npm - soloforge - Versions diffs - 1.1.45 → 1.1.46 - Mend

soloforge 1.1.45 → 1.1.46

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (269) hide show

package/dist/verify/audit/governance_report.js DELETED Viewed

@@ -1,194 +0,0 @@
-/**
- * Governance Report — 审计层模块。
- *
- * 职责边界：
- * - 负责：PolicySummary 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：audit_pool、escape_report、capability_action_advisor、risk_sampler、index、artifact_contract_registry
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import { validateArtifactContracts } from "../../domain/contracts/artifact_contract_registry.js";
-import { debug } from "../../shared/logger.js";
-function deepCopyRule(rule) {
-    return { ...rule };
-}
-function deepCopyDecision(decision) {
-    return {
-        ...decision,
-        evidence_ids: [...decision.evidence_ids],
-        triggered_rules: decision.triggered_rules.map(deepCopyRule),
-    };
-}
-function deepCopySummary(summary) {
-    return {
-        ...summary,
-        action: deepCopyDecision(summary.action),
-    };
-}
-/**
- * 生成治理健康报告。
- * 汇总审计池、逃逸报告、能力决策和抽样决策的统计数据，识别危险策略和降级候选。
- * 支持双层机制、制品契约、配置优先级契约和核心原则的治理检查。
- * @param auditStats - 审计池统计数据
- * @param auditItems - 审计条目列表
- * @param escapeReports - 逃逸报告列表
- * @param escapeStats - 逃逸报告统计数据
- * @param decisions - 能力动作决策列表
- * @param now - 报告生成时间（可选，默认当前时间）
- * @param sampleDecisions - 抽样决策列表（可选）
- * @param dualLayerFindings - 双层机制发现列表（可选）
- * @param dualLayerMechanismCount - 双层机制总数（可选）
- * @param artifacts - 输出制品列表（可选，用于制品契约检查）
- * @param configConflicts - 配置冲突列表（可选，来自 detectConflicts）
- * @param configRedundancies - 配置冗余列表（可选，来自 detectRedundancies）
- * @param corePrinciples - 核心原则遵循性报告列表（可选）
- * @returns 完整的治理健康报告
- */
-/**
- * 生成治理健康报告。
- * @param options - 报告选项，包含审计池和能力状态存储
- * @returns 治理报告，包含任务统计、逃逸分析和降级建议
- */
-export function generateReport(auditStats, _auditItems, escapeReports, escapeStats, decisions, now, sampleDecisions, dualLayerFindings, dualLayerMechanismCount, artifacts, configConflicts, configRedundancies, corePrinciples, contractFindings, totalRegistryContracts) {
-    debug("治理报告", "生成治理健康报告");
-    const nonFPReports = escapeReports.filter((r) => r.failure_type !== "false_positive");
-    const fpReports = escapeReports.filter((r) => r.failure_type === "false_positive");
-    const sampledCount = sampleDecisions
-        ? sampleDecisions.filter((d) => d.should_sample).length
-        : null;
-    // 从决策构建每个策略的汇总
-    const policyMap = new Map();
-    for (const decision of decisions) {
-        const pid = decision.policy_id;
-        const policyEscapes = nonFPReports.filter((r) => r.policy_id === pid);
-        const policyFP = fpReports.filter((r) => r.policy_id === pid);
-        policyMap.set(pid, {
-            policy_id: pid,
-            escape_count: policyEscapes.length,
-            false_positive_count: policyFP.length,
-            action: deepCopyDecision(decision),
-        });
-    }
-    // 危险策略: 有逃逸且非 keep 动作的策略
-    debug("治理报告", "识别危险策略，总决策数=" + decisions.length);
-    const dangerPolicies = [...policyMap.values()]
-        .filter((p) => p.escape_count > 0 && p.action.recommended_action !== "keep")
-        .sort((a, b) => b.escape_count - a.escape_count)
-        .map(deepCopySummary);
-    // 降级候选: 动作为 downgrade 或 disable
-    debug("治理报告", "识别降级候选策略");
-    const downgradeCandidates = [...policyMap.values()]
-        .filter((p) => p.action.recommended_action === "downgrade" || p.action.recommended_action === "disable")
-        .sort((a, b) => {
-        const priority = (d) => (d.recommended_action === "disable" ? 0 : 1);
-        return priority(a.action) - priority(b.action);
-    })
-        .map(deepCopySummary);
-    // Top fixes: 非 FP 逃逸报告按 due_date 排序，最多 5 条
-    debug("治理报告", "整理 top fixes，非误报逃逸数=" + nonFPReports.length);
-    const topFixes = nonFPReports
-        .slice()
-        .sort((a, b) => a.due_date.localeCompare(b.due_date))
-        .slice(0, 5)
-        .map((r) => ({
-        escape_id: r.escape_id,
-        policy_id: r.policy_id,
-        failure_type: r.failure_type,
-        fix_required: r.fix_required,
-        owner: r.owner,
-        due_date: r.due_date,
-    }));
-    // 双层机制汇总
-    if (dualLayerFindings)
-        debug("治理报告", "双层机制发现数=" + dualLayerFindings.length);
-    const dlHardFails = (dualLayerFindings ?? []).filter((f) => f.severity === "hard_fail");
-    const dlAdvisory = (dualLayerFindings ?? []).filter((f) => f.severity === "advisory");
-    const dlSummary = dualLayerFindings
-        ? {
-            total_mechanisms: dualLayerMechanismCount ?? 0,
-            dual_layer_enforced_count: (dualLayerMechanismCount ?? 0) - dlHardFails.length,
-            hard_fail_count: dlHardFails.length,
-            advisory_count: dlAdvisory.length,
-            findings: [...dualLayerFindings],
-        }
-        : undefined;
-    // 制品治理
-    if (artifacts && artifacts.length > 0)
-        debug("治理报告", "检查制品契约，制品数=" + artifacts.length);
-    let artifactGovernance;
-    if (artifacts && artifacts.length > 0) {
-        const findings = validateArtifactContracts(artifacts);
-        artifactGovernance = {
-            artifact_count: artifacts.length,
-            hard_fail_count: findings.filter(f => f.severity === "hard_fail").length,
-            advisory_count: findings.filter(f => f.severity === "advisory").length,
-            findings,
-        };
-    }
-    // 配置治理（三层配置冲突/冗余检测，替代旧 config_precedence_governance）
-    const allConflicts = configConflicts ?? [];
-    const allRedundancies = configRedundancies ?? [];
-    if (allConflicts.length > 0 || allRedundancies.length > 0) {
-        debug("治理报告", `配置治理: ${allConflicts.length} 冲突, ${allRedundancies.length} 冗余`);
-    }
-    const configGovernance = allConflicts.length > 0 || allRedundancies.length > 0
-        ? {
-            conflict_count: allConflicts.length,
-            redundancy_count: allRedundancies.length,
-            conflicts: [...allConflicts],
-            redundancies: [...allRedundancies],
-        }
-        : undefined;
-    // 核心原则治理
-    if (corePrinciples && corePrinciples.length > 0)
-        debug("治理报告", "检查核心原则遵循性，报告数=" + corePrinciples.length);
-    let corePrinciplesGovernance;
-    if (corePrinciples && corePrinciples.length > 0) {
-        // 合并所有报告为汇总
-        const latestReport = corePrinciples[corePrinciples.length - 1];
-        corePrinciplesGovernance = {
-            task_level: latestReport.task_level,
-            overall_passed: corePrinciples.every(r => r.overall_passed),
-            principles: latestReport.principles.map(p => ({
-                principle_id: p.principle_id,
-                status: p.status,
-                findings: p.findings,
-            })),
-        };
-    }
-    // 契约治理汇总
-    if (contractFindings && contractFindings.length > 0)
-        debug("治理报告", "检查契约治理，发现数=" + contractFindings.length);
-    let contractGovernance;
-    if (contractFindings) {
-        contractGovernance = {
-            total_contracts: totalRegistryContracts ?? new Set(contractFindings.map((f) => f.contract_id)).size,
-            hard_fail_count: contractFindings.filter((f) => f.severity === "hard_fail").length,
-            warning_count: contractFindings.filter((f) => f.severity === "warning").length,
-            advisory_count: contractFindings.filter((f) => f.severity === "advisory").length,
-            findings: [...contractFindings],
-        };
-    }
-    return {
-        generated_at: (now ?? new Date()).toISOString(),
-        total_tasks: auditStats.total,
-        audit_by_risk: { ...auditStats.by_risk },
-        sampled_count: sampledCount,
-        total_escapes: nonFPReports.length,
-        total_false_positives: fpReports.length,
-        escape_by_type: { ...escapeStats.by_type },
-        danger_policies: dangerPolicies,
-        downgrade_candidates: downgradeCandidates,
-        top_fixes: topFixes,
-        dual_layer_summary: dlSummary,
-        artifact_governance: artifactGovernance,
-        config_governance: configGovernance,
-        core_principles_governance: corePrinciplesGovernance,
-        contract_governance: contractGovernance,
-    };
-}
-//# sourceMappingURL=governance_report.js.map

