npm - thumbgate - Versions diffs - 0.9.9 - Mend

thumbgate 0.9.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (369) hide show

package/.claude-plugin/README.md +134 -0
package/.claude-plugin/bundle/icon.png +0 -0
package/.claude-plugin/bundle/icon.svg +18 -0
package/.claude-plugin/bundle/server/index.js +24 -0
package/.claude-plugin/marketplace.json +36 -0
package/.claude-plugin/plugin.json +21 -0
package/.well-known/mcp/server-card.json +231 -0
package/LICENSE +21 -0
package/README.md +375 -0
package/adapters/README.md +9 -0
package/adapters/amp/skills/rlhf-feedback/SKILL.md +22 -0
package/adapters/chatgpt/INSTALL.md +83 -0
package/adapters/chatgpt/openapi.yaml +1281 -0
package/adapters/claude/.mcp.json +14 -0
package/adapters/codex/config.toml +9 -0
package/adapters/gemini/function-declarations.json +224 -0
package/adapters/mcp/server-stdio.js +788 -0
package/adapters/opencode/opencode.json +15 -0
package/bin/cli.js +1483 -0
package/bin/memory.sh +64 -0
package/bin/obsidian-sync.sh +20 -0
package/bin/postinstall.js +37 -0
package/config/build-metadata.json +4 -0
package/config/e2e-critical-flows.json +45 -0
package/config/gate-templates.json +77 -0
package/config/gates/claim-verification.json +29 -0
package/config/gates/computer-use.json +39 -0
package/config/gates/default.json +117 -0
package/config/github-about.json +25 -0
package/config/mcp-allowlists.json +135 -0
package/config/model-tiers.json +33 -0
package/config/partner-routing.json +132 -0
package/config/policy-bundles/constrained-v1.json +64 -0
package/config/policy-bundles/default-v1.json +91 -0
package/config/rubrics/default-v1.json +52 -0
package/config/skill-packs/react-testing.json +23 -0
package/config/skill-packs/stripe-integration/references/api-spec.json +1 -0
package/config/skill-packs/stripe-integration/references/webhook-guide.md +3 -0
package/config/skill-specs/pr-reviewer.json +9 -0
package/config/skill-specs/release-status.json +9 -0
package/config/skill-specs/ticket-triage.json +9 -0
package/config/subagent-profiles.json +32 -0
package/config/tessl-tiles.json +29 -0
package/config/thumbgate-settings.managed.json +12 -0
package/openapi/openapi.yaml +1281 -0
package/package.json +286 -0
package/plugins/amp-skill/INSTALL.md +52 -0
package/plugins/amp-skill/SKILL.md +64 -0
package/plugins/claude-codex-bridge/.claude-plugin/plugin.json +22 -0
package/plugins/claude-codex-bridge/.mcp.json +12 -0
package/plugins/claude-codex-bridge/INSTALL.md +43 -0
package/plugins/claude-codex-bridge/README.md +46 -0
package/plugins/claude-codex-bridge/scripts/codex-bridge.js +288 -0
package/plugins/claude-codex-bridge/skills/adversarial-review/SKILL.md +24 -0
package/plugins/claude-codex-bridge/skills/result/SKILL.md +22 -0
package/plugins/claude-codex-bridge/skills/review/SKILL.md +28 -0
package/plugins/claude-codex-bridge/skills/second-pass/SKILL.md +27 -0
package/plugins/claude-codex-bridge/skills/setup/SKILL.md +21 -0
package/plugins/claude-codex-bridge/skills/status/SKILL.md +19 -0
package/plugins/claude-skill/INSTALL.md +55 -0
package/plugins/claude-skill/SKILL.md +46 -0
package/plugins/codex-profile/.codex-plugin/plugin.json +43 -0
package/plugins/codex-profile/.mcp.json +12 -0
package/plugins/codex-profile/AGENTS.md +20 -0
package/plugins/codex-profile/INSTALL.md +66 -0
package/plugins/codex-profile/README.md +37 -0
package/plugins/cursor-marketplace/.cursor-plugin/plugin.json +23 -0
package/plugins/cursor-marketplace/CHANGELOG.md +30 -0
package/plugins/cursor-marketplace/LICENSE +21 -0
package/plugins/cursor-marketplace/README.md +124 -0
