thrivekit 2.0.0

package/ralph/hooks/warn-empty-catch.sh

@@ -0,0 +1,63 @@
+#!/usr/bin/env bash
+# warn-empty-catch.sh - Warn about empty catch blocks that silently swallow errors
+# Hook: PostToolUse matcher: "Edit|Write"
+
+set -euo pipefail
+
+INPUT=$(cat)
+TOOL_NAME=$(echo "$INPUT" | jq -r '.tool_name // ""')
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.path // ""')
+
+# Only check code files
+case "$FILE_PATH" in
+  *.ts|*.tsx|*.js|*.jsx|*.py)
+    ;;
+  *)
+    echo '{"continue": true}'
+    exit 0
+    ;;
+esac
+
+# Get the content that was written
+NEW_CONTENT=""
+if [[ "$TOOL_NAME" == "Write" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.content // ""')
+elif [[ "$TOOL_NAME" == "Edit" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.new_string // ""')
+fi
+
+WARNINGS=""
+
+# JavaScript/TypeScript: catch (e) { } or catch { }
+if echo "$NEW_CONTENT" | grep -qE 'catch\s*\([^)]*\)\s*\{\s*\}'; then
+  WARNINGS="⚠️  Empty catch block detected. Handle the error or add a comment explaining why it's ignored."
+fi
+
+# Also check for catch with only a comment (no actual handling)
+if echo "$NEW_CONTENT" | grep -qE 'catch\s*\([^)]*\)\s*\{\s*(//[^\n]*)?\s*\}'; then
+  if [[ -z "$WARNINGS" ]]; then
+    WARNINGS="⚠️  Catch block with no error handling. Consider logging or rethrowing the error."
+  fi
+fi
+
+# Python: except: pass or except Exception: pass
+if echo "$NEW_CONTENT" | grep -qE 'except.*:\s*pass\s*$'; then
+  WARNINGS="⚠️  Empty except block (pass). Handle the exception or add logging."
+fi
+
+# Python: bare except with just pass on next line
+if echo "$NEW_CONTENT" | grep -qE 'except.*:\s*$' && echo "$NEW_CONTENT" | grep -qE '^\s*pass\s*$'; then
+  if [[ -z "$WARNINGS" ]]; then
+    WARNINGS="⚠️  Except block with only 'pass'. Consider logging or reraising the exception."
+  fi
+fi
+
+# Block if empty catch detected
+if [[ -n "$WARNINGS" ]]; then
+  jq -n --arg warn "$WARNINGS" '{
+    "continue": false,
+    "message": $warn
+  }'
+else
+  echo '{"continue": true}'
+fi

package/ralph/hooks/warn-secrets.sh

@@ -0,0 +1,89 @@
+#!/usr/bin/env bash
+# warn-secrets.sh - Warn about potential secrets in written code
+# Hook: PostToolUse matcher: "Edit|Write"
+#
+# Mirrors the pre-commit check-secrets patterns for consistency
+
+set -euo pipefail
+
+INPUT=$(cat)
+TOOL_NAME=$(echo "$INPUT" | jq -r '.tool_name // ""')
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.path // ""')
+
+# Only check code files
+case "$FILE_PATH" in
+  *.ts|*.tsx|*.js|*.jsx|*.py|*.json|*.yaml|*.yml|*.env*)
+    ;;
+  *)
+    echo '{"continue": true}'
+    exit 0
+    ;;
+esac
+
+# Get the content that was written
+NEW_CONTENT=""
+if [[ "$TOOL_NAME" == "Write" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.content // ""')
+elif [[ "$TOOL_NAME" == "Edit" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.new_string // ""')
+fi
+
+WARNINGS=""
+
+# AWS Access Key (AKIA followed by 16 alphanumeric chars)
+if echo "$NEW_CONTENT" | grep -qE 'AKIA[0-9A-Z]{16}'; then
+  WARNINGS="🚨 SECURITY: Possible AWS Access Key detected! Use environment variables."
+fi
+
+# Stripe keys (sk_live_* or sk_test_*)
+if echo "$NEW_CONTENT" | grep -qE 'sk_(live|test)_[0-9a-zA-Z]{24,}'; then
+  WARNINGS="${WARNINGS}\n🚨 SECURITY: Stripe API key detected! Use environment variables."