package/dist/verify/audit/governance_report.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"governance_report.js","sourceRoot":"","sources":["../../../src/verify/audit/governance_report.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAOH,OAAO,EAAE,yBAAyB,EAAuD,MAAM,sDAAsD,CAAC;AAItJ,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAoE/C,SAAS,YAAY,CAAC,IAAgB;IACpC,OAAO,EAAE,GAAG,IAAI,EAAE,CAAC;AACrB,CAAC;AAED,SAAS,gBAAgB,CAAC,QAAwB;IAChD,OAAO;QACL,GAAG,QAAQ;QACX,YAAY,EAAE,CAAC,GAAG,QAAQ,CAAC,YAAY,CAAC;QACxC,eAAe,EAAE,QAAQ,CAAC,eAAe,CAAC,GAAG,CAAC,YAAY,CAAC;KAC5D,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,OAAsB;IAC7C,OAAO;QACL,GAAG,OAAO;QACV,MAAM,EAAE,gBAAgB,CAAC,OAAO,CAAC,MAAM,CAAC;KACzC,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAC5B,UAA0B,EAC1B,WAAwB,EACxB,aAA6B,EAC7B,WAA8B,EAC9B,SAA2B,EAC3B,GAAU,EACV,eAAoC,EACpC,iBAAgD,EAChD,uBAAgC,EAChC,SAA4B,EAC5B,eAA4B,EAC5B,kBAAiC,EACjC,cAAuC,EACvC,gBAA8C,EAC9C,sBAA+B;IAE/B,KAAK,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAE1B,MAAM,YAAY,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,gBAAgB,CAAC,CAAC;IACtF,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,gBAAgB,CAAC,CAAC;IAEnF,MAAM,YAAY,GAAG,eAAe;QAClC,CAAC,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,MAAM;QACvD,CAAC,CAAC,IAAI,CAAC;IAET,eAAe;IACf,MAAM,SAAS,GAAG,IAAI,GAAG,EAAyB,CAAC;IAEnD,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE,CAAC;QACjC,MAAM,GAAG,GAAG,QAAQ,CAAC,SAAS,CAAC;QAC/B,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,GAAG,CAAC,CAAC;QACtE,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,GAAG,CAAC,CAAC;QAE9D,SAAS,CAAC,GAAG,CAAC,GAAG,EAAE;YACjB,SAAS,EAAE,GAAG;YACd,YAAY,EAAE,aAAa,CAAC,MAAM;YAClC,oBAAoB,EAAE,QAAQ,CAAC,MAAM;YACrC,MAAM,EAAE,gBAAgB,CAAC,QAAQ,CAAC;SACnC,CAAC,CAAC;IACL,CAAC;IAED,yBAAyB;IACzB,KAAK,CAAC,MAAM,EAAE,cAAc,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,cAAc,GAAG,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC;SAC3C,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,GAAG,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,MAAM,CAAC;SAC3E,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,GAAG,CAAC,CAAC,YAAY,CAAC;SAC/C,GAAG,CAAC,eAAe,CAAC,CAAC;IAExB,gCAAgC;IAChC,KAAK,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC1B,MAAM,mBAAmB,GAAG,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC;SAChD,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,WAAW,IAAI,CAAC,CAAC,MAAM,CAAC,kBAAkB,KAAK,SAAS,CAAC;SACvG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACb,MAAM,QAAQ,GAAG,CAAC,CAAiB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,kBAAkB,KAAK,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACrF,OAAO,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACjD,CAAC,CAAC;SACD,GAAG,CAAC,eAAe,CAAC,CAAC;IAExB,2CAA2C;IAC3C,KAAK,CAAC,MAAM,EAAE,sBAAsB,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAa,YAAY;SACpC,KAAK,EAAE;SACP,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;SACpD,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACX,SAAS,EAAE,CAAC,CAAC,SAAS;QACtB,SAAS,EAAE,CAAC,CAAC,SAAS;QACtB,YAAY,EAAE,CAAC,CAAC,YAAY;QAC5B,YAAY,EAAE,CAAC,CAAC,YAAY;QAC5B,KAAK,EAAE,CAAC,CAAC,KAAK;QACd,QAAQ,EAAE,CAAC,CAAC,QAAQ;KACrB,CAAC,CAAC,CAAC;IAEN,SAAS;IACT,IAAI,iBAAiB;QAAE,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC5E,MAAM,WAAW,GAAG,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC;IACxF,MAAM,UAAU,GAAG,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC;IACtF,MAAM,SAAS,GAAiC,iBAAiB;QAC/D,CAAC,CAAC;YACE,gBAAgB,EAAE,uBAAuB,IAAI,CAAC;YAC9C,yBAAyB,EAAE,CAAC,uBAAuB,IAAI,CAAC,CAAC,GAAG,WAAW,CAAC,MAAM;YAC9E,eAAe,EAAE,WAAW,CAAC,MAAM;YACnC,cAAc,EAAE,UAAU,CAAC,MAAM;YACjC,QAAQ,EAAE,CAAC,GAAG,iBAAiB,CAAC;SACjC;QACH,CAAC,CAAC,SAAS,CAAC;IAEd,QAAQ;IACR,IAAI,SAAS,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,aAAa,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;IACvF,IAAI,kBAA2D,CAAC;IAChE,IAAI,SAAS,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtC,MAAM,QAAQ,GAAG,yBAAyB,CAAC,SAAS,CAAC,CAAC;QACtD,kBAAkB,GAAG;YACnB,cAAc,EAAE,SAAS,CAAC,MAAM;YAChC,eAAe,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM;YACxE,cAAc,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;YACtE,QAAQ;SACT,CAAC;IACJ,CAAC;IAED,qDAAqD;IACrD,MAAM,YAAY,GAAG,eAAe,IAAI,EAAE,CAAC;IAC3C,MAAM,eAAe,GAAG,kBAAkB,IAAI,EAAE,CAAC;IACjD,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1D,KAAK,CAAC,MAAM,EAAE,SAAS,YAAY,CAAC,MAAM,QAAQ,eAAe,CAAC,MAAM,KAAK,CAAC,CAAC;IACjF,CAAC;IACD,MAAM,gBAAgB,GACpB,YAAY,CAAC,MAAM,GAAG,CAAC,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC;QACnD,CAAC,CAAC;YACE,cAAc,EAAE,YAAY,CAAC,MAAM;YACnC,gBAAgB,EAAE,eAAe,CAAC,MAAM;YACxC,SAAS,EAAE,CAAC,GAAG,YAAY,CAAC;YAC5B,YAAY,EAAE,CAAC,GAAG,eAAe,CAAC;SACnC;QACH,CAAC,CAAC,SAAS,CAAC;IAEhB,SAAS;IACT,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;IACzG,IAAI,wBAAwE,CAAC;IAC7E,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChD,YAAY;QACZ,MAAM,YAAY,GAAG,cAAc,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAC/D,wBAAwB,GAAG;YACzB,UAAU,EAAE,YAAY,CAAC,UAAU;YACnC,cAAc,EAAE,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,cAAc,CAAC;YAC3D,UAAU,EAAE,YAAY,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBAC5C,YAAY,EAAE,CAAC,CAAC,YAAY;gBAC5B,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,QAAQ,EAAE,CAAC,CAAC,QAAQ;aACrB,CAAC,CAAC;SACJ,CAAC;IACJ,CAAC;IAED,SAAS;IACT,IAAI,gBAAgB,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,CAAC,MAAM,EAAE,aAAa,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC5G,IAAI,kBAA2D,CAAC;IAChE,IAAI,gBAAgB,EAAE,CAAC;QACrB,kBAAkB,GAAG;YACnB,eAAe,EAAE,sBAAsB,IAAI,IAAI,GAAG,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI;YACnG,eAAe,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM;YAClF,aAAa,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,MAAM;YAC9E,cAAc,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;YAChF,QAAQ,EAAE,CAAC,GAAG,gBAAgB,CAAC;SAChC,CAAC;IACJ,CAAC;IAED,OAAO;QACL,YAAY,EAAE,CAAC,GAAG,IAAI,IAAI,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE;QAC/C,WAAW,EAAE,UAAU,CAAC,KAAK;QAC7B,aAAa,EAAE,EAAE,GAAG,UAAU,CAAC,OAAO,EAAE;QACxC,aAAa,EAAE,YAAY;QAC3B,aAAa,EAAE,YAAY,CAAC,MAAM;QAClC,qBAAqB,EAAE,SAAS,CAAC,MAAM;QACvC,cAAc,EAAE,EAAE,GAAG,WAAW,CAAC,OAAO,EAAE;QAC1C,eAAe,EAAE,cAAc;QAC/B,oBAAoB,EAAE,mBAAmB;QACzC,SAAS,EAAE,QAAQ;QACnB,kBAAkB,EAAE,SAAS;QAC7B,mBAAmB,EAAE,kBAAkB;QACvC,iBAAiB,EAAE,gBAAgB;QACnC,0BAA0B,EAAE,wBAAwB;QACpD,mBAAmB,EAAE,kBAAkB;KACxC,CAAC;AACJ,CAAC"}