package/plugins/cursor-marketplace/agents/reliability-reviewer.md +31 -0
package/plugins/cursor-marketplace/assets/logo-400x400.png +0 -0
package/plugins/cursor-marketplace/commands/capture-feedback.md +33 -0
package/plugins/cursor-marketplace/commands/check-gates.md +25 -0
package/plugins/cursor-marketplace/commands/show-lessons.md +27 -0
package/plugins/cursor-marketplace/hooks/hooks.json +10 -0
package/plugins/cursor-marketplace/mcp.json +12 -0
package/plugins/cursor-marketplace/rules/feedback-capture.mdc +34 -0
package/plugins/cursor-marketplace/rules/pre-action-gates.mdc +30 -0
package/plugins/cursor-marketplace/rules/session-continuity.mdc +28 -0
package/plugins/cursor-marketplace/scripts/gate-check.sh +11 -0
package/plugins/cursor-marketplace/skills/capture-feedback/SKILL.md +47 -0
package/plugins/cursor-marketplace/skills/prevention-rules/SKILL.md +31 -0
package/plugins/cursor-marketplace/skills/recall-context/SKILL.md +30 -0
package/plugins/cursor-marketplace/skills/search-lessons/SKILL.md +33 -0
package/plugins/gemini-extension/INSTALL.md +92 -0
package/plugins/gemini-extension/gemini_prompt.txt +14 -0
package/plugins/gemini-extension/tool_contract.json +45 -0
package/plugins/opencode-profile/INSTALL.md +57 -0
package/public/assets/instagram-card.png +0 -0
package/public/assets/tiktok-agent-memory.mp4 +0 -0
package/public/blog.html +400 -0
package/public/dashboard.html +1093 -0
package/public/guide.html +317 -0
package/public/index.html +1195 -0
package/public/learn/agent-harness-pattern.html +180 -0
package/public/learn/ai-agent-persistent-memory.html +202 -0
package/public/learn/learn.css +45 -0
package/public/learn/mcp-pre-action-gates-explained.html +172 -0
package/public/learn/stop-ai-agent-force-push.html +134 -0
package/public/learn/vibe-coding-safety-net.html +142 -0
package/public/learn.html +213 -0
package/public/lessons.html +650 -0
package/public/vercel.json +8 -0
package/scripts/__pycache__/train_from_feedback.cpython-314.pyc +0 -0
package/scripts/a2ui-engine.js +73 -0
package/scripts/access-anomaly-detector.js +12 -0
package/scripts/adk-consolidator.js +266 -0
package/scripts/agent-readiness.js +220 -0
package/scripts/agent-security-hardening.js +227 -0
package/scripts/agentic-data-pipeline.js +847 -0
package/scripts/analytics-report.js +328 -0
package/scripts/analytics-window.js +158 -0
package/scripts/async-job-runner.js +1001 -0
package/scripts/audit-trail.js +398 -0
package/scripts/auto-promote-gates.js +293 -0
package/scripts/auto-wire-hooks.js +316 -0
package/scripts/autonomous-sales-agent.js +39 -0
package/scripts/autoresearch-runner.js +216 -0
package/scripts/background-agent-governance.js +237 -0
package/scripts/behavioral-extraction.js +93 -0
package/scripts/belief-update.js +84 -0
package/scripts/billing.js +2438 -0
package/scripts/bot-detector.js +50 -0
package/scripts/budget-guard.js +173 -0
package/scripts/build-claude-mcpb.js +189 -0
package/scripts/build-metadata.js +97 -0
package/scripts/check-congruence.js +322 -0
package/scripts/cli-feedback.js +135 -0
package/scripts/cli-telemetry.js +87 -0
package/scripts/cloudflare-dynamic-sandbox.js +315 -0
package/scripts/code-reasoning.js +350 -0
package/scripts/codegraph-context.js +466 -0
package/scripts/commercial-offer.js +56 -0
package/scripts/computer-use-firewall.js +250 -0
package/scripts/context-engine.js +694 -0
package/scripts/contextfs.js +1287 -0
package/scripts/conversation-context.js +119 -0
package/scripts/creator-campaigns.js +239 -0
package/scripts/daemon-manager.js +108 -0
package/scripts/daily-digest.js +11 -0