+fi
+
+# GitHub tokens (ghp_, gho_, ghu_, ghs_, ghr_)
+if echo "$NEW_CONTENT" | grep -qE 'gh[pousr]_[A-Za-z0-9_]{36,}'; then
+  WARNINGS="${WARNINGS}\n🚨 SECURITY: GitHub token detected! Use environment variables."
+fi
+
+# Slack tokens (xoxb-, xoxp-, xoxa-, xoxr-, xoxs-)
+if echo "$NEW_CONTENT" | grep -qE 'xox[baprs]-[0-9]{10,}-[0-9a-zA-Z]{24,}'; then
+  WARNINGS="${WARNINGS}\n🚨 SECURITY: Slack token detected! Use environment variables."
+fi
+
+# SendGrid keys (SG.*)
+if echo "$NEW_CONTENT" | grep -qE 'SG\.[a-zA-Z0-9_-]{22}\.[a-zA-Z0-9_-]{43}'; then
+  WARNINGS="${WARNINGS}\n🚨 SECURITY: SendGrid API key detected! Use environment variables."
+fi
+
+# Private keys
+if echo "$NEW_CONTENT" | grep -qE '-----BEGIN (RSA |EC |DSA |OPENSSH )?PRIVATE KEY-----'; then
+  WARNINGS="${WARNINGS}\n🚨 SECURITY: Private key detected! Never commit private keys."
+fi
+
+# Generic API key patterns (api_key = "...", apikey: "...", etc.)
+if echo "$NEW_CONTENT" | grep -qiE '(api[_-]?key|api[_-]?secret)\s*[:=]\s*['"'"'"][a-zA-Z0-9_\-]{20,}['"'"'"]'; then
+  # Check it's not a placeholder
+  if ! echo "$NEW_CONTENT" | grep -qiE '(example|placeholder|your[_-]?key|xxx|test|dummy|fake|sample|demo)'; then
+    WARNINGS="${WARNINGS}\n⚠️  Possible hardcoded API key - use environment variables."
+  fi
+fi
+
+# Generic secrets (password = "...", token = "...", etc.)
+if echo "$NEW_CONTENT" | grep -qiE '(password|passwd|pwd|secret|token)\s*[:=]\s*['"'"'"][^'"'"'"]{8,}['"'"'"]'; then
+  # Check it's not a placeholder or type annotation
+  if ! echo "$NEW_CONTENT" | grep -qiE '(example|placeholder|xxx|test|dummy|type|interface|password:)'; then
+    WARNINGS="${WARNINGS}\n⚠️  Possible hardcoded secret - use environment variables."
+  fi
+fi
+
+# Output warning as additional context (non-blocking)
+if [[ -n "$WARNINGS" ]]; then
+  jq -n --arg warn "$WARNINGS" '{
+    "continue": true,
+    "hookSpecificOutput": {
+      "additionalContext": $warn
+    }
+  }'
+else
+  echo '{"continue": true}'
+fi

package/ralph/hooks/warn-urls.sh

@@ -0,0 +1,77 @@
+#!/usr/bin/env bash
+# warn-urls.sh - Warn about hardcoded URLs in written code
+# Hook: PostToolUse matcher: "Edit|Write"
+#
+# Mirrors the pre-commit check-hardcoded-urls patterns for consistency
+
+set -euo pipefail
+
+INPUT=$(cat)
+TOOL_NAME=$(echo "$INPUT" | jq -r '.tool_name // ""')
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.path // ""')
+
+# Only check code files (skip test files)
+case "$FILE_PATH" in
+  *.test.*|*.spec.*|*/__tests__/*|*/test/*|*/fixtures/*)
+    echo '{"continue": true}'
+    exit 0
+    ;;
+  *.ts|*.tsx|*.js|*.jsx|*.py)
+    ;;
+  *)
+    echo '{"continue": true}'
+    exit 0
+    ;;
+esac
+
+# Get the content that was written
+NEW_CONTENT=""
+if [[ "$TOOL_NAME" == "Write" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.content // ""')
+elif [[ "$TOOL_NAME" == "Edit" ]]; then
+  NEW_CONTENT=$(echo "$INPUT" | jq -r '.tool_input.new_string // ""')
+fi
+
+WARNINGS=""
+
+# Check for localhost URLs
+if echo "$NEW_CONTENT" | grep -qE 'https?://localhost(:[0-9]+)?'; then
+  # Skip if it's in a fallback pattern (|| or ?? or default)
+  if ! echo "$NEW_CONTENT" | grep -qE '(\|\||\?\?|default|fallback).*localhost'; then
+    WARNINGS="⚠️  Hardcoded localhost URL detected - use environment variable (e.g., process.env.API_URL)"
+  fi
+fi
+
+# Check for 127.0.0.1 URLs
