
-        debug("治理报告", `配置治理: ${allConflicts.length} 冲突, ${allRedundancies.length} 冗余`);
-    }
-    const configGovernance = allConflicts.length > 0 || allRedundancies.length > 0
-        ? {
-            conflict_count: allConflicts.length,
-            redundancy_count: allRedundancies.length,
-            conflicts: [...allConflicts],
-            redundancies: [...allRedundancies],
-        }
-        : undefined;
-    // 核心原则治理
-    if (corePrinciples && corePrinciples.length > 0)
-        debug("治理报告", "检查核心原则遵循性，报告数=" + corePrinciples.length);
-    let corePrinciplesGovernance;
-    if (corePrinciples && corePrinciples.length > 0) {
-        // 合并所有报告为汇总
-        const latestReport = corePrinciples[corePrinciples.length - 1];
-        corePrinciplesGovernance = {
-            task_level: latestReport.task_level,
-            overall_passed: corePrinciples.every(r => r.overall_passed),
-            principles: latestReport.principles.map(p => ({
-                principle_id: p.principle_id,
-                status: p.status,
-                findings: p.findings,
-            })),
-        };
-    }
-    // 契约治理汇总
-    if (contractFindings && contractFindings.length > 0)
-        debug("治理报告", "检查契约治理，发现数=" + contractFindings.length);
-    let contractGovernance;
-    if (contractFindings) {
-        contractGovernance = {
-            total_contracts: totalRegistryContracts ?? new Set(contractFindings.map((f) => f.contract_id)).size,
-            hard_fail_count: contractFindings.filter((f) => f.severity === "hard_fail").length,
-            warning_count: contractFindings.filter((f) => f.severity === "warning").length,
-            advisory_count: contractFindings.filter((f) => f.severity === "advisory").length,
-            findings: [...contractFindings],
-        };
-    }
-    return {
-        generated_at: (now ?? new Date()).toISOString(),
-        total_tasks: auditStats.total,
-        audit_by_risk: { ...auditStats.by_risk },
-        sampled_count: sampledCount,
-        total_escapes: nonFPReports.length,
-        total_false_positives: fpReports.length,
-        escape_by_type: { ...escapeStats.by_type },
-        danger_policies: dangerPolicies,
-        downgrade_candidates: downgradeCandidates,
-        top_fixes: topFixes,
-        dual_layer_summary: dlSummary,
-        artifact_governance: artifactGovernance,
-        config_governance: configGovernance,
-        core_principles_governance: corePrinciplesGovernance,
-        contract_governance: contractGovernance,
-    };
-}
-//# sourceMappingURL=governance_report.js.map