package/scripts/dashboard-render-spec.js +395 -0
package/scripts/dashboard.js +1058 -0
package/scripts/data-governance.js +173 -0
package/scripts/delegation-runtime.js +900 -0
package/scripts/deploy-gcp.sh +44 -0
package/scripts/deploy-policy.js +231 -0
package/scripts/disagreement-mining.js +315 -0
package/scripts/dispatch-brief.js +159 -0
package/scripts/distribution-surfaces.js +44 -0
package/scripts/dpo-optimizer.js +206 -0
package/scripts/ensure-repo-bootstrap.js +129 -0
package/scripts/ephemeral-agent-store.js +219 -0
package/scripts/eval-harness.js +56 -0
package/scripts/evolution-state.js +241 -0
package/scripts/experiment-tracker.js +267 -0
package/scripts/export-databricks-bundle.js +242 -0
package/scripts/export-dpo-pairs.js +344 -0
package/scripts/export-kto-pairs.js +309 -0
package/scripts/export-training.js +450 -0
package/scripts/failure-diagnostics.js +558 -0
package/scripts/feedback-attribution.js +313 -0
package/scripts/feedback-fallback.js +110 -0
package/scripts/feedback-history-distiller.js +391 -0
package/scripts/feedback-inbox-read.js +162 -0
package/scripts/feedback-loop.js +1887 -0
package/scripts/feedback-paths.js +145 -0
package/scripts/feedback-quality.js +139 -0
package/scripts/feedback-root-consolidator.js +238 -0
package/scripts/feedback-schema.js +426 -0
package/scripts/feedback-session.js +286 -0
package/scripts/feedback-to-memory.js +185 -0
package/scripts/feedback-to-rules.js +164 -0
package/scripts/filesystem-search.js +405 -0
package/scripts/funnel-analytics.js +35 -0
package/scripts/gate-satisfy.js +42 -0
package/scripts/gate-stats.js +116 -0
package/scripts/gate-templates.js +70 -0
package/scripts/gates-engine.js +816 -0
package/scripts/generate-paperbanana-diagrams.sh +99 -0
package/scripts/generate-pretool-hook.sh +40 -0
package/scripts/github-about.js +350 -0
package/scripts/github-outreach.js +65 -0
package/scripts/gtm-revenue-loop.js +520 -0
package/scripts/hallucination-detector.js +226 -0
package/scripts/hf-papers.js +317 -0
package/scripts/history-distiller.js +200 -0
package/scripts/hook-auto-capture.sh +100 -0
package/scripts/hook-stop-pr-thread-check.sh +68 -0
package/scripts/hook-stop-self-score.sh +51 -0
package/scripts/hook-stop-verify-deploy.sh +31 -0
package/scripts/hook-thumbgate-cache-updater.js +48 -0
package/scripts/hook-verify-before-done.sh +20 -0
package/scripts/hosted-config.js +156 -0
package/scripts/hybrid-feedback-context.js +675 -0
package/scripts/install-mcp.js +159 -0
package/scripts/intent-router.js +392 -0
package/scripts/internal-agent-bootstrap.js +490 -0
package/scripts/jsonl-watcher.js +155 -0
package/scripts/lesson-db.js +613 -0
package/scripts/lesson-inference.js +310 -0
package/scripts/lesson-retrieval.js +95 -0
package/scripts/lesson-rotation.js +137 -0
package/scripts/lesson-search.js +644 -0
package/scripts/lesson-synthesis.js +196 -0
package/scripts/license.js +50 -0
package/scripts/local-model-profile.js +384 -0
package/scripts/markdown-escape.js +12 -0
package/scripts/marketing-experiment.js +671 -0
package/scripts/mcp-config.js +149 -0
package/scripts/mcp-policy.js +99 -0
package/scripts/memalign-recall.js +111 -0
package/scripts/memory-firewall.js +222 -0
package/scripts/memory-migration.js +296 -0
package/scripts/meta-policy.js +190 -0
package/scripts/metered-billing.js +16 -0
package/scripts/model-tier-router.js +301 -0
package/scripts/money-watcher.js +71 -0
package/scripts/multi-hop-recall.js +240 -0
package/scripts/natural-language-harness.js +330 -0
package/scripts/obsidian-export.js +713 -0
package/scripts/operational-dashboard.js +103 -0