+if echo "$NEW_CONTENT" | grep -qE 'https?://127\.0\.0\.1(:[0-9]+)?'; then
+  if ! echo "$NEW_CONTENT" | grep -qE '(\|\||\?\?|default|fallback).*127\.0\.0\.1'; then
+    WARNINGS="${WARNINGS}\n⚠️  Hardcoded 127.0.0.1 URL detected - use environment variable"
+  fi
+fi
+
+# Check for hardcoded production-looking URLs (skip CDNs and common safe domains)
+SAFE_DOMAINS="cdn.jsdelivr.net|cdnjs.cloudflare.com|unpkg.com|fonts.googleapis.com|fonts.gstatic.com|api.github.com|raw.githubusercontent.com|registry.npmjs.org|schema.org|www.w3.org|example.com|example.org"
+
+# Look for https:// URLs that aren't safe domains
+PROD_URLS=$(echo "$NEW_CONTENT" | grep -oE 'https://[a-zA-Z0-9][a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' | grep -vE "$SAFE_DOMAINS" || true)
+
+if [[ -n "$PROD_URLS" ]]; then
+  # Skip if they look like example/placeholder URLs
+  PROD_URLS=$(echo "$PROD_URLS" | grep -v -E '(example|placeholder|test|mock)' || true)
+  if [[ -n "$PROD_URLS" ]]; then
+    FIRST_URL=$(echo "$PROD_URLS" | head -1)
+    WARNINGS="${WARNINGS}\n⚠️  Hardcoded URL ($FIRST_URL) - consider using environment variable"
+  fi
+fi
+
+# Output warning as additional context (non-blocking)
+if [[ -n "$WARNINGS" ]]; then
+  jq -n --arg warn "$WARNINGS" '{
+    "continue": true,
+    "hookSpecificOutput": {
+      "additionalContext": $warn
+    }
+  }'
+else
+  echo '{"continue": true}'
+fi

package/ralph/init.sh

@@ -0,0 +1,388 @@
+#!/usr/bin/env bash
+# shellcheck shell=bash
+# init.sh - Initialize ralph in a project
+
+ralph_init() {
+  # Check if already initialized (progress.txt is created by full init)
+  if [[ -f "$RALPH_DIR/progress.txt" ]]; then
+    echo "Ralph already initialized in this directory."
+    echo "Use 'ralph run' to start the loop or 'ralph status' to check status."
+    return 0
+  fi
+
+  echo "Initializing ralph..."
+
+  # Create directory structure
+  mkdir -p "$RALPH_DIR/archive" "$RALPH_DIR/screenshots"
+
+  # Detect project type and generate appropriate config
+  local project_type
+  project_type=$(detect_project_type)
+  echo "Detected project type: $project_type"
+
+  # Copy config template based on project type (only if missing)
+  if [[ ! -f "$RALPH_DIR/config.json" ]]; then
+    local config_template="$RALPH_TEMPLATES/config/${project_type}.json"
+    if [[ -f "$config_template" ]]; then
+      cp "$config_template" "$RALPH_DIR/config.json"
+    else
+      # Fall back to minimal config
+      cp "$RALPH_TEMPLATES/config/minimal.json" "$RALPH_DIR/config.json"
+    fi
+  fi
+
+  # Create signs with defaults (only if missing)
+  if [[ ! -f "$RALPH_DIR/signs.json" ]]; then
+    if [[ -f "$RALPH_TEMPLATES/signs.json" ]]; then
+      cp "$RALPH_TEMPLATES/signs.json" "$RALPH_DIR/signs.json"
+    else
+      echo '{"signs": []}' > "$RALPH_DIR/signs.json"
+    fi
+  fi
+
+  # Create progress log (only if missing)
+  if [[ ! -f "$RALPH_DIR/progress.txt" ]]; then
+    local timestamp
+    timestamp=$(date -Iseconds 2>/dev/null || date +%Y-%m-%dT%H:%M:%S)
+    echo "[$timestamp] INIT Ralph initialized" > "$RALPH_DIR/progress.txt"
+  fi
+
+  # Copy PROMPT.md template if it doesn't exist in project
+  if [[ ! -f "PROMPT.md" ]]; then
+    cp "$RALPH_TEMPLATES/PROMPT.md" "PROMPT.md"
+    echo "Created PROMPT.md template"
+  fi
+
+  # Auto-detect and configure project-specific settings
+  echo ""
+  echo "Auto-configuring project settings..."