package/dist/verify/audit/mutation_audit.d.ts DELETED Viewed

@@ -1,40 +0,0 @@
-/**
- * Mutation Audit — 审计层模块。
- *
- * 职责边界：
- * - 负责：extractMutationPoints 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：pipeline、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import type { RequirementPoint } from "../../types/pipeline_types.js";
-import type { MutationPoint, MutationAuditEvidence } from "../../types/pipeline_types.js";
-/** 向后兼容 re-export */
-export type { MutationPoint, MutationAuditEntry, MutationAuditEvidence } from "../../types/pipeline_types.js";
-/**
- * 从源码中提取变异候选点，并尝试关联到需求点。
- * 关联策略: 文件路径与需求点描述关键词匹配。
- *
- * @param sourceFiles - 源文件列表，包含文件路径和内容
- * @param requirementPoints - 需求点列表
- * @returns 变异候选点数组
- */
-export declare function extractMutationPoints(sourceFiles: Array<{
-    file_path: string;
-    content: string;
-}>, requirementPoints: RequirementPoint[]): MutationPoint[];
-/**
- * 计算变异审计证据 — 每个需求点的变异覆盖状态。
- *
- * @param mutationPoints - 变异候选点数组
- * @param requirementPoints - 需求点列表
- * @param killedCount - 已 killed 的变异数
- * @param totalCount - 变异总数
- * @returns 变异审计证据
- */
-export declare function computeMutationAudit(mutationPoints: MutationPoint[], requirementPoints: RequirementPoint[], killedCount: number, totalCount: number): MutationAuditEvidence;
-//# sourceMappingURL=mutation_audit.d.ts.map

package/dist/verify/audit/mutation_audit.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"mutation_audit.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/mutation_audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACtE,OAAO,KAAK,EAAE,aAAa,EAAsB,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AAG9G,qBAAqB;AACrB,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AA6B9G;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,WAAW,EAAE,KAAK,CAAC;IAAE,SAAS,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC,EAC1D,iBAAiB,EAAE,gBAAgB,EAAE,GACpC,aAAa,EAAE,CAyBjB;AAED;;;;;;;;GAQG;AACH,wBAAgB,oBAAoB,CAClC,cAAc,EAAE,aAAa,EAAE,EAC/B,iBAAiB,EAAE,gBAAgB,EAAE,EACrC,WAAW,EAAE,MAAM,EACnB,UAAU,EAAE,MAAM,GACjB,qBAAqB,CAwFvB"}