package/scripts/operational-summary.js +93 -0
package/scripts/optimize-context.js +17 -0
package/scripts/org-dashboard.js +201 -0
package/scripts/partner-orchestration.js +146 -0
package/scripts/per-step-scoring.js +165 -0
package/scripts/perplexity-marketing.js +466 -0
package/scripts/pii-scanner.js +153 -0
package/scripts/plan-gate.js +154 -0
package/scripts/post-everywhere.js +308 -0
package/scripts/post-to-x-retry.sh +22 -0
package/scripts/post-to-x.js +369 -0
package/scripts/pr-manager.js +236 -0
package/scripts/predictive-insights.js +356 -0
package/scripts/principle-extractor.js +162 -0
package/scripts/pro-features.js +40 -0
package/scripts/pro-local-dashboard.js +174 -0
package/scripts/problem-detail.js +53 -0
package/scripts/product-feedback.js +134 -0
package/scripts/profile-router.js +245 -0
package/scripts/prompt-dlp.js +221 -0
package/scripts/prompt-guard.js +83 -0
package/scripts/prove-adapters.js +863 -0
package/scripts/prove-attribution.js +365 -0
package/scripts/prove-automation.js +653 -0
package/scripts/prove-autoresearch.js +304 -0
package/scripts/prove-claim-verification.js +277 -0
package/scripts/prove-cloudflare-sandbox.js +163 -0
package/scripts/prove-data-pipeline.js +410 -0
package/scripts/prove-data-quality.js +227 -0
package/scripts/prove-evolution.js +352 -0
package/scripts/prove-harnesses.js +287 -0
package/scripts/prove-intelligence.js +259 -0
package/scripts/prove-lancedb.js +371 -0
package/scripts/prove-local-intelligence.js +342 -0
package/scripts/prove-loop-closure.js +263 -0
package/scripts/prove-predictive-insights.js +357 -0
package/scripts/prove-runtime.js +350 -0
package/scripts/prove-seo-gsd.js +234 -0
package/scripts/prove-settings.js +279 -0
package/scripts/prove-subway-upgrades.js +277 -0
package/scripts/prove-tessl.js +229 -0
package/scripts/prove-training-export.js +327 -0
package/scripts/prove-workflow-contract.js +116 -0
package/scripts/prove-xmemory.js +332 -0
package/scripts/publish-decision.js +133 -0
package/scripts/pulse.js +80 -0
package/scripts/rate-limiter.js +125 -0
package/scripts/reddit-dm-outreach.js +182 -0
package/scripts/reddit-monitor-cron.sh +26 -0
package/scripts/reflector-agent.js +221 -0
package/scripts/reminder-engine.js +132 -0
package/scripts/revenue-status.js +472 -0
package/scripts/risk-scorer.js +459 -0
package/scripts/rlaif-self-audit.js +129 -0
package/scripts/rlhf_session_start.sh +32 -0
package/scripts/rubric-engine.js +230 -0
package/scripts/schedule-manager.js +251 -0
package/scripts/secret-scanner.js +414 -0
package/scripts/self-heal.js +147 -0
package/scripts/self-healing-check.js +188 -0
package/scripts/semantic-layer.js +98 -0
package/scripts/seo-gsd.js +1153 -0
package/scripts/settings-hierarchy.js +214 -0
package/scripts/shieldcortex-memory-firewall-runner.mjs +53 -0
package/scripts/skill-exporter.js +262 -0
package/scripts/skill-generator.js +446 -0
package/scripts/skill-materializer.js +134 -0
package/scripts/skill-packs.js +136 -0
package/scripts/skill-proposer.js +99 -0
package/scripts/skill-quality-tracker.js +282 -0
package/scripts/slo-alert-engine.js +14 -0
package/scripts/slow-loop.js +72 -0
package/scripts/social-analytics/db/schema.sql +32 -0
package/scripts/social-analytics/db/social-analytics.db +0 -0
package/scripts/social-analytics/digest.js +256 -0
package/scripts/social-analytics/generate-instagram-card.js +97 -0
package/scripts/social-analytics/instagram-thumbgate-post.js +107 -0
package/scripts/social-analytics/load-env.js +46 -0
package/scripts/social-analytics/mcp-server.js +289 -0
package/scripts/social-analytics/normalizer.js +580 -0