package/dist/verify/audit/governance_report.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"governance_report.js","sourceRoot":"","sources":["../../../src/verify/audit/governance_report.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAOH,OAAO,EAAE,yBAAyB,EAAuD,MAAM,sDAAsD,CAAC;AAItJ,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAoE/C,SAAS,YAAY,CAAC,IAAgB;IACpC,OAAO,EAAE,GAAG,IAAI,EAAE,CAAC;AACrB,CAAC;AAED,SAAS,gBAAgB,CAAC,QAAwB;IAChD,OAAO;QACL,GAAG,QAAQ;QACX,YAAY,EAAE,CAAC,GAAG,QAAQ,CAAC,YAAY,CAAC;QACxC,eAAe,EAAE,QAAQ,CAAC,eAAe,CAAC,GAAG,CAAC,YAAY,CAAC;KAC5D,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,OAAsB;IAC7C,OAAO;QACL,GAAG,OAAO;QACV,MAAM,EAAE,gBAAgB,CAAC,OAAO,CAAC,MAAM,CAAC;KACzC,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAC5B,UAA0B,EAC1B,WAAwB,EACxB,aAA6B,EAC7B,WAA8B,EAC9B,SAA2B,EAC3B,GAAU,EACV,eAAoC,EACpC,iBAAgD,EAChD,uBAAgC,EAChC,SAA4B,EAC5B,eAA4B,EAC5B,kBAAiC,EACjC,cAAuC,EACvC,gBAA8C,EAC9C,sBAA+B;IAE/B,KAAK,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAE1B,MAAM,YAAY,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,gBAAgB,CAAC,CAAC;IACtF,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,gBAAgB,CAAC,CAAC;IAEnF,MAAM,YAAY,GAAG,eAAe;QAClC,CAAC,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,MAAM;QACvD,CAAC,CAAC,IAAI,CAAC;IAET,eAAe;IACf,MAAM,SAAS,GAAG,IAAI,GAAG,EAAyB,CAAC;IAEnD,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE,CAAC;QACjC,MAAM,GAAG,GAAG,QAAQ,CAAC,SAAS,CAAC;QAC/B,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,GAAG,CAAC,CAAC;QACtE,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,GAAG,CAAC,CAAC;QAE9D,SAAS,CAAC,GAAG,CAAC,GAAG,EAAE;YACjB,SAAS,EAAE,GAAG;YACd,YAAY,EAAE,aAAa,CAAC,MAAM;YAClC,oBAAoB,EAAE,QAAQ,CAAC,MAAM;YACrC,MAAM,EAAE,gBAAgB,CAAC,QAAQ,CAAC;SACnC,CAAC,CAAC;IACL,CAAC;IAED,yBAAyB;IACzB,KAAK,CAAC,MAAM,EAAE,cAAc,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,cAAc,GAAG,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC;SAC3C,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,GAAG,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,MAAM,CAAC;SAC3E,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,GAAG,CAAC,CAAC,YAAY,CAAC;SAC/C,GAAG,CAAC,eAAe,CAAC,CAAC;IAExB,gCAAgC;IAChC,KAAK,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC1B,MAAM,mBAAmB,GAAG,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC;SAChD,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,WAAW,IAAI,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,SAAS,CAAC;SACvG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACb,MAAM,QAAQ,GAAG,CAAC,CAAiB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,kBAAkB,KAAK,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACrF,OAAO,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACjD,CAAC,CAAC;SACD,GAAG,CAAC,eAAe,CAAC,CAAC;IAExB,2CAA2C;IAC3C,KAAK,CAAC,MAAM,EAAE,sBAAsB,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAa,YAAY;SACpC,KAAK,EAAE;SACP,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;SACpD,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACX,SAAS,EAAE,CAAC,CAAC,SAAS;QACtB,SAAS,EAAE,CAAC,CAAC,SAAS;QACtB,YAAY,EAAE,CAAC,CAAC,YAAY;QAC5B,YAAY,EAAE,CAAC,CAAC,YAAY;QAC5B,KAAK,EAAE,CAAC,CAAC,KAAK;QACd,QAAQ,EAAE,CAAC,CAAC,QAAQ;KACrB,CAAC,CAAC,CAAC;IAEN,SAAS;IACT,IAAI,iBAAiB;QAAE,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC5E,MAAM,WAAW,GAAG,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC;IACxF,MAAM,UAAU,GAAG,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC;IACtF,MAAM,SAAS,GAAiC,iBAAiB;QAC/D,CAAC,CAAC;YACE,gBAAgB,EAAE,uBAAuB,IAAI,CAAC;YAC9C,yBAAyB,EAAE,CAAC,uBAAuB,IAAI,CAAC,CAAC,GAAG,WAAW,CAAC,MAAM;YAC9E,eAAe,EAAE,WAAW,CAAC,MAAM;YACnC,cAAc,EAAE,UAAU,CAAC,MAAM;YACjC,QAAQ,EAAE,CAAC,GAAG,iBAAiB,CAAC;SACjC;QACH,CAAC,CAAC,SAAS,CAAC;IAEd,QAAQ;IACR,IAAI,SAAS,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,aAAa,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;IACvF,IAAI,kBAA2D,CAAC;IAChE,IAAI,SAAS,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtC,MAAM,QAAQ,GAAG,yBAAyB,CAAC,SAAS,CAAC,CAAC;QACtD,kBAAkB,GAAG;YACnB,cAAc,EAAE,SAAS,CAAC,MAAM;YAChC,eAAe,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM;YACxE,cAAc,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;YACtE,QAAQ;SACT,CAAC;IACJ,CAAC;IAED,qDAAqD;IACrD,MAAM,YAAY,GAAG,eAAe,IAAI,EAAE,CAAC;IAC3C,MAAM,eAAe,GAAG,kBAAkB,IAAI,EAAE,CAAC;IACjD,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1D,KAAK,CAAC,MAAM,EAAE,SAAS,YAAY,CAAC,MAAM,QAAQ,eAAe,CAAC,MAAM,KAAK,CAAC,CAAC;IACjF,CAAC;IACD,MAAM,gBAAgB,GACpB,YAAY,CAAC,MAAM,GAAG,CAAC,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC;QACnD,CAAC,CAAC;YACE,cAAc,EAAE,YAAY,CAAC,MAAM;YACnC,gBAAgB,EAAE,eAAe,CAAC,MAAM;YACxC,SAAS,EAAE,CAAC,GAAG,YAAY,CAAC;YAC5B,YAAY,EAAE,CAAC,GAAG,eAAe,CAAC;SACnC;QACH,CAAC,CAAC,SAAS,CAAC;IAEhB,SAAS;IACT,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;IACzG,IAAI,wBAAwE,CAAC;IAC7E,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChD,YAAY;QACZ,MAAM,YAAY,GAAG,cAAc,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAC/D,wBAAwB,GAAG;YACzB,UAAU,EAAE,YAAY,CAAC,UAAU;YACnC,cAAc,EAAE,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,cAAc,CAAC;YAC3D,UAAU,EAAE,YAAY,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBAC5C,YAAY,EAAE,CAAC,CAAC,YAAY;gBAC5B,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,QAAQ,EAAE,CAAC,CAAC,QAAQ;aACrB,CAAC,CAAC;SACJ,CAAC;IACJ,CAAC;IAED,SAAS;IACT,IAAI,gBAAgB,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,aAAa,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC5G,IAAI,kBAA2D,CAAC;IAChE,IAAI,gBAAgB,EAAE,CAAC;QACrB,kBAAkB,GAAG;YACnB,eAAe,EAAE,sBAAsB,IAAI,IAAI,GAAG,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI;YACnG,eAAe,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM;YAClF,aAAa,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,MAAM;YAC9E,cAAc,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;YAChF,QAAQ,EAAE,CAAC,GAAG,gBAAgB,CAAC;SAChC,CAAC;IACJ,CAAC;IAED,OAAO;QACL,YAAY,EAAE,CAAC,GAAG,IAAI,IAAI,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE;QAC/C,WAAW,EAAE,UAAU,CAAC,KAAK;QAC7B,aAAa,EAAE,EAAE,GAAG,UAAU,CAAC,OAAO,EAAE;QACxC,aAAa,EAAE,YAAY;QAC3B,aAAa,EAAE,YAAY,CAAC,MAAM;QAClC,qBAAqB,EAAE,SAAS,CAAC,MAAM;QACvC,cAAc,EAAE,EAAE,GAAG,WAAW,CAAC,OAAO,EAAE;QAC1C,eAAe,EAAE,cAAc;QAC/B,oBAAoB,EAAE,mBAAmB;QACzC,SAAS,EAAE,QAAQ;QACnB,kBAAkB,EAAE,SAAS;QAC7B,mBAAmB,EAAE,kBAAkB;QACvC,iBAAiB,EAAE,gBAAgB;QACnC,0BAA0B,EAAE,wBAAwB;QACpD,mBAAmB,EAAE,kBAAkB;KACxC,CAAC;AACJ,CAAC"}