package/dist/verify/audit/mutation_audit.js DELETED Viewed

@@ -1,154 +0,0 @@
-/**
- * Mutation Audit — 审计层模块。
- *
- * 职责边界：
- * - 负责：extractMutationPoints 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：pipeline、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-import { debug } from "../../shared/logger.js";
-const CANDIDATE_PATTERNS = [
-    /\b(if|else|switch|case)\b/.source,
-    /(===|!==|==|!=|>=|<=|>|<)/.source,
-    /(&&|\|\|)/.source,
-    /\breturn\b/.source,
-];
-const CANDIDATE_RE = new RegExp(CANDIDATE_PATTERNS.join("|"));
-const EXCLUDE_PATTERNS = [
-    /^\s*\/\//,
-    /^\s*\*/,
-    /^\s*\/\*/,
-    /^\s*import /,
-    /^\s*export /,
-    /^\s*console\./,
-    /^\s*(interface|type|enum|declare) /,
-    /^\s*debugger/,
-];
-function isCandidateLine(line) {
-    const trimmed = line.trim();
-    if (!trimmed)
-        return false;
-    if (EXCLUDE_PATTERNS.some((p) => p.test(trimmed)))
-        return false;
-    return CANDIDATE_RE.test(trimmed);
-}
-/**
- * 从源码中提取变异候选点，并尝试关联到需求点。
- * 关联策略: 文件路径与需求点描述关键词匹配。
- *
- * @param sourceFiles - 源文件列表，包含文件路径和内容
- * @param requirementPoints - 需求点列表
- * @returns 变异候选点数组
- */
-export function extractMutationPoints(sourceFiles, requirementPoints) {
-    const points = [];
-    debug("变异审计", "extractMutationPoints() 开始执行，源文件数:", sourceFiles.length, "，需求点数:", requirementPoints.length);
-    for (const file of sourceFiles) {
-        const lines = file.content.split("\n");
-        for (let i = 0; i < lines.length; i++) {
-            if (!isCandidateLine(lines[i]))
-                continue;
-            const matchedRp = requirementPoints.find((rp) => {
-                const keywords = rp.description.toLowerCase().split(/\s+/);
-                return keywords.some((kw) => kw.length > 2 && file.file_path.toLowerCase().includes(kw));
-            });
-            points.push({
-                file_path: file.file_path,
-                line_number: i + 1,
-                original_line: lines[i].trim(),
-                requirement_point_id: matchedRp?.id,
-            });
-        }
-    }
-    debug("变异审计", "提取到变异候选点", points.length, "个");
-    return points;
-}
-/**
- * 计算变异审计证据 — 每个需求点的变异覆盖状态。
- *
- * @param mutationPoints - 变异候选点数组
- * @param requirementPoints - 需求点列表
- * @param killedCount - 已 killed 的变异数
- * @param totalCount - 变异总数
- * @returns 变异审计证据
- */
-export function computeMutationAudit(mutationPoints, requirementPoints, killedCount, totalCount) {
-    const perRequirement = [];
-    const coveredRpIds = new Set();
-    debug("变异审计", "computeMutationAudit() 开始执行，需求点数:", requirementPoints.length, "变异点数:", mutationPoints.length, "killed:", killedCount, "/", totalCount);
-    for (const rp of requirementPoints) {
-        const rpPoints = mutationPoints.filter((mp) => mp.requirement_point_id === rp.id);
-        const rpTotal = rpPoints.length;
-        if (rpTotal > 0) {
-            coveredRpIds.add(rp.id);
-            // 按比例分配 killed 计数
-            const rpKilled = Math.min(Math.round((rpTotal / Math.max(totalCount, 1)) * killedCount), rpTotal);
-            perRequirement.push({
-                requirement_point_id: rp.id,
-                mutation_points: rpTotal,
-                mutants_killed: rpKilled,
-                mutants_total: rpTotal,
-                advisory: rpKilled === rpTotal
-                    ? "all mutants killed"
-                    : `advisory: ${rpTotal - rpKilled}/${rpTotal} mutants not killed for ${rp.id}`,
-                // 门禁硬化：P0/P1 需求点变异覆盖 = 0 → hard_fail
-                severity: rpKilled === 0 ? "hard_fail" : undefined,
-            });
-        }
-        else {
-            perRequirement.push({
-                requirement_point_id: rp.id,
-                mutation_points: 0,
-                mutants_killed: 0,
-                mutants_total: 0,
-                advisory: `advisory: no mutation points found for requirement ${rp.id}`,
-                // 无变异点 → 暂不标记严重性（可能该需求不涉及代码变更）
-            });
-        }
-    }
-    // 同时包含未绑定到任何需求点的变异点
-    const unboundPoints = mutationPoints.filter((mp) => !mp.requirement_point_id);
-    const unboundRatio = totalCount > 0 ? unboundPoints.length / totalCount : 0;
-    if (unboundPoints.length > 0) {
-        perRequirement.push({
-            requirement_point_id: "_unbound",
-            mutation_points: unboundPoints.length,
-            mutants_killed: 0,
-            mutants_total: unboundPoints.length,
-            advisory: `advisory: ${unboundPoints.length} mutation points not bound to any requirement`,
-            // 门禁硬化：未绑定 > 30% → warning
-            severity: unboundRatio > 0.3 ? "warning" : undefined,
-        });
-    }
-    const uncoveredRequirements = requirementPoints
-        .filter((rp) => !coveredRpIds.has(rp.id))
-        .map((rp) => rp.id);
-    if (uncoveredRequirements.length > 0) {
-        debug("变异审计", "发现未覆盖的需求点:", uncoveredRequirements.join(", "));
-    }
-    const killRatio = totalCount > 0 ? killedCount / totalCount : 1;
-    debug("变异审计", "计算完成 — kill_ratio:", (killRatio * 100).toFixed(0) + "%", "，未覆盖需求:", uncoveredRequirements.length);
-    // ── 门禁硬化汇总 ──
-    const hardFailCount = perRequirement.filter((e) => e.severity === "hard_fail").length;
-    const warningCount = perRequirement.filter((e) => e.severity === "warning").length;
-    // 整体变异覆盖率 < 50% → 额外 warning
-    const lowCoverage = totalCount > 0 && killRatio < 0.5;
-    return {
-        mutant_killed_count: killedCount,
-        mutant_total_count: totalCount,
-        kill_ratio: killRatio,
-        per_requirement: perRequirement,
-        uncovered_requirements: uncoveredRequirements,
-        summary: uncoveredRequirements.length > 0
-            ? `advisory: ${uncoveredRequirements.length} requirement(s) have no killed mutants: ${uncoveredRequirements.join(", ")}`
-            : `mutation audit: ${killedCount}/${totalCount} killed (ratio: ${(killRatio * 100).toFixed(0)}%)`,
-        hard_fail_count: hardFailCount,
-        warning_count: warningCount + (lowCoverage ? 1 : 0),
-    };
-}
-//# sourceMappingURL=mutation_audit.js.map