package/scripts/social-analytics/notify.js +162 -0
package/scripts/social-analytics/poll-all.js +92 -0
package/scripts/social-analytics/pollers/github.js +195 -0
package/scripts/social-analytics/pollers/instagram.js +253 -0
package/scripts/social-analytics/pollers/linkedin.js +330 -0
package/scripts/social-analytics/pollers/plausible.js +247 -0
package/scripts/social-analytics/pollers/reddit.js +306 -0
package/scripts/social-analytics/pollers/threads.js +233 -0
package/scripts/social-analytics/pollers/tiktok.js +203 -0
package/scripts/social-analytics/pollers/x.js +227 -0
package/scripts/social-analytics/pollers/youtube.js +304 -0
package/scripts/social-analytics/pollers/zernio.js +183 -0
package/scripts/social-analytics/publish-instagram-thumbgate.js +98 -0
package/scripts/social-analytics/publish-thumbgate-launch.js +316 -0
package/scripts/social-analytics/publishers/devto.js +122 -0
package/scripts/social-analytics/publishers/instagram.js +317 -0
package/scripts/social-analytics/publishers/linkedin.js +294 -0
package/scripts/social-analytics/publishers/reddit.js +390 -0
package/scripts/social-analytics/publishers/threads.js +275 -0
package/scripts/social-analytics/publishers/tiktok.js +217 -0
package/scripts/social-analytics/publishers/x.js +259 -0
package/scripts/social-analytics/publishers/youtube.js +223 -0
package/scripts/social-analytics/publishers/zernio.js +378 -0
package/scripts/social-analytics/run-digest.js +34 -0
package/scripts/social-analytics/store.js +257 -0
package/scripts/social-analytics/utm.js +143 -0
package/scripts/social-pipeline.js +2628 -0
package/scripts/social-quality-gate.js +18 -0
package/scripts/social-reply-monitor.js +445 -0
package/scripts/status-dashboard.js +155 -0
package/scripts/statusline-lesson.js +16 -0
package/scripts/statusline-tower.js +8 -0
package/scripts/statusline.sh +116 -0
package/scripts/stripe-live-status.js +115 -0
package/scripts/subagent-profiles.js +79 -0
package/scripts/sync-gh-secrets-from-env.sh +70 -0
package/scripts/sync-github-about.js +52 -0
package/scripts/sync-version.js +447 -0
package/scripts/synthetic-dpo.js +234 -0
package/scripts/telemetry-analytics.js +821 -0
package/scripts/tessl-export.js +371 -0
package/scripts/test-coverage.js +120 -0
package/scripts/thompson-sampling.js +417 -0
package/scripts/thumbgate-search.js +189 -0
package/scripts/tool-kpi-tracker.js +12 -0
package/scripts/tool-registry.js +811 -0
package/scripts/train_from_feedback.py +933 -0
package/scripts/user-profile.js +78 -0
package/scripts/validate-feedback.js +581 -0
package/scripts/validate-workflow-contract.js +287 -0
package/scripts/vector-store.js +197 -0
package/scripts/verification-loop.js +291 -0
package/scripts/verify-obsidian-setup.sh +269 -0
package/scripts/verify-run.js +269 -0
package/scripts/webhook-delivery.js +62 -0
package/scripts/weekly-auto-post.js +124 -0
package/scripts/workflow-runs.js +154 -0
package/scripts/workflow-sprint-intake.js +475 -0
package/scripts/workspace-evolver.js +374 -0
package/scripts/x-autonomous-marketing.js +139 -0
package/scripts/xmemory-lite.js +405 -0
package/skills/agent-memory/SKILL.md +97 -0
package/skills/rlhf-feedback/SKILL.md +49 -0
package/skills/solve-architecture-autonomy/SKILL.md +17 -0
package/skills/solve-architecture-autonomy/tool.js +33 -0
package/skills/thumbgate/SKILL.md +114 -0
package/src/api/server.js +4206 -0

package/scripts/data-governance.js ADDED Viewed

@@ -0,0 +1,173 @@
+#!/usr/bin/env node
+'use strict';
+/**
+ * Data Governance — GitHub Copilot-inspired interaction data preferences.