+  auto_configure_project
+
+  print_success "Ralph initialized!"
+  echo ""
+
+  # Prompt for test credentials
+  configure_test_auth
+
+  echo ""
+  echo "Next steps:"
+  echo "  1. Review .ralph/config.json (test credentials, checks, etc.)"
+  echo "  2. Generate PRD:"
+  echo "     - Thorough: /idea 'feature description' (brainstorm + architecture + scalability)"
+  echo "     - Quick:    ralph prd 'feature description' (basic PRD)"
+  echo "  3. Start loop: ralph run"
+}
+
+# Configure test authentication credentials
+configure_test_auth() {
+  # Skip if not running in an interactive terminal
+  if [[ ! -t 0 ]]; then
+    return 0
+  fi
+
+  echo ""
+  print_info "=== Test Authentication Setup ==="
+  echo ""
+  echo "Ralph needs test credentials to verify authenticated endpoints."
+  echo "(You can skip this and edit .ralph/config.json later)"
+  echo ""
+
+  # Ask if they want to configure auth
+  read -p "Configure test credentials now? [y/N] " -n 1 -r
+  echo ""
+
+  if [[ ! $REPLY =~ ^[Yy]$ ]]; then
+    print_info "Skipped. Edit .ralph/config.json to add credentials later."
+    return 0
+  fi
+
+  echo ""
+  read -p "Test user email/username: " test_user
+  read -s -p "Test user password: " test_password
+  echo ""
+
+  if [[ -z "$test_user" || -z "$test_password" ]]; then
+    print_warning "Credentials not provided."
+    echo "  Options to add them later:"
+    echo "    1. Edit .ralph/config.json (stored in plain text)"
+    echo "    2. Set RALPH_TEST_USER and RALPH_TEST_PASSWORD env vars (recommended)"
+    return 0
+  fi
+
+  # Update config.json with credentials
+  local config="$RALPH_DIR/config.json"
+  if [[ -f "$config" ]]; then
+    local tmpfile
+    tmpfile=$(mktemp)
+    if jq --arg user "$test_user" --arg pass "$test_password" \
+       '.auth.testUser = $user | .auth.testPassword = $pass' \
+       "$config" > "$tmpfile" 2>/dev/null; then
+      mv "$tmpfile" "$config"
+      print_success "Test credentials saved to .ralph/config.json"
+      print_warning "Note: Credentials stored in plain text. Consider using env vars instead:"
+      echo "    export RALPH_TEST_USER='$test_user'"
+      echo "    export RALPH_TEST_PASSWORD='****'"
+    else
+      rm -f "$tmpfile"
+      print_warning "Failed to update config. Edit .ralph/config.json manually."
+    fi
+  fi
+}
+
+# Detect the type of project based on files present
+detect_project_type() {
+  local project_type="minimal"
+
+  # Check for fullstack patterns first (more specific)
+  if [[ -d "frontend" && -d "core" ]]; then
+    project_type="fullstack"
+  elif [[ -d "frontend" && -d "backend" ]]; then
+    project_type="fullstack"
+  elif [[ -d "apps" ]]; then
+    project_type="fullstack"  # Monorepo
+  # Then check for single-language projects
+  elif [[ -f "Cargo.toml" ]]; then
+    project_type="rust"
+  elif [[ -f "go.mod" ]]; then
+    project_type="go"
+  elif [[ -f "pyproject.toml" || -f "requirements.txt" || -f "setup.py" ]]; then
+    project_type="python"
+  elif [[ -f "package.json" ]]; then
+    project_type="node"
+  fi
+
+  echo "$project_type"
+}
+
+# Auto-detect and configure project-specific settings
+auto_configure_project() {
+  local config="$RALPH_DIR/config.json"
+  [[ ! -f "$config" ]] && return 0
+
+  local updated=false
+  local tmpfile
+  tmpfile=$(mktemp)
+  cp "$config" "$tmpfile"
+
+  # 1. Detect Playwright test directory
+  local playwright_dir=""
+  for dir in "tests/e2e" "e2e" "test/e2e" \
+             "apps/web/tests/e2e" "apps/frontend/tests/e2e" \
+             "frontend/tests/e2e" "frontend/e2e" \
+             "packages/web/tests/e2e"; do
+    if [[ -d "$dir" ]]; then
+      playwright_dir="$dir"
+      break
+    fi
+  done
+
+  if [[ -n "$playwright_dir" ]]; then