package/dist/verify/audit/mutation_audit.d.ts

@@ -1,40 +0,0 @@
-/**
- * Mutation Audit — 审计层模块。
- *
- * 职责边界：
- * - 负责：extractMutationPoints 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：pipeline、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import type { RequirementPoint } from "../../types/pipeline_types.js";
-import type { MutationPoint, MutationAuditEvidence } from "../../types/pipeline_types.js";
-/** 向后兼容 re-export */
-export type { MutationPoint, MutationAuditEntry, MutationAuditEvidence } from "../../types/pipeline_types.js";
-/**
- * 从源码中提取变异候选点，并尝试关联到需求点。
- * 关联策略: 文件路径与需求点描述关键词匹配。
- *
- * @param sourceFiles - 源文件列表，包含文件路径和内容
- * @param requirementPoints - 需求点列表
- * @returns 变异候选点数组
- */
-export declare function extractMutationPoints(sourceFiles: Array<{
-    file_path: string;
-    content: string;
-}>, requirementPoints: RequirementPoint[]): MutationPoint[];
-/**
- * 计算变异审计证据 — 每个需求点的变异覆盖状态。
- *
- * @param mutationPoints - 变异候选点数组
- * @param requirementPoints - 需求点列表
- * @param killedCount - 已 killed 的变异数
- * @param totalCount - 变异总数
- * @returns 变异审计证据
- */
-export declare function computeMutationAudit(mutationPoints: MutationPoint[], requirementPoints: RequirementPoint[], killedCount: number, totalCount: number): MutationAuditEvidence;
-//# sourceMappingURL=mutation_audit.d.ts.map

package/dist/verify/audit/mutation_audit.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"mutation_audit.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/mutation_audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACtE,OAAO,KAAK,EAAE,aAAa,EAAsB,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AAG9G,qBAAqB;AACrB,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AA6B9G;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,WAAW,EAAE,KAAK,CAAC;IAAE,SAAS,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC,EAC1D,iBAAiB,EAAE,gBAAgB,EAAE,GACpC,aAAa,EAAE,CAyBjB;AAED;;;;;;;;GAQG;AACH,wBAAgB,oBAAoB,CAClC,cAAc,EAAE,aAAa,EAAE,EAC/B,iBAAiB,EAAE,gBAAgB,EAAE,EACrC,WAAW,EAAE,MAAM,EACnB,UAAU,EAAE,MAAM,GACjB,qBAAqB,CAwFvB"}