+ *
+ * Controls what feedback data can be exported, shared, or used for training.
+ * Integrates with PII scanner and DPO export gate to enforce user preferences.
+ * Local-first: preferences stored on disk, nothing phones home without consent.
+ */
+const fs = require('fs');
+const path = require('path');
+const { scanForPii, redactPii, gateDpoExport } = require('./pii-scanner');
+const { resolveFeedbackDir } = require('./feedback-paths');
+const PREFERENCES_FILE = 'data-usage-preferences.json';
+const DEFAULT_PREFERENCES = {
+  version: 1,
+  allowDpoExport: true,
+  allowSlowLoopTraining: true,
+  allowOrgDashboardSharing: true,
+  allowFeedbackCollection: true,
+  piiRedactionEnabled: true,
+  maxExportSensitivity: 'internal',
+  retentionDays: 90,
+  updatedAt: null,
+};
+function getPreferencesPath() {
+  return path.join(resolveFeedbackDir(), PREFERENCES_FILE);
+}
+function loadPreferences() {
+  const p = getPreferencesPath();
+  if (!fs.existsSync(p)) return { ...DEFAULT_PREFERENCES };
+  try {
+    const stored = JSON.parse(fs.readFileSync(p, 'utf-8'));
+    return { ...DEFAULT_PREFERENCES, ...stored };
+  } catch { return { ...DEFAULT_PREFERENCES }; }
+}
+function savePreferences(prefs) {
+  const p = getPreferencesPath();
+  const dir = path.dirname(p);
+  if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
+  const merged = { ...DEFAULT_PREFERENCES, ...prefs, updatedAt: new Date().toISOString() };
+  fs.writeFileSync(p, JSON.stringify(merged, null, 2) + '\n');
+  return merged;
+}
+function updatePreference(key, value) {
+  if (!(key in DEFAULT_PREFERENCES)) throw new Error(`Unknown preference: "${key}". Valid: ${Object.keys(DEFAULT_PREFERENCES).join(', ')}`);
+  if (key === 'version') throw new Error('Cannot modify version field');
+  const prefs = loadPreferences();
+  prefs[key] = value;
+  return savePreferences(prefs);
+}
+/**
+ * Check if a specific data operation is allowed by current preferences.
+ */
+function isOperationAllowed(operation) {
+  const prefs = loadPreferences();
+  switch (operation) {
+    case 'dpo_export': return prefs.allowDpoExport;
+    case 'slow_loop': return prefs.allowSlowLoopTraining;
+    case 'org_dashboard': return prefs.allowOrgDashboardSharing;
+    case 'feedback_capture': return prefs.allowFeedbackCollection;
+    default: return true;
+  }
+}
+/**
+ * Apply governance policies to a DPO export: check preferences, scan PII, gate output.
+ * Returns { allowed, pairs, blocked, reason, piiStats }.