+    if jq -e '.playwright.testDir' "$tmpfile" >/dev/null 2>&1; then
+      : # Already set
+    else
+      jq --arg dir "$playwright_dir" '.playwright.testDir = $dir' "$tmpfile" > "${tmpfile}.new" && mv "${tmpfile}.new" "$tmpfile"
+      echo "  Auto-detected playwright.testDir: $playwright_dir"
+      updated=true
+    fi
+  fi
+
+  # 2. Detect testUrlBase from common patterns
+  local base_url=""
+  # Check package.json scripts for dev server port
+  if [[ -f "package.json" ]]; then
+    if grep -q '"dev".*:3000' package.json 2>/dev/null; then
+      base_url="http://localhost:3000"
+    elif grep -q '"dev".*:5173' package.json 2>/dev/null; then
+      base_url="http://localhost:5173"  # Vite default
+    elif grep -q '"dev".*:8080' package.json 2>/dev/null; then
+      base_url="http://localhost:8080"
+    fi
+  fi
+  # Check for monorepo frontend
+  for fe_pkg in "apps/web/package.json" "apps/frontend/package.json" "frontend/package.json"; do
+    if [[ -f "$fe_pkg" && -z "$base_url" ]]; then
+      if grep -q ':3000' "$fe_pkg" 2>/dev/null; then
+        base_url="http://localhost:3000"
+      elif grep -q ':5173' "$fe_pkg" 2>/dev/null; then
+        base_url="http://localhost:5173"
+      fi
+    fi
+  done
+
+  if [[ -n "$base_url" ]]; then
+    if jq -e '.testUrlBase' "$tmpfile" >/dev/null 2>&1 && [[ "$(jq -r '.testUrlBase' "$tmpfile")" != "" ]]; then
+      : # Already set
+    else
+      jq --arg url "$base_url" '.testUrlBase = $url' "$tmpfile" > "${tmpfile}.new" && mv "${tmpfile}.new" "$tmpfile"
+      echo "  Auto-detected testUrlBase: $base_url"
+      updated=true
+    fi
+  fi
+
+  # 3. Detect frontend/backend directories for monorepos
+  local frontend_dir="" backend_dir=""
+  for dir in "apps/web" "apps/frontend" "frontend" "packages/web" "web"; do
+    if [[ -d "$dir" && -f "$dir/package.json" ]]; then
+      frontend_dir="$dir"
+      break
+    fi
+  done
+  for dir in "apps/api" "apps/backend" "backend" "api" "server"; do
+    if [[ -d "$dir" ]] && ([[ -f "$dir/package.json" ]] || [[ -f "$dir/pyproject.toml" ]] || [[ -f "$dir/requirements.txt" ]]); then
+      backend_dir="$dir"
+      break
+    fi
+  done
+
+  if [[ -n "$frontend_dir" ]]; then
+    if jq -e '.directories.frontend' "$tmpfile" >/dev/null 2>&1; then
+      : # Already set
+    else
+      jq --arg dir "$frontend_dir" '.directories.frontend = $dir' "$tmpfile" > "${tmpfile}.new" && mv "${tmpfile}.new" "$tmpfile"
+      echo "  Auto-detected directories.frontend: $frontend_dir"
+      updated=true
+    fi
+  fi
+
+  if [[ -n "$backend_dir" ]]; then
+    if jq -e '.directories.backend' "$tmpfile" >/dev/null 2>&1; then
+      : # Already set
+    else
+      jq --arg dir "$backend_dir" '.directories.backend = $dir' "$tmpfile" > "${tmpfile}.new" && mv "${tmpfile}.new" "$tmpfile"
+      echo "  Auto-detected directories.backend: $backend_dir"
+      updated=true
+    fi
+  fi
+
+  # 4. Detect package manager
+  local pkg_manager="npm"
+  if [[ -f "pnpm-lock.yaml" ]]; then
+    pkg_manager="pnpm"
+  elif [[ -f "yarn.lock" ]]; then
+    pkg_manager="yarn"
+  elif [[ -f "bun.lockb" ]]; then
+    pkg_manager="bun"
+  fi
+
+  if [[ "$pkg_manager" != "npm" ]]; then
+    if jq -e '.packageManager' "$tmpfile" >/dev/null 2>&1; then
+      : # Already set
+    else
+      jq --arg pm "$pkg_manager" '.packageManager = $pm' "$tmpfile" > "${tmpfile}.new" && mv "${tmpfile}.new" "$tmpfile"
+      echo "  Auto-detected packageManager: $pkg_manager"
+      updated=true
+    fi
+  fi
+
+  # Save if updated
+  if [[ "$updated" == "true" ]]; then
+    mv "$tmpfile" "$config"
+  else
+    rm -f "$tmpfile"
+  fi
+}
+
+# Show current ralph status
+ralph_status() {
+  if [[ ! -d "$RALPH_DIR" ]]; then
+    print_error "Ralph not initialized. Run 'ralph init' first."