package/dist/verify/audit/mutation_audit.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"mutation_audit.js","sourceRoot":"","sources":["../../../src/verify/audit/mutation_audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAK/C,MAAM,kBAAkB,GAAG;IACzB,2BAA2B,CAAC,MAAM;IAClC,2BAA2B,CAAC,MAAM;IAClC,WAAW,CAAC,MAAM;IAClB,YAAY,CAAC,MAAM;CACpB,CAAC;AAEF,MAAM,YAAY,GAAG,IAAI,MAAM,CAAC,kBAAkB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAE9D,MAAM,gBAAgB,GAAG;IACvB,UAAU;IACV,QAAQ;IACR,UAAU;IACV,aAAa;IACb,aAAa;IACb,eAAe;IACf,oCAAoC;IACpC,cAAc;CACf,CAAC;AAEF,SAAS,eAAe,CAAC,IAAY;IACnC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;IAC5B,IAAI,CAAC,OAAO;QAAE,OAAO,KAAK,CAAC;IAC3B,IAAI,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAAE,OAAO,KAAK,CAAC;IAChE,OAAO,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,qBAAqB,CACnC,WAA0D,EAC1D,iBAAqC;IAErC,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,KAAK,CAAC,MAAM,EAAE,oCAAoC,EAAE,WAAW,CAAC,MAAM,EAAE,QAAQ,EAAE,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAE5G,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAAE,SAAS;YAEzC,MAAM,SAAS,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE;gBAC9C,MAAM,QAAQ,GAAG,EAAE,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;gBAC3D,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,MAAM,GAAG,CAAC,IAAI,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;YAC3F,CAAC,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC;gBACV,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,WAAW,EAAE,CAAC,GAAG,CAAC;gBAClB,aAAa,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE;gBAC9B,oBAAoB,EAAE,SAAS,EAAE,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,KAAK,CAAC,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC9C,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,oBAAoB,CAClC,cAA+B,EAC/B,iBAAqC,EACrC,WAAmB,EACnB,UAAkB;IAElB,MAAM,cAAc,GAAyB,EAAE,CAAC;IAChD,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IACvC,KAAK,CAAC,MAAM,EAAE,mCAAmC,EAAE,iBAAiB,CAAC,MAAM,EAAE,OAAO,EAAE,cAAc,CAAC,MAAM,EAAE,SAAS,EAAE,WAAW,EAAE,GAAG,EAAE,UAAU,CAAC,CAAC;IAEtJ,KAAK,MAAM,EAAE,IAAI,iBAAiB,EAAE,CAAC;QACnC,MAAM,QAAQ,GAAG,cAAc,CAAC,MAAM,CACpC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,oBAAoB,KAAK,EAAE,CAAC,EAAE,CAC1C,CAAC;QACF,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC;QAEhC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;YAChB,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;YACxB,kBAAkB;YAClB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CACvB,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,GAAG,WAAW,CAAC,EAC7D,OAAO,CACR,CAAC;YACF,cAAc,CAAC,IAAI,CAAC;gBAClB,oBAAoB,EAAE,EAAE,CAAC,EAAE;gBAC3B,eAAe,EAAE,OAAO;gBACxB,cAAc,EAAE,QAAQ;gBACxB,aAAa,EAAE,OAAO;gBACtB,QAAQ,EACN,QAAQ,KAAK,OAAO;oBAClB,CAAC,CAAC,oBAAoB;oBACtB,CAAC,CAAC,aAAa,OAAO,GAAG,QAAQ,IAAI,OAAO,2BAA2B,EAAE,CAAC,EAAE,EAAE;gBAClF,qCAAqC;gBACrC,QAAQ,EAAE,QAAQ,KAAK,CAAC,CAAC,CAAC,CAAC,WAAoB,CAAC,CAAC,CAAC,SAAS;aAC5D,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,cAAc,CAAC,IAAI,CAAC;gBAClB,oBAAoB,EAAE,EAAE,CAAC,EAAE;gBAC3B,eAAe,EAAE,CAAC;gBAClB,cAAc,EAAE,CAAC;gBACjB,aAAa,EAAE,CAAC;gBAChB,QAAQ,EAAE,sDAAsD,EAAE,CAAC,EAAE,EAAE;gBACvE,+BAA+B;aAChC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,oBAAoB;IACpB,MAAM,aAAa,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,oBAAoB,CAAC,CAAC;IAC9E,MAAM,YAAY,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IAC5E,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7B,cAAc,CAAC,IAAI,CAAC;YAClB,oBAAoB,EAAE,UAAU;YAChC,eAAe,EAAE,aAAa,CAAC,MAAM;YACrC,cAAc,EAAE,CAAC;YACjB,aAAa,EAAE,aAAa,CAAC,MAAM;YACnC,QAAQ,EAAE,aAAa,aAAa,CAAC,MAAM,+CAA+C;YAC1F,2BAA2B;YAC3B,QAAQ,EAAE,YAAY,GAAG,GAAG,CAAC,CAAC,CAAC,SAAkB,CAAC,CAAC,CAAC,SAAS;SAC9D,CAAC,CAAC;IACL,CAAC;IAGD,MAAM,qBAAqB,GAAG,iBAAiB;SAC5C,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;SACxC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;IACtB,IAAI,qBAAqB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACrC,KAAK,CAAC,MAAM,EAAE,YAAY,EAAE,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,SAAS,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhE,KAAK,CAAC,MAAM,EAAE,oBAAoB,EAAE,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,GAAG,EAAE,SAAS,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAC;IAEjH,eAAe;IACf,MAAM,aAAa,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,WAAW,CAAC,CAAC,MAAM,CAAC;IACtF,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;IACnF,6BAA6B;IAC7B,MAAM,WAAW,GAAG,UAAU,GAAG,CAAC,IAAI,SAAS,GAAG,GAAG,CAAC;IAEtD,OAAO;QACL,mBAAmB,EAAE,WAAW;QAChC,kBAAkB,EAAE,UAAU;QAC9B,UAAU,EAAE,SAAS;QACrB,eAAe,EAAE,cAAc;QAC/B,sBAAsB,EAAE,qBAAqB;QAC7C,OAAO,EACL,qBAAqB,CAAC,MAAM,GAAG,CAAC;YAC9B,CAAC,CAAC,aAAa,qBAAqB,CAAC,MAAM,2CAA2C,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YACxH,CAAC,CAAC,mBAAmB,WAAW,IAAI,UAAU,mBAAmB,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;QACrG,eAAe,EAAE,aAAa;QAC9B,aAAa,EAAE,YAAY,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;KACpD,CAAC;AACJ,CAAC"}

package/dist/verify/audit/risk_sampler.d.ts DELETED Viewed

@@ -1,44 +0,0 @@
-/**
- * Risk Sampler — 审计层模块。
- *
- * 职责边界：
- * - 负责：SamplingDecision 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、audit_pool、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：读写本地文件（详见代码内路径）
- */
-import type { RiskLevel } from "./audit_pool.js";
-export interface SamplingDecision {
-    item_task_id: string;
-    item_risk: RiskLevel;
-    should_sample: boolean;
-    seed: number;
-    threshold_pct: number;
-    hash_value: number;
-    risk_factors: RiskFactor[];
-    reason: string;
-}
-export interface RiskFactor {
-    factor: string;
-    detail: string;
-    impact: "increases" | "decreases" | "neutral";
-}
-export interface SampleableItem {
-    task_id: string;
-    risk: RiskLevel;
-    changed_files: string[];
-    capability_refs: string[];
-}
-/**
- * 执行 shouldSample 操作
- */
-export declare function shouldSample(item: SampleableItem, seed?: number): SamplingDecision;
-/**
- * 执行 getThreshold 操作
- */
-export declare function getThreshold(risk: RiskLevel): number;
-//# sourceMappingURL=risk_sampler.d.ts.map