+ */
+function governedDpoExport(pairs) {
+  const prefs = loadPreferences();
+  if (!prefs.allowDpoExport) {
+    return { allowed: false, pairs: [], blocked: pairs.length, reason: 'DPO export disabled by user preference', piiStats: null };
+  }
+  const gateResult = gateDpoExport(pairs, { maxSensitivity: prefs.maxExportSensitivity });
+  let safePairs = gateResult.safePairs;
+  if (prefs.piiRedactionEnabled) {
+    safePairs = safePairs.map((p) => ({
+      prompt: redactPii(p.prompt),
+      chosen: redactPii(p.chosen),
+      rejected: redactPii(p.rejected),
+    }));
+  }
+  return {
+    allowed: true,
+    pairs: safePairs,
+    blocked: gateResult.blockedCount,
+    totalScanned: gateResult.totalScanned,
+    passRate: gateResult.passRate,
+    reason: gateResult.blockedCount > 0 ? `${gateResult.blockedCount} pairs blocked by PII gate` : 'all pairs clean',
+    piiStats: { blockedCount: gateResult.blockedCount, redactionEnabled: prefs.piiRedactionEnabled, maxSensitivity: prefs.maxExportSensitivity },
+  };
+}
+/**
+ * Apply retention policy: delete feedback entries older than retentionDays.
+ * Returns count of entries purged.
+ */
+function enforceRetention() {
+  const prefs = loadPreferences();
+  const feedbackDir = resolveFeedbackDir();
+  const logPath = path.join(feedbackDir, 'feedback-log.jsonl');
+  if (!fs.existsSync(logPath)) return { purged: 0, remaining: 0 };
+  const cutoff = Date.now() - prefs.retentionDays * 24 * 60 * 60 * 1000;
+  const raw = fs.readFileSync(logPath, 'utf-8').trim();
+  if (!raw) return { purged: 0, remaining: 0 };
+  const lines = raw.split('\n');
+  const kept = [];
+  let purged = 0;
+  for (const line of lines) {
+    try {
+      const entry = JSON.parse(line);
+      const ts = new Date(entry.timestamp || entry.createdAt || 0).getTime();
+      if (ts > cutoff) { kept.push(line); } else { purged++; }
+    } catch { kept.push(line); }
+  }
+  fs.writeFileSync(logPath, kept.join('\n') + (kept.length > 0 ? '\n' : ''));
+  return { purged, remaining: kept.length, retentionDays: prefs.retentionDays };
+}
+/**
+ * Generate a human-readable data usage summary for compliance.
+ */
+function generateDataUsageSummary() {
+  const prefs = loadPreferences();
+  const feedbackDir = process.env.THUMBGATE_FEEDBACK_DIR || path.join(process.cwd(), '.rlhf');
+  const logPath = path.join(feedbackDir, 'feedback-log.jsonl');
+  let entryCount = 0;
+  if (fs.existsSync(logPath)) {
+    const raw = fs.readFileSync(logPath, 'utf-8').trim();
+    entryCount = raw ? raw.split('\n').length : 0;
+  }
+  return {
+    dataStorageLocation: 'local-only (on-device)',
+    phonesHome: false,
+    feedbackEntries: entryCount,
+    preferences: {
+      dpoExport: prefs.allowDpoExport ? 'enabled' : 'disabled',
+      slowLoopTraining: prefs.allowSlowLoopTraining ? 'enabled' : 'disabled',
+      orgDashboardSharing: prefs.allowOrgDashboardSharing ? 'enabled' : 'disabled',
+      piiRedaction: prefs.piiRedactionEnabled ? 'enabled' : 'disabled',
+      maxExportSensitivity: prefs.maxExportSensitivity,
+      retentionDays: prefs.retentionDays,
+    },
+    compliance: {
+      localFirst: true,
+      piiScanning: prefs.piiRedactionEnabled,
+      dataRetention: `${prefs.retentionDays} days`,
+      exportGating: prefs.allowDpoExport ? `PII gate at ${prefs.maxExportSensitivity} threshold` : 'exports disabled',
+    },
+    generatedAt: new Date().toISOString(),
+  };
+}
+module.exports = {
+  DEFAULT_PREFERENCES, loadPreferences, savePreferences, updatePreference,
+  isOperationAllowed, governedDpoExport, enforceRetention, generateDataUsageSummary,
+  getPreferencesPath,
+};