+    return 1
+  fi
+
+  echo ""
+  print_info "=== Ralph Status ==="
+  echo ""
+
+  # Check if PRD exists
+  if [[ -f "$RALPH_DIR/prd.json" ]]; then
+    local feature_name status
+    feature_name=$(jq -r '.feature.name // "Unknown"' "$RALPH_DIR/prd.json")
+    status=$(jq -r '.feature.status // "unknown"' "$RALPH_DIR/prd.json")
+
+    echo "Feature: $feature_name"
+    echo "Status:  $status"
+    echo ""
+
+    # Show stories
+    echo "Stories:"
+    jq -r '.stories[] | "  \(.id): \(.title) [\(if .passes then "DONE" else "TODO" end)]"' "$RALPH_DIR/prd.json" 2>/dev/null || echo "  (none)"
+
+    # Count pass/fail
+    local total passed failed
+    total=$(jq '.stories | length' "$RALPH_DIR/prd.json")
+    passed=$(jq '[.stories[] | select(.passes == true)] | length' "$RALPH_DIR/prd.json")
+    failed=$((total - passed))
+    echo ""
+    echo "Progress: $passed/$total passed ($failed remaining)"
+  else
+    # Check for misplaced PRD in subdirectories
+    local found_prd
+    found_prd=$(find . -path "./.ralph" -prune -o -name "prd.json" -path "*/.ralph/prd.json" -print 2>/dev/null | head -1)
+
+    if [[ -n "$found_prd" ]]; then
+      print_warning "PRD found in wrong location: $found_prd"
+      echo ""
+      echo "Move it to root with:"
+      echo "  mv $found_prd .ralph/prd.json"
+    else
+      echo "No active PRD. Generate one with: ralph prd 'your feature notes...'"
+    fi
+  fi
+
+  echo ""
+
+  # Show recent progress
+  if [[ -f "$RALPH_DIR/progress.txt" ]]; then
+    echo "Recent activity:"
+    tail -5 "$RALPH_DIR/progress.txt" | sed 's/^/  /'
+  fi
+
+  echo ""
+}
+
+# Show help
+ralph_help() {
+  cat <<'EOF'
+thrivekit - Tools to thrive with agentic coding
+
+Usage:
+  npx thrivekit <command> [options]
+
+Commands:
+  setup                   Set up project (hooks, config, CLAUDE.md)
+  init                    Initialize Ralph in current directory
+  config                  Re-detect and update project config
+  prd <notes>             Generate PRD interactively (quick mode)
+  prd --file <file>       Generate PRD from file
+  run                     Run autonomous loop until all stories pass
+  run --max <n>           Run with max iterations (default: 20)
+  status                  Show current feature and story status
+  check                   Run verification checks only
+  verify <story-id>       Verify a specific story
+  sign <pattern> [cat]    Add a learned pattern (sign)
+  signs                   List all learned patterns
+  backup                  Backup detected databases to .backups/
+  backups                 List available database backups
+  restore <path>          Restore database from backup
+  help                    Show this help message
+
+PRD Generation:
+  /idea <description>           Thorough brainstorm (in Claude Code)
+  npx thrivekit prd <notes>     Quick PRD generation
+
+Examples:
+  npm install thrivekit && npx thrivekit setup
+  /idea "Add user authentication with OAuth"
+  npx thrivekit prd "Add a contact form"
+  npx thrivekit run
+  npx thrivekit run --max 10
+  npx thrivekit status
+  npx thrivekit sign "Always use camelCase" frontend
+
+Environment:
+  RALPH_DIR       Override .ralph directory location (default: .ralph)
+  PROMPT_FILE     Override PROMPT.md location (default: PROMPT.md)
+
+For more information, see: https://github.com/allthriveai/thrivekit
+EOF
+}