package/dist/verify/audit/risk_sampler.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"risk_sampler.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/risk_sampler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAGH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAGjD,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,SAAS,CAAC;IACrB,aAAa,EAAE,OAAO,CAAC;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,UAAU,EAAE,CAAC;IAC3B,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,WAAW,GAAG,WAAW,GAAG,SAAS,CAAC;CAC/C;AA8CD,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,SAAS,CAAC;IAChB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,wBAAgB,YAAY,CAC1B,IAAI,EAAE,cAAc,EACpB,IAAI,GAAE,MAAU,GACf,gBAAgB,CA2BlB;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,SAAS,GAAG,MAAM,CAGpD"}

package/dist/verify/audit/risk_sampler.js DELETED Viewed

@@ -1,80 +0,0 @@
-/**
- * Risk Sampler — 审计层模块。
- *
- * 职责边界：
- * - 负责：SamplingDecision 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、audit_pool、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：读写本地文件（详见代码内路径）
- */
-import { createHash } from "node:crypto";
-import { debug } from "../../shared/logger.js";
-const RISK_THRESHOLDS = {
-    low: 20,
-    medium: 50,
-    high: 80,
-    critical: 100,
-};
-function computeHash(taskId, seed) {
-    const h = createHash("sha256").update(`${taskId}:${seed}`).digest();
-    return h.readUInt32BE(0) % 100;
-}
-function collectRiskFactors(risk, changedFileCount, hasCapabilityRefs) {
-    const factors = [];
-    factors.push({
-        factor: "risk_level",
-        detail: `task risk is ${risk}, threshold ${RISK_THRESHOLDS[risk]}%`,
-        impact: risk === "low" ? "decreases" : risk === "critical" ? "increases" : "neutral",
-    });
-    if (changedFileCount > 10) {
-        factors.push({
-            factor: "large_change_set",
-            detail: `${changedFileCount} files changed (>10)`,
-            impact: "increases",
-        });
-    }
-    if (hasCapabilityRefs) {
-        factors.push({
-            factor: "capability_coverage",
-            detail: "task touches registered capabilities",
-            impact: "increases",
-        });
-    }
-    return factors;
-}
-/**
- * 执行 shouldSample 操作
- */
-export function shouldSample(item, seed = 0) {
-    debug("风险采样", "shouldSample() 开始, task_id=${item.task_id}, risk=${item.risk}");
-    const threshold = RISK_THRESHOLDS[item.risk];
-    const hashValue = computeHash(item.task_id, seed);
-    const shouldSample = hashValue < threshold;
-    const riskFactors = collectRiskFactors(item.risk, item.changed_files.length, item.capability_refs.length > 0);
-    debug("风险采样", "hash=${hashValue}, threshold=${threshold}, should_sample=${shouldSample}");
-    const reason = shouldSample
-        ? `sampled: hash ${hashValue} < threshold ${threshold} (risk=${item.risk})`
-        : `skipped: hash ${hashValue} >= threshold ${threshold} (risk=${item.risk})`;
-    return {
-        item_task_id: item.task_id,
-        item_risk: item.risk,
-        should_sample: shouldSample,
-        seed,
-        threshold_pct: threshold,
-        hash_value: hashValue,
-        risk_factors: riskFactors,
-        reason,
-    };
-}
-/**
- * 执行 getThreshold 操作
- */
-export function getThreshold(risk) {
-    debug("风险采样", "getThreshold() risk=${risk}, threshold=${RISK_THRESHOLDS[risk]}");
-    return RISK_THRESHOLDS[risk];
-}
-//# sourceMappingURL=risk_sampler.js.map

package/dist/verify/audit/risk_sampler.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"risk_sampler.js","sourceRoot":"","sources":["../../../src/verify/audit/risk_sampler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,KAAK,EAAE,MAAM,wBAAwB,CAAC;AAmB/C,MAAM,eAAe,GAA8B;IACjD,GAAG,EAAE,EAAE;IACP,MAAM,EAAE,EAAE;IACV,IAAI,EAAE,EAAE;IACR,QAAQ,EAAE,GAAG;CACd,CAAC;AAEF,SAAS,WAAW,CAAC,MAAc,EAAE,IAAY;IAC/C,MAAM,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;IACpE,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC;AACjC,CAAC;AAED,SAAS,kBAAkB,CACzB,IAAe,EACf,gBAAwB,EACxB,iBAA0B;IAE1B,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,OAAO,CAAC,IAAI,CAAC;QACX,MAAM,EAAE,YAAY;QACpB,MAAM,EAAE,gBAAgB,IAAI,eAAe,eAAe,CAAC,IAAI,CAAC,GAAG;QACnE,MAAM,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;KACrF,CAAC,CAAC;IAEH,IAAI,gBAAgB,GAAG,EAAE,EAAE,CAAC;QAC1B,OAAO,CAAC,IAAI,CAAC;YACX,MAAM,EAAE,kBAAkB;YAC1B,MAAM,EAAE,GAAG,gBAAgB,sBAAsB;YACjD,MAAM,EAAE,WAAW;SACpB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,iBAAiB,EAAE,CAAC;QACtB,OAAO,CAAC,IAAI,CAAC;YACX,MAAM,EAAE,qBAAqB;YAC7B,MAAM,EAAE,sCAAsC;YAC9C,MAAM,EAAE,WAAW;SACpB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AASD;;GAEG;AACH,MAAM,UAAU,YAAY,CAC1B,IAAoB,EACpB,OAAe,CAAC;IAEd,KAAK,CAAC,MAAM,EAAE,+DAA+D,CAAC,CAAC;IACjF,MAAM,SAAS,GAAG,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC7C,MAAM,SAAS,GAAG,WAAW,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAClD,MAAM,YAAY,GAAG,SAAS,GAAG,SAAS,CAAC;IAE3C,MAAM,WAAW,GAAG,kBAAkB,CACpC,IAAI,CAAC,IAAI,EACT,IAAI,CAAC,aAAa,CAAC,MAAM,EACzB,IAAI,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAChC,CAAC;IAEF,KAAK,CAAC,MAAM,EAAE,0EAA0E,CAAC,CAAC;IAC1F,MAAM,MAAM,GAAG,YAAY;QACzB,CAAC,CAAC,iBAAiB,SAAS,gBAAgB,SAAS,UAAU,IAAI,CAAC,IAAI,GAAG;QAC3E,CAAC,CAAC,iBAAiB,SAAS,iBAAiB,SAAS,UAAU,IAAI,CAAC,IAAI,GAAG,CAAC;IAE/E,OAAO;QACL,YAAY,EAAE,IAAI,CAAC,OAAO;QAC1B,SAAS,EAAE,IAAI,CAAC,IAAI;QACpB,aAAa,EAAE,YAAY;QAC3B,IAAI;QACJ,aAAa,EAAE,SAAS;QACxB,UAAU,EAAE,SAAS;QACrB,YAAY,EAAE,WAAW;QACzB,MAAM;KACP,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,IAAe;IAC1C,KAAK,CAAC,MAAM,EAAE,iEAAiE,CAAC,CAAC;IACjF,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC;AAC/B,CAAC"}