package/dist/verify/audit/mutation_audit.js

@@ -1,154 +0,0 @@
-/**
- * Mutation Audit — 审计层模块。
- *
- * 职责边界：
- * - 负责：extractMutationPoints 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：pipeline、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import { debug } from "../../shared/logger.js";
-const CANDIDATE_PATTERNS = [
-    /\b(if|else|switch|case)\b/.source,
-    /(===|!==|==|!=|>=|<=|>|<)/.source,
-    /(&&|\|\|)/.source,
-    /\breturn\b/.source,
-];
-const CANDIDATE_RE = new RegExp(CANDIDATE_PATTERNS.join("|"));
-const EXCLUDE_PATTERNS = [
-    /^\s*\/\//,
-    /^\s*\*/,
-    /^\s*\/\*/,
-    /^\s*import /,
-    /^\s*export /,
-    /^\s*console\./,
-    /^\s*(interface|type|enum|declare) /,
-    /^\s*debugger/,
-];
-function isCandidateLine(line) {
-    const trimmed = line.trim();
-    if (!trimmed)
-        return false;
-    if (EXCLUDE_PATTERNS.some((p) => p.test(trimmed)))
-        return false;
-    return CANDIDATE_RE.test(trimmed);
-}
-/**
- * 从源码中提取变异候选点，并尝试关联到需求点。
- * 关联策略: 文件路径与需求点描述关键词匹配。
- *
- * @param sourceFiles - 源文件列表，包含文件路径和内容
- * @param requirementPoints - 需求点列表
- * @returns 变异候选点数组
- */
-export function extractMutationPoints(sourceFiles, requirementPoints) {
-    const points = [];
-    debug("变异审计", "extractMutationPoints() 开始执行，源文件数:", sourceFiles.length, "，需求点数:", requirementPoints.length);
-    for (const file of sourceFiles) {
-        const lines = file.content.split("\n");
-        for (let i = 0; i < lines.length; i++) {
-            if (!isCandidateLine(lines[i]))
-                continue;
-            const matchedRp = requirementPoints.find((rp) => {
-                const keywords = rp.description.toLowerCase().split(/\s+/);
-                return keywords.some((kw) => kw.length > 2 && file.file_path.toLowerCase().includes(kw));
-            });
-            points.push({
-                file_path: file.file_path,
-                line_number: i + 1,
-                original_line: lines[i].trim(),
-                requirement_point_id: matchedRp?.id,
-            });
-        }
-    }
-    debug("变异审计", "提取到变异候选点", points.length, "个");
-    return points;
-}
-/**
- * 计算变异审计证据 — 每个需求点的变异覆盖状态。
- *
- * @param mutationPoints - 变异候选点数组
- * @param requirementPoints - 需求点列表
- * @param killedCount - 已 killed 的变异数
- * @param totalCount - 变异总数
- * @returns 变异审计证据
- */
-export function computeMutationAudit(mutationPoints, requirementPoints, killedCount, totalCount) {
-    const perRequirement = [];
-    const coveredRpIds = new Set();
-    debug("变异审计", "computeMutationAudit() 开始执行，需求点数:", requirementPoints.length, "变异点数:", mutationPoints.length, "killed:", killedCount, "/", totalCount);
-    for (const rp of requirementPoints) {
-        const rpPoints = mutationPoints.filter((mp) => mp.requirement_point_id === rp.id);
-        const rpTotal = rpPoints.length;
-        if (rpTotal > 0) {
-            coveredRpIds.add(rp.id);
-            // 按比例分配 killed 计数
-            const rpKilled = Math.min(Math.round((rpTotal / Math.max(totalCount, 1)) * killedCount), rpTotal);
-            perRequirement.push({
-                requirement_point_id: rp.id,
-                mutation_points: rpTotal,
-                mutants_killed: rpKilled,
-                mutants_total: rpTotal,
-                advisory: rpKilled === rpTotal
-                    ? "all mutants killed"
-                    : `advisory: ${rpTotal - rpKilled}/${rpTotal} mutants not killed for ${rp.id}`,
-                // 门禁硬化：P0/P1 需求点变异覆盖 = 0 → hard_fail
-                severity: rpKilled === 0 ? "hard_fail" : undefined,
-            });
-        }
-        else {
-            perRequirement.push({
-                requirement_point_id: rp.id,
-                mutation_points: 0,
-                mutants_killed: 0,
-                mutants_total: 0,
-                advisory: `advisory: no mutation points found for requirement ${rp.id}`,
-                // 无变异点 → 暂不标记严重性（可能该需求不涉及代码变更）
-            });
-        }
-    }
-    // 同时包含未绑定到任何需求点的变异点
-    const unboundPoints = mutationPoints.filter((mp) => !mp.requirement_point_id);
-    const unboundRatio = totalCount > 0 ? unboundPoints.length / totalCount : 0;
-    if (unboundPoints.length > 0) {
-        perRequirement.push({
-            requirement_point_id: "_unbound",
-            mutation_points: unboundPoints.length,
-            mutants_killed: 0,
-            mutants_total: unboundPoints.length,
-            advisory: `advisory: ${unboundPoints.length} mutation points not bound to any requirement`,
-            // 门禁硬化：未绑定 > 30% → warning
-            severity: unboundRatio > 0.3 ? "warning" : undefined,
-        });
-    }
-    const uncoveredRequirements = requirementPoints
-        .filter((rp) => !coveredRpIds.has(rp.id))
-        .map((rp) => rp.id);
-    if (uncoveredRequirements.length > 0) {
-        debug("变异审计", "发现未覆盖的需求点:", uncoveredRequirements.join(", "));
-    }
-    const killRatio = totalCount > 0 ? killedCount / totalCount : 1;
-    debug("变异审计", "计算完成 — kill_ratio:", (killRatio * 100).toFixed(0) + "%", "，未覆盖需求:", uncoveredRequirements.length);
-    // ── 门禁硬化汇总 ──
-    const hardFailCount = perRequirement.filter((e) => e.severity === "hard_fail").length;
-    const warningCount = perRequirement.filter((e) => e.severity === "warning").length;
-    // 整体变异覆盖率 < 50% → 额外 warning
-    const lowCoverage = totalCount > 0 && killRatio < 0.5;
-    return {
-        mutant_killed_count: killedCount,
-        mutant_total_count: totalCount,
-        kill_ratio: killRatio,
-        per_requirement: perRequirement,
-        uncovered_requirements: uncoveredRequirements,
-        summary: uncoveredRequirements.length > 0
-            ? `advisory: ${uncoveredRequirements.length} requirement(s) have no killed mutants: ${uncoveredRequirements.join(", ")}`
-            : `mutation audit: ${killedCount}/${totalCount} killed (ratio: ${(killRatio * 100).toFixed(0)}%)`,
-        hard_fail_count: hardFailCount,
-        warning_count: warningCount + (lowCoverage ? 1 : 0),
-    };
-}
-//# sourceMappingURL=mutation_audit.js.map

