speclock 4.5.4 → 4.5.6

package/README.md

@@ -409,6 +409,21 @@ The AI opens the file and sees:
 
 ---
 
+## Configuration
+
+| Variable | Default | Description |
+|----------|---------|-------------|
+| `SPECLOCK_API_KEY` | — | API key for authenticated access |
+| `SPECLOCK_ENCRYPTION_KEY` | — | Enables AES-256-GCM encryption at rest |
+| `SPECLOCK_NO_PROXY` | `false` | Set `true` for heuristic-only mode (~250ms). Skips the Gemini proxy (~2s) |
+| `SPECLOCK_LLM_KEY` | — | Your own LLM API key (Gemini/OpenAI/Anthropic) |
+| `GEMINI_API_KEY` | — | Google Gemini API key for hybrid conflict detection |
+| `SPECLOCK_TELEMETRY` | `false` | Opt-in anonymous usage analytics |
+
+> **Tip:** The heuristic engine alone scores 95%+ accuracy at ~250ms. The Gemini proxy adds cross-domain coverage but takes ~2s. For fastest response, set `SPECLOCK_NO_PROXY=true`.
+
+---
+
 ## Test Results
 
 | Suite | Tests | Pass Rate |
@@ -457,4 +472,4 @@ Built by **[Sandeep Roy](https://github.com/sgroy10)**
 
 ---
 
-<p align="center"><i>v4.5.4 — 600+ tests, 31 MCP tools, 0 false positives, Gemini hybrid. Because remembering isn't enough.</i></p>
+<p align="center"><i>v4.5.6 — 600+ tests, 31 MCP tools, 0 false positives, Gemini hybrid. Because remembering isn't enough.</i></p>

package/package.json

@@ -2,7 +2,7 @@
 
   "name": "speclock",
 
-  "version": "4.5.4",
+  "version": "4.5.6",
 
   "description": "AI constraint engine with Gemini LLM universal detection, Policy-as-Code DSL, OAuth/OIDC SSO, admin dashboard, telemetry, API key auth, RBAC, AES-256-GCM encryption, hard enforcement, semantic pre-commit, HMAC audit chain, SOC 2/HIPAA compliance. Cross-platform: MCP + direct API. 31 MCP tools + CLI. Enterprise platform.",
 

package/src/cli/index.js

@@ -117,7 +117,7 @@ function refreshContext(root) {
 
 function printHelp() {
   console.log(`
-SpecLock v4.5.4 — AI Constraint Engine (Gemini LLM + Policy-as-Code + SSO + Dashboard + Telemetry + Auth + RBAC + Encryption)
+SpecLock v4.5.6 — AI Constraint Engine (Gemini LLM + Policy-as-Code + SSO + Dashboard + Telemetry + Auth + RBAC + Encryption)
 Developed by Sandeep Roy (github.com/sgroy10)
 
 Usage: speclock <command> [options]

package/src/core/compliance.js

@@ -9,7 +9,7 @@
 import { readBrain, readEvents } from "./storage.js";
 import { verifyAuditChain } from "./audit.js";
 
-const VERSION = "4.5.4";
+const VERSION = "4.5.6";
 
 // PHI-related keywords for HIPAA filtering
 const PHI_KEYWORDS = [

package/src/core/semantics.js

@@ -124,7 +124,7 @@ export const SYNONYM_GROUPS = [
    "payment service", "payment platform"],
   ["razorpay", "stripe", "paypal", "phonepe", "paytm", "ccavenue",
    "cashfree", "braintree", "adyen", "square", "google pay", "gpay",
-   "juspay", "billdesk", "instamojo"],
+   "juspay", "billdesk", "instamojo", "payu"],
 