package/dist/verify/audit/runtime_safety.d.ts DELETED Viewed

@@ -1,89 +0,0 @@
-/**
- * Runtime Safety — 审计层模块。
- *
- * 职责边界：
- * - 负责：EvidenceBlock 等 审计层职责
- * - 不负责：不属于本模块的职责由对应模块承担
- *
- * 被谁调用：发布门禁、质量检查
- * 调用谁：node:crypto、logger
- *
- * 数据流：审计输入（代码/配置） → 检查 → 评分/报告
- * 持久化：无持久化（纯计算/内存态）
- */
-export interface EvidenceBlock {
-    step: string;
-    timestamp: string;
-    data_hash: string;
-    prev_hash: string | null;
-    chain_hash: string;
-    payload: string;
-}
-/**
- * 构建证据链 — 每个步骤产出带 hash 的证据块，与前一个块链式连接。
- */
-export declare function buildEvidenceChain(steps: Array<{
-    step: string;
-    payload: string;
-    timestamp?: string;
-}>): EvidenceBlock[];
-/**
- * 验证证据链完整性 — 检查每个块的 chain_hash 是否与重算结果一致。
- */
-export declare function verifyEvidenceChain(chain: EvidenceBlock[]): {
-    valid: boolean;
-    broken_at: number | null;
-    advisory: string;
-};
-export type CommandRisk = "read_only" | "mutating" | "destructive";
-export interface ClassifiedCommand {
-    command: string;
-    risk: CommandRisk;
-    advisory: string;
-    requires_human_confirm: boolean;
-}
-/**
- * 分类命令的副作用级别。
- */
-export declare function classifyCommand(command: string): ClassifiedCommand;
-export interface MigrationContract {
-    migration_id: string;
-    description: string;
-    forward_command: string;
-    rollback_command: string;
-    risk: CommandRisk;
-    created_at: string;
-}
-export interface MigrationCheckResult {
-    migration_id: string;
-    has_rollback: boolean;
-    rollback_valid: boolean;
-    advisory: string;
-}
-/**
- * 检查迁移契约 — 确保 schema 变更有回滚路径。
- */
-export declare function checkMigrationContract(migration: MigrationContract): MigrationCheckResult;
-export interface DependencyCheck {
-    package_name: string;
-    version: string;
-    has_lockfile: boolean;
-    has_integrity_hash: boolean;
-    advisory: string;
-}
-export interface SupplyChainReport {
-    total_dependencies: number;
-    locked_dependencies: number;
-    unlocked_dependencies: number;
-    checks: DependencyCheck[];
-    advisory: string;
-}
-/**
- * 检查供应链安全 — 验证依赖有 lockfile 和完整性 hash。
- * 此为轻量级检查，不读取实际文件内容。
- */
-export declare function checkSupplyChain(rootDirFiles: string[], dependencies: Array<{
-    name: string;
-    version: string;
-}>): SupplyChainReport;
-//# sourceMappingURL=runtime_safety.d.ts.map

package/dist/verify/audit/runtime_safety.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"runtime_safety.d.ts","sourceRoot":"","sources":["../../../src/verify/audit/runtime_safety.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAOH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,KAAK,EAAE,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,SAAS,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,GAClE,aAAa,EAAE,CAiCjB;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,aAAa,EAAE,GAAG;IAC3D,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAoDA;AAID,MAAM,MAAM,WAAW,GAAG,WAAW,GAAG,UAAU,GAAG,aAAa,CAAC;AAEnE,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,WAAW,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,sBAAsB,EAAE,OAAO,CAAC;CACjC;AAuBD;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,iBAAiB,CA8BlE;AAID,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,IAAI,EAAE,WAAW,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,oBAAoB;IACnC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,OAAO,CAAC;IACtB,cAAc,EAAE,OAAO,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,SAAS,EAAE,iBAAiB,GAC3B,oBAAoB,CAsBtB;AAID,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,EAAE,OAAO,CAAC;IACtB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,iBAAiB;IAChC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,qBAAqB,EAAE,MAAM,CAAC;IAC9B,MAAM,EAAE,eAAe,EAAE,CAAC;IAC1B,QAAQ,EAAE,MAAM,CAAC;CAClB;AAUD;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,YAAY,EAAE,MAAM,EAAE,EACtB,YAAY,EAAE,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC,GACrD,iBAAiB,CA2BnB"}