package/dist/verify/audit/mutation_audit.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"mutation_audit.js","sourceRoot":"","sources":["../../../src/verify/audit/mutation_audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAK/C,MAAM,kBAAkB,GAAG;IACzB,2BAA2B,CAAC,MAAM;IAClC,2BAA2B,CAAC,MAAM;IAClC,WAAW,CAAC,MAAM;IAClB,YAAY,CAAC,MAAM;CACpB,CAAC;AAEF,MAAM,YAAY,GAAG,IAAI,MAAM,CAAC,kBAAkB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAE9D,MAAM,gBAAgB,GAAG;IACvB,UAAU;IACV,QAAQ;IACR,UAAU;IACV,aAAa;IACb,aAAa;IACb,eAAe;IACf,oCAAoC;IACpC,cAAc;CACf,CAAC;AAEF,SAAS,eAAe,CAAC,IAAY;IACnC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;IAC5B,IAAI,CAAC,OAAO;QAAE,OAAO,KAAK,CAAC;IAC3B,IAAI,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAAE,OAAO,KAAK,CAAC;IAChE,OAAO,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,qBAAqB,CACnC,WAA0D,EAC1D,iBAAqC;IAErC,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,KAAK,CAAC,MAAM,EAAE,oCAAoC,EAAE,WAAW,CAAC,MAAM,EAAE,QAAQ,EAAE,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAE5G,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAAE,SAAS;YAEzC,MAAM,SAAS,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE;gBAC9C,MAAM,QAAQ,GAAG,EAAE,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;gBAC3D,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,MAAM,GAAG,CAAC,IAAI,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;YAC3F,CAAC,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC;gBACV,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,WAAW,EAAE,CAAC,GAAG,CAAC;gBAClB,aAAa,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE;gBAC9B,oBAAoB,EAAE,SAAS,EAAE,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,KAAK,CAAC,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC9C,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,oBAAoB,CAClC,cAA+B,EAC/B,iBAAqC,EACrC,WAAmB,EACnB,UAAkB;IAElB,MAAM,cAAc,GAAyB,EAAE,CAAC;IAChD,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IACvC,KAAK,CAAC,MAAM,EAAE,mCAAmC,EAAE,iBAAiB,CAAC,MAAM,EAAE,OAAO,EAAE,cAAc,CAAC,MAAM,EAAE,SAAS,EAAE,WAAW,EAAE,GAAG,EAAE,UAAU,CAAC,CAAC;IAEtJ,KAAK,MAAM,EAAE,IAAI,iBAAiB,EAAE,CAAC;QACnC,MAAM,QAAQ,GAAG,cAAc,CAAC,MAAM,CACpC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,oBAAoB,KAAK,EAAE,CAAC,EAAE,CAC1C,CAAC;QACF,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC;QAEhC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;YAChB,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;YACxB,kBAAkB;YAClB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CACvB,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,GAAG,WAAW,CAAC,EAC7D,OAAO,CACR,CAAC;YACF,cAAc,CAAC,IAAI,CAAC;gBAClB,oBAAoB,EAAE,EAAE,CAAC,EAAE;gBAC3B,eAAe,EAAE,OAAO;gBACxB,cAAc,EAAE,QAAQ;gBACxB,aAAa,EAAE,OAAO;gBACtB,QAAQ,EACN,QAAQ,KAAK,OAAO;oBAClB,CAAC,CAAC,oBAAoB;oBACtB,CAAC,CAAC,aAAa,OAAO,GAAG,QAAQ,IAAI,OAAO,2BAA2B,EAAE,CAAC,EAAE,EAAE;gBAClF,qCAAqC;gBACrC,QAAQ,EAAE,QAAQ,KAAK,CAAC,CAAC,CAAC,CAAC,WAAoB,CAAC,CAAC,CAAC,SAAS;aAC5D,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,cAAc,CAAC,IAAI,CAAC;gBAClB,oBAAoB,EAAE,EAAE,CAAC,EAAE;gBAC3B,eAAe,EAAE,CAAC;gBAClB,cAAc,EAAE,CAAC;gBACjB,aAAa,EAAE,CAAC;gBAChB,QAAQ,EAAE,sDAAsD,EAAE,CAAC,EAAE,EAAE;gBACvE,+BAA+B;aAChC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,oBAAoB;IACpB,MAAM,aAAa,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,oBAAoB,CAAC,CAAC;IAC9E,MAAM,YAAY,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IAC5E,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7B,cAAc,CAAC,IAAI,CAAC;YAClB,oBAAoB,EAAE,UAAU;YAChC,eAAe,EAAE,aAAa,CAAC,MAAM;YACrC,cAAc,EAAE,CAAC;YACjB,aAAa,EAAE,aAAa,CAAC,MAAM;YACnC,QAAQ,EAAE,aAAa,aAAa,CAAC,MAAM,+CAA+C;YAC1F,2BAA2B;YAC3B,QAAQ,EAAE,YAAY,GAAG,GAAG,CAAC,CAAC,CAAC,SAAkB,CAAC,CAAC,CAAC,SAAS;SAC9D,CAAC,CAAC;IACL,CAAC;IAGD,MAAM,qBAAqB,GAAG,iBAAiB;SAC5C,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;SACxC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;IACtB,IAAI,qBAAqB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACrC,KAAK,CAAC,MAAM,EAAE,YAAY,EAAE,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,SAAS,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhE,KAAK,CAAC,MAAM,EAAE,oBAAoB,EAAE,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,GAAG,EAAE,SAAS,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAC;IAEjH,eAAe;IACf,MAAM,aAAa,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM,CAAC;IACtF,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;IACnF,6BAA6B;IAC7B,MAAM,WAAW,GAAG,UAAU,GAAG,CAAC,IAAI,SAAS,GAAG,GAAG,CAAC;IAEtD,OAAO;QACL,mBAAmB,EAAE,WAAW;QAChC,kBAAkB,EAAE,UAAU;QAC9B,UAAU,EAAE,SAAS;QACrB,eAAe,EAAE,cAAc;QAC/B,sBAAsB,EAAE,qBAAqB;QAC7C,OAAO,EACL,qBAAqB,CAAC,MAAM,GAAG,CAAC;YAC9B,CAAC,CAAC,aAAa,qBAAqB,CAAC,MAAM,2CAA2C,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YACxH,CAAC,CAAC,mBAAmB,WAAW,IAAI,UAAU,mBAAmB,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;QACrG,eAAe,EAAE,aAAa;QAC9B,aAAa,EAAE,YAAY,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;KACpD,CAAC;AACJ,CAAC"}