   // --- IoT / firmware ---
   ["firmware", "firmware update", "ota", "over the air",
@@ -467,6 +467,8 @@ export const CONCEPT_MAP = {
                         "transaction", "billing", "razorpay", "ccavenue"],
   "instamojo":         ["payment gateway", "payment processing", "payment",
                         "transaction", "billing", "razorpay", "cashfree"],
+  "payu":              ["payment gateway", "payment processing", "payment",
+                        "transaction", "billing", "razorpay", "stripe", "cashfree"],
   "upi":               ["payment gateway", "payment processing", "phonepe",
                         "paytm", "google pay", "razorpay",
                         "transaction", "payment"],
@@ -1650,6 +1652,7 @@ export function scoreConflict({ actionText, lockText }) {
   let score = 0;
   const reasons = [];
   let hasSecurityViolationPattern = false;  // Set when credential-exposure detected
+  let actionPerformsProhibitedOp = false;   // Set when action verb is synonym of lock's prohibited verb
 
   // 1. Direct word overlap (minus stopwords)
   const directOverlap = actionTokens.words.filter(w =>
@@ -1904,58 +1907,33 @@ export function scoreConflict({ actionText, lockText }) {
 
   let intentAligned = false;  // true = action is doing the OPPOSITE of what lock prohibits
 
-  // Check 1: Direct opposite verbs (e.g., "enable" vs "disable")
-  if (lockIsProhibitive && prohibitedVerb && actionPrimaryVerb) {
-    if (checkOpposites(actionPrimaryVerb, prohibitedVerb)) {
-      intentAligned = true;
-      reasons.push(
-        `intent alignment: action "${actionPrimaryVerb}" is opposite of ` +
-        `prohibited "${prohibitedVerb}" (compliant, not conflicting)`);
-    }
-  }
-
-  // Check 2: Positive action intent against a lock that prohibits a negative action
-  // ONLY applies when there are no euphemism/synonym matches suggesting the
-  // action is actually destructive despite sounding positive (e.g., "reseed" → "reset")
-  if (!intentAligned && lockIsProhibitive && actionIntent.intent === "positive" && prohibitedVerb) {
-    const prohibitedIsNegative = NEGATIVE_INTENT_MARKERS.some(m =>
-      prohibitedVerb === m || prohibitedVerb.startsWith(m));
-    // Only block alignment if the action actually performs the prohibited operation.
-    // Noun synonyms ("price → pricing") are incidental and should NOT block.
-    // But if the action contains the prohibited verb or its synonym ("shows" ≈ "expose"),
-    // that's a real violation signal.
-    const hasDestructiveLanguageMatch = euphemismMatches.length > 0;
-
-    // Check if action text contains the prohibited verb or its synonyms
-    let actionPerformsProhibitedOp = false;
-    if (prohibitedVerb) {
-      const actionWordsLower = actionText.toLowerCase().split(/\s+/)
-        .map(w => w.replace(/[^a-z]/g, ""));
-      for (const w of actionWordsLower) {
-        if (!w) continue;
-        // Direct match (including conjugations: show/shows/showing/showed)
-        if (w === prohibitedVerb || w.startsWith(prohibitedVerb)) {
-          actionPerformsProhibitedOp = true;
-          break;
-        }
-        // Synonym match: check if word is in the same synonym group as prohibited verb
-        for (const group of SYNONYM_GROUPS) {
-          if (group.includes(prohibitedVerb)) {
-            if (group.some(syn => w === syn || w.startsWith(syn) && w.length <= syn.length + 3)) {
-              actionPerformsProhibitedOp = true;
-            }
-            break;
+  // Pre-compute: does the action verb match the lock's prohibited verb (or its synonyms)?
+  // This flag is used by multiple checks below to prevent false negatives.
+  if (lockIsProhibitive && prohibitedVerb) {
+    const actionWordsLower = actionText.toLowerCase().split(/\s+/)
+      .map(w => w.replace(/[^a-z]/g, ""));
+    for (const w of actionWordsLower) {
+      if (!w) continue;
+      // Direct match (including conjugations: show/shows/showing/showed)
+      if (w === prohibitedVerb || w.startsWith(prohibitedVerb)) {
+        actionPerformsProhibitedOp = true;
+        break;
+      }
+      // Synonym match: check if word is in the same synonym group as prohibited verb
+      for (const group of SYNONYM_GROUPS) {
+        if (group.includes(prohibitedVerb)) {
+          if (group.some(syn => w === syn || w.startsWith(syn) && w.length <= syn.length + 3)) {
+            actionPerformsProhibitedOp = true;
           }
+          break;
         }
-        if (actionPerformsProhibitedOp) break;
       }
+      if (actionPerformsProhibitedOp) break;
     }
 
     // Special case: "add/put/store/embed key/secret/credential in/to frontend/component/state"
     // is SEMANTICALLY EQUIVALENT to "expose key in frontend" — NOT an opposite action.
-    // Placing credentials in client-side code IS exposing them.
     if (!actionPerformsProhibitedOp && (prohibitedVerb === "expose" || prohibitedVerb === "leak" || prohibitedVerb === "reveal")) {
-      // Pre-process env vars: STRIPE_SECRET_KEY → stripe secret key
       const actionNorm = actionText
         .replace(/\b[A-Z][A-Z0-9]*(?:_[A-Z0-9]+)+\b/g, m => m.replace(/_/g, " "))
         .toLowerCase();
@@ -1968,6 +1946,25 @@ export function scoreConflict({ actionText, lockText }) {
         reasons.push("security: placing credentials in client-side code is equivalent to exposing them");
       }
     }
+  }
+
+  // Check 1: Direct opposite verbs (e.g., "enable" vs "disable")
+  if (lockIsProhibitive && prohibitedVerb && actionPrimaryVerb) {
+    if (checkOpposites(actionPrimaryVerb, prohibitedVerb)) {
+      intentAligned = true;
+      reasons.push(
+        `intent alignment: action "${actionPrimaryVerb}" is opposite of ` +
+        `prohibited "${prohibitedVerb}" (compliant, not conflicting)`);
+    }
+  }
+
+  // Check 2: Positive action intent against a lock that prohibits a negative action
+  // ONLY applies when there are no euphemism/synonym matches suggesting the
+  // action is actually destructive despite sounding positive (e.g., "reseed" → "reset")
+  if (!intentAligned && lockIsProhibitive && actionIntent.intent === "positive" && prohibitedVerb) {
+    const prohibitedIsNegative = NEGATIVE_INTENT_MARKERS.some(m =>
+      prohibitedVerb === m || prohibitedVerb.startsWith(m));
+    const hasDestructiveLanguageMatch = euphemismMatches.length > 0;
 
     if (prohibitedIsNegative && !actionIntent.negated &&
         !hasDestructiveLanguageMatch && !actionPerformsProhibitedOp) {
@@ -2067,11 +2064,12 @@ export function scoreConflict({ actionText, lockText }) {
 
   // Check 3c: Working WITH locked technology (not replacing it)
   // "Update the Stripe UI components" vs "must always use Stripe" → working WITH Stripe → safe
+  // "Update the Stripe payment UI" vs "Stripe API keys must never be exposed" → different subject → safe
   // "Optimize Supabase queries" vs "Supabase Auth lock" → improving existing Supabase → safe
-  // "Write tests for Supabase queries" vs "Supabase lock" → testing existing tech → safe
   // But: "Update payment to use Razorpay" vs "Stripe lock" → introducing competitor → NOT safe
+  // But: "Add Stripe key to frontend" → "add" not in WORKING_WITH_VERBS → NOT safe
   if (!intentAligned && actionPrimaryVerb) {
-    const lockIsPreservationOrFreeze = /must remain|must be preserved|must always|at all times|must stay|do not replace|do not remove|do not switch|don't replace|don't remove|don't switch|uses .+ library/i.test(lockText);
+    const lockIsPreservationOrFreeze = /must remain|must be preserved|must always|at all times|must stay|must never|must not|should never|do not replace|do not remove|do not switch|don't replace|don't remove|don't switch|don't|do not|never|uses .+ library/i.test(lockText);
     if (lockIsPreservationOrFreeze) {
       // Extract specific brand/tech names from the lock text
       const lockWords = lockText.toLowerCase().split(/\s+/).map(w => w.replace(/[^a-z0-9]/g, "")).filter(w => w.length > 2);
@@ -2081,7 +2079,7 @@ export function scoreConflict({ actionText, lockText }) {
       // These are specific nouns (not verbs, not stopwords) that identify the technology
       const TECH_BRANDS = new Set([
         "stripe", "razorpay", "paypal", "phonepe", "paytm", "ccavenue", "cashfree",
-        "braintree", "adyen", "square", "billdesk", "instamojo", "juspay",
+        "braintree", "adyen", "square", "billdesk", "instamojo", "juspay", "payu",
         "postgresql", "postgres", "mysql", "mongodb", "mongo", "firebase",
         "firestore", "supabase", "dynamodb", "redis", "sqlite", "mariadb",
         "cassandra", "couchdb", "neo4j",
@@ -2111,7 +2109,10 @@ export function scoreConflict({ actionText, lockText }) {
           "disable", "deactivate", "replace", "switch", "migrate", "move",
         ]);
         if (WORKING_WITH_VERBS.has(actionPrimaryVerb) && !hasCompetitorInAction &&
-            !DESTRUCTIVE_VERBS.has(actionPrimaryVerb)) {
+            !DESTRUCTIVE_VERBS.has(actionPrimaryVerb) &&
+            !actionPerformsProhibitedOp) {
+          // Guard: if the action verb is a synonym of the lock's prohibited verb
+          // (e.g., "update" ≈ "modify"), that's a real conflict, not working-with.
           intentAligned = true;
           reasons.push(
             `intent alignment: "${actionPrimaryVerb}" works WITH locked tech ` +
@@ -2231,9 +2232,9 @@ export function scoreConflict({ actionText, lockText }) {
 