package/dist/verify/audit/risk_sampler.d.ts

@@ -1,44 +0,0 @@
-/**
- * Risk Sampler — 审计层模块。
- *
- * 职责边界：
- * - 负责：SamplingDecision 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、audit_pool、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：读写本地文件（详见代码内路径）
- */
-import type { RiskLevel } from "./audit_pool.js";
-export interface SamplingDecision {
-    item_task_id: string;
-    item_risk: RiskLevel;
-    should_sample: boolean;
-    seed: number;
-    threshold_pct: number;
-    hash_value: number;
-    risk_factors: RiskFactor[];
-    reason: string;
-}
-export interface RiskFactor {
-    factor: string;
-    detail: string;
-    impact: "increases" | "decreases" | "neutral";
-}
-export interface SampleableItem {
-    task_id: string;
-    risk: RiskLevel;
-    changed_files: string[];
-    capability_refs: string[];
-}
-/**
- * 执行 shouldSample 操作
- */
-export declare function shouldSample(item: SampleableItem, seed?: number): SamplingDecision;
-/**
- * 执行 getThreshold 操作
- */
-export declare function getThreshold(risk: RiskLevel): number;
-//# sourceMappingURL=risk_sampler.d.ts.map

package/dist/verify/audit/risk_sampler.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"risk_sampler.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/risk_sampler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAGH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAGjD,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,SAAS,CAAC;IACrB,aAAa,EAAE,OAAO,CAAC;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,UAAU,EAAE,CAAC;IAC3B,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,WAAW,GAAG,WAAW,GAAG,SAAS,CAAC;CAC/C;AA8CD,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,SAAS,CAAC;IAChB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,wBAAgB,YAAY,CAC1B,IAAI,EAAE,cAAc,EACpB,IAAI,GAAE,MAAU,GACf,gBAAgB,CA2BlB;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,SAAS,GAAG,MAAM,CAGpD"}

package/dist/verify/audit/risk_sampler.js

@@ -1,80 +0,0 @@
-/**
- * Risk Sampler — 审计层模块。
- *
- * 职责边界：
- * - 负责：SamplingDecision 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、audit_pool、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：读写本地文件（详见代码内路径）
- */
-import { createHash } from "node:crypto";
-import { debug } from "../../shared/logger.js";
-const RISK_THRESHOLDS = {
-    low: 20,
-    medium: 50,
-    high: 80,
-    critical: 100,
-};
-function computeHash(taskId, seed) {
-    const h = createHash("sha256").update(`${taskId}:${seed}`).digest();
-    return h.readUInt32BE(0) % 100;
-}
-function collectRiskFactors(risk, changedFileCount, hasCapabilityRefs) {
-    const factors = [];
-    factors.push({
-        factor: "risk_level",
-        detail: `task risk is ${risk}, threshold ${RISK_THRESHOLDS[risk]}%`,
-        impact: risk === "low" ? "decreases" : risk === "critical" ? "increases" : "neutral",
-    });
-    if (changedFileCount > 10) {
-        factors.push({
-            factor: "large_change_set",
-            detail: `${changedFileCount} files changed (>10)`,
-            impact: "increases",
-        });
-    }
-    if (hasCapabilityRefs) {
-        factors.push({
-            factor: "capability_coverage",
-            detail: "task touches registered capabilities",
-            impact: "increases",
-        });
-    }
-    return factors;
-}
-/**
- * 执行 shouldSample 操作
- */
-export function shouldSample(item, seed = 0) {
-    debug("风险采样", "shouldSample() 开始, task_id=${item.task_id}, risk=${item.risk}");
-    const threshold = RISK_THRESHOLDS[item.risk];
-    const hashValue = computeHash(item.task_id, seed);
-    const shouldSample = hashValue < threshold;
-    const riskFactors = collectRiskFactors(item.risk, item.changed_files.length, item.capability_refs.length > 0);
-    debug("风险采样", "hash=${hashValue}, threshold=${threshold}, should_sample=${shouldSample}");
-    const reason = shouldSample
-        ? `sampled: hash ${hashValue} < threshold ${threshold} (risk=${item.risk})`
-        : `skipped: hash ${hashValue} >= threshold ${threshold} (risk=${item.risk})`;
-    return {
-        item_task_id: item.task_id,
-        item_risk: item.risk,
-        should_sample: shouldSample,
-        seed,
-        threshold_pct: threshold,
-        hash_value: hashValue,
-        risk_factors: riskFactors,
-        reason,
-    };
-}
-/**
- * 执行 getThreshold 操作
- */
-export function getThreshold(risk) {
-    debug("风险采样", "getThreshold() risk=${risk}, threshold=${RISK_THRESHOLDS[risk]}");
-    return RISK_THRESHOLDS[risk];
-}
-//# sourceMappingURL=risk_sampler.js.map

package/dist/verify/audit/risk_sampler.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"risk_sampler.js","sourceRoot":"","sources":["../../../src/verify/audit/risk_sampler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAmB/C,MAAM,eAAe,GAA8B;IACjD,GAAG,EAAE,EAAE;IACP,MAAM,EAAE,EAAE;IACV,IAAI,EAAE,EAAE;IACR,QAAQ,EAAE,GAAG;CACd,CAAC;AAEF,SAAS,WAAW,CAAC,MAAc,EAAE,IAAY;IAC/C,MAAM,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;IACpE,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC;AACjC,CAAC;AAED,SAAS,kBAAkB,CACzB,IAAe,EACf,gBAAwB,EACxB,iBAA0B;IAE1B,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,OAAO,CAAC,IAAI,CAAC;QACX,MAAM,EAAE,YAAY;QACpB,MAAM,EAAE,gBAAgB,IAAI,eAAe,eAAe,CAAC,IAAI,CAAC,GAAG;QACnE,MAAM,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;KACrF,CAAC,CAAC;IAEH,IAAI,gBAAgB,GAAG,EAAE,EAAE,CAAC;QAC1B,OAAO,CAAC,IAAI,CAAC;YACX,MAAM,EAAE,kBAAkB;YAC1B,MAAM,EAAE,GAAG,gBAAgB,sBAAsB;YACjD,MAAM,EAAE,WAAW;SACpB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,iBAAiB,EAAE,CAAC;QACtB,OAAO,CAAC,IAAI,CAAC;YACX,MAAM,EAAE,qBAAqB;YAC7B,MAAM,EAAE,sCAAsC;YAC9C,MAAM,EAAE,WAAW;SACpB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AASD;;GAEG;AACH,MAAM,UAAU,YAAY,CAC1B,IAAoB,EACpB,OAAe,CAAC;IAEd,KAAK,CAAC,MAAM,EAAE,+DAA+D,CAAC,CAAC;IACjF,MAAM,SAAS,GAAG,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC7C,MAAM,SAAS,GAAG,WAAW,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAClD,MAAM,YAAY,GAAG,SAAS,GAAG,SAAS,CAAC;IAE3C,MAAM,WAAW,GAAG,kBAAkB,CACpC,IAAI,CAAC,IAAI,EACT,IAAI,CAAC,aAAa,CAAC,MAAM,EACzB,IAAI,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAChC,CAAC;IAEF,KAAK,CAAC,MAAM,EAAE,0EAA0E,CAAC,CAAC;IAC1F,MAAM,MAAM,GAAG,YAAY;QACzB,CAAC,CAAC,iBAAiB,SAAS,gBAAgB,SAAS,UAAU,IAAI,CAAC,IAAI,GAAG;QAC3E,CAAC,CAAC,iBAAiB,SAAS,iBAAiB,SAAS,UAAU,IAAI,CAAC,IAAI,GAAG,CAAC;IAE/E,OAAO;QACL,YAAY,EAAE,IAAI,CAAC,OAAO;QAC1B,SAAS,EAAE,IAAI,CAAC,IAAI;QACpB,aAAa,EAAE,YAAY;QAC3B,IAAI;QACJ,aAAa,EAAE,SAAS;QACxB,UAAU,EAAE,SAAS;QACrB,YAAY,EAAE,WAAW;QACzB,MAAM;KACP,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,IAAe;IAC1C,KAAK,CAAC,MAAM,EAAE,iEAAiE,CAAC,CAAC;IACjF,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC;AAC/B,CAAC"}