   // If intent is ALIGNED, the action is COMPLIANT — slash the score to near zero
   // Shared keywords are expected (both discuss the same subject) but the action
-  // is doing the right thing.
+  // is doing the right thing. Cap at threshold-1 so aligned actions never trigger.
   if (intentAligned) {
-    score = Math.floor(score * 0.10);  // Keep only 10% of accumulated score
+    score = Math.min(Math.floor(score * 0.10), SCORING.conflictThreshold - 1);
     // Skip all further bonuses (negation, intent conflict, destructive)
   } else {
     // NOT aligned — apply standard conflict bonuses

package/src/core/telemetry.js

@@ -257,7 +257,7 @@ export async function flushToRemote(root) {
   // Build anonymized payload
   const payload = {
     instanceId: summary.instanceId,
-    version: "4.5.4",
+    version: "4.5.6",
     totalCalls: summary.totalCalls,
     avgResponseMs: summary.avgResponseMs,
     conflicts: summary.conflicts,

package/src/dashboard/index.html

@@ -89,7 +89,7 @@
 <div class="header">
   <div>
     <h1><span>SpecLock</span> Dashboard</h1>
-    <div class="meta">v4.5.4 &mdash; AI Constraint Engine</div>
+    <div class="meta">v4.5.6 &mdash; AI Constraint Engine</div>
   </div>
   <div style="display:flex;align-items:center;gap:12px;">
     <span id="health-badge" class="status-badge healthy">Loading...</span>
@@ -182,7 +182,7 @@
 </div>
 
 <div style="text-align:center;padding:24px;color:var(--muted);font-size:12px;">
-  SpecLock v4.5.4 &mdash; Developed by Sandeep Roy &mdash; <a href="https://github.com/sgroy10/speclock" style="color:var(--accent)">GitHub</a>
+  SpecLock v4.5.6 &mdash; Developed by Sandeep Roy &mdash; <a href="https://github.com/sgroy10/speclock" style="color:var(--accent)">GitHub</a>
 </div>
 
 <script>

package/src/mcp/http-server.js

@@ -91,7 +91,7 @@ import { fileURLToPath } from "url";
 import _path from "path";
 
 const PROJECT_ROOT = process.env.SPECLOCK_PROJECT_ROOT || process.cwd();
-const VERSION = "4.5.4";
+const VERSION = "4.5.6";
 const AUTHOR = "Sandeep Roy";
 const START_TIME = Date.now();
 

package/src/mcp/server.js

@@ -100,7 +100,7 @@ const PROJECT_ROOT =
   args.project || process.env.SPECLOCK_PROJECT_ROOT || process.cwd();
 
 // --- MCP Server ---
-const VERSION = "4.5.4";
+const VERSION = "4.5.6";
 const AUTHOR = "Sandeep Roy";
 
 const server = new McpServer(