package/dist/verify/audit/runtime_safety.d.ts

@@ -1,89 +0,0 @@
-/**
- * Runtime Safety — 审计层模块。
- *
- * 职责边界：
- * - 负责：EvidenceBlock 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-export interface EvidenceBlock {
-    step: string;
-    timestamp: string;
-    data_hash: string;
-    prev_hash: string | null;
-    chain_hash: string;
-    payload: string;
-}
-/**
- * 构建证据链 — 每个步骤产出带 hash 的证据块，与前一个块链式连接。
- */
-export declare function buildEvidenceChain(steps: Array<{
-    step: string;
-    payload: string;
-    timestamp?: string;
-}>): EvidenceBlock[];
-/**
- * 验证证据链完整性 — 检查每个块的 chain_hash 是否与重算结果一致。
- */
-export declare function verifyEvidenceChain(chain: EvidenceBlock[]): {
-    valid: boolean;
-    broken_at: number | null;
-    advisory: string;
-};
-export type CommandRisk = "read_only" | "mutating" | "destructive";
-export interface ClassifiedCommand {
-    command: string;
-    risk: CommandRisk;
-    advisory: string;
-    requires_human_confirm: boolean;
-}
-/**
- * 分类命令的副作用级别。
- */
-export declare function classifyCommand(command: string): ClassifiedCommand;
-export interface MigrationContract {
-    migration_id: string;
-    description: string;
-    forward_command: string;
-    rollback_command: string;
-    risk: CommandRisk;
-    created_at: string;
-}
-export interface MigrationCheckResult {
-    migration_id: string;
-    has_rollback: boolean;
-    rollback_valid: boolean;
-    advisory: string;
-}
-/**
- * 检查迁移契约 — 确保 schema 变更有回滚路径。
- */
-export declare function checkMigrationContract(migration: MigrationContract): MigrationCheckResult;
-export interface DependencyCheck {
-    package_name: string;
-    version: string;
-    has_lockfile: boolean;
-    has_integrity_hash: boolean;
-    advisory: string;
-}
-export interface SupplyChainReport {
-    total_dependencies: number;
-    locked_dependencies: number;
-    unlocked_dependencies: number;
-    checks: DependencyCheck[];
-    advisory: string;
-}
-/**
- * 检查供应链安全 — 验证依赖有 lockfile 和完整性 hash。
- * 此为轻量级检查，不读取实际文件内容。
- */
-export declare function checkSupplyChain(rootDirFiles: string[], dependencies: Array<{
-    name: string;
-    version: string;
-}>): SupplyChainReport;
-//# sourceMappingURL=runtime_safety.d.ts.map

package/dist/verify/audit/runtime_safety.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"runtime_safety.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/runtime_safety.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAOH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,KAAK,EAAE,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,SAAS,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,GAClE,aAAa,EAAE,CAiCjB;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,aAAa,EAAE,GAAG;IAC3D,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAoDA;AAID,MAAM,MAAM,WAAW,GAAG,WAAW,GAAG,UAAU,GAAG,aAAa,CAAC;AAEnE,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,WAAW,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,sBAAsB,EAAE,OAAO,CAAC;CACjC;AAuBD;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,iBAAiB,CA8BlE;AAID,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,IAAI,EAAE,WAAW,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,oBAAoB;IACnC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,OAAO,CAAC;IACtB,cAAc,EAAE,OAAO,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,SAAS,EAAE,iBAAiB,GAC3B,oBAAoB,CAsBtB;AAID,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,EAAE,OAAO,CAAC;IACtB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,iBAAiB;IAChC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,qBAAqB,EAAE,MAAM,CAAC;IAC9B,MAAM,EAAE,eAAe,EAAE,CAAC;IAC1B,QAAQ,EAAE,MAAM,CAAC;CAClB;AAUD;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,YAAY,EAAE,MAAM,EAAE,EACtB,YAAY,EAAE,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC,GACrD,iBAAiB,CA2BnB"}