npm - tlc-claude-code - Versions diffs - 1.3.0 → 1.4.1 - Mend

tlc-claude-code 1.3.0 → 1.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (105) hide show

package/dashboard/dist/components/AuditPane.d.ts +30 -0
package/dashboard/dist/components/AuditPane.js +127 -0
package/dashboard/dist/components/AuditPane.test.d.ts +1 -0
package/dashboard/dist/components/AuditPane.test.js +339 -0
package/dashboard/dist/components/CompliancePane.d.ts +39 -0
package/dashboard/dist/components/CompliancePane.js +96 -0
package/dashboard/dist/components/CompliancePane.test.d.ts +1 -0
package/dashboard/dist/components/CompliancePane.test.js +183 -0
package/dashboard/dist/components/SSOPane.d.ts +36 -0
package/dashboard/dist/components/SSOPane.js +71 -0
package/dashboard/dist/components/SSOPane.test.d.ts +1 -0
package/dashboard/dist/components/SSOPane.test.js +155 -0
package/dashboard/dist/components/WorkspaceDocsPane.js +0 -16
package/dashboard/dist/components/WorkspacePane.d.ts +1 -1
package/dashboard/dist/components/ZeroRetentionPane.d.ts +44 -0
package/dashboard/dist/components/ZeroRetentionPane.js +83 -0
package/dashboard/dist/components/ZeroRetentionPane.test.d.ts +1 -0
package/dashboard/dist/components/ZeroRetentionPane.test.js +160 -0
package/package.json +1 -1
package/server/lib/access-control-doc.js +541 -0
package/server/lib/access-control-doc.test.js +672 -0
package/server/lib/adr-generator.js +423 -0
package/server/lib/adr-generator.test.js +586 -0
package/server/lib/agent-progress-monitor.js +223 -0
package/server/lib/agent-progress-monitor.test.js +202 -0
package/server/lib/audit-attribution.js +191 -0
package/server/lib/audit-attribution.test.js +359 -0
package/server/lib/audit-classifier.js +202 -0
package/server/lib/audit-classifier.test.js +209 -0
package/server/lib/audit-command.js +275 -0
package/server/lib/audit-command.test.js +325 -0
package/server/lib/audit-exporter.js +380 -0
package/server/lib/audit-exporter.test.js +464 -0
package/server/lib/audit-logger.js +236 -0
package/server/lib/audit-logger.test.js +364 -0
package/server/lib/audit-query.js +257 -0
package/server/lib/audit-query.test.js +352 -0
package/server/lib/audit-storage.js +269 -0
package/server/lib/audit-storage.test.js +272 -0
package/server/lib/bulk-repo-init.js +342 -0
package/server/lib/bulk-repo-init.test.js +388 -0
package/server/lib/compliance-checklist.js +866 -0
package/server/lib/compliance-checklist.test.js +476 -0
package/server/lib/compliance-command.js +616 -0
package/server/lib/compliance-command.test.js +551 -0
package/server/lib/compliance-reporter.js +692 -0
package/server/lib/compliance-reporter.test.js +707 -0
package/server/lib/data-flow-doc.js +665 -0
package/server/lib/data-flow-doc.test.js +659 -0
package/server/lib/ephemeral-storage.js +249 -0
package/server/lib/ephemeral-storage.test.js +254 -0
package/server/lib/evidence-collector.js +627 -0
package/server/lib/evidence-collector.test.js +901 -0
package/server/lib/flow-diagram-generator.js +474 -0
package/server/lib/flow-diagram-generator.test.js +446 -0
package/server/lib/idp-manager.js +626 -0
package/server/lib/idp-manager.test.js +587 -0
package/server/lib/memory-exclusion.js +326 -0
package/server/lib/memory-exclusion.test.js +241 -0
package/server/lib/mfa-handler.js +452 -0
package/server/lib/mfa-handler.test.js +490 -0
package/server/lib/oauth-flow.js +375 -0
package/server/lib/oauth-flow.test.js +487 -0
package/server/lib/oauth-registry.js +190 -0
package/server/lib/oauth-registry.test.js +306 -0
package/server/lib/readme-generator.js +490 -0
package/server/lib/readme-generator.test.js +493 -0
package/server/lib/repo-dependency-tracker.js +261 -0
package/server/lib/repo-dependency-tracker.test.js +350 -0
package/server/lib/retention-policy.js +281 -0
package/server/lib/retention-policy.test.js +486 -0
package/server/lib/role-mapper.js +236 -0
package/server/lib/role-mapper.test.js +395 -0
package/server/lib/saml-provider.js +765 -0
package/server/lib/saml-provider.test.js +643 -0
package/server/lib/security-policy-generator.js +682 -0
package/server/lib/security-policy-generator.test.js +544 -0
package/server/lib/sensitive-detector.js +112 -0
package/server/lib/sensitive-detector.test.js +209 -0
package/server/lib/service-interaction-diagram.js +700 -0
package/server/lib/service-interaction-diagram.test.js +638 -0
package/server/lib/service-summary.js +553 -0
package/server/lib/service-summary.test.js +619 -0
package/server/lib/session-purge.js +460 -0
package/server/lib/session-purge.test.js +312 -0
package/server/lib/sso-command.js +544 -0
package/server/lib/sso-command.test.js +552 -0
package/server/lib/sso-session.js +492 -0
package/server/lib/sso-session.test.js +670 -0
package/server/lib/workspace-command.js +249 -0
package/server/lib/workspace-command.test.js +264 -0
package/server/lib/workspace-config.js +270 -0
package/server/lib/workspace-config.test.js +312 -0
package/server/lib/workspace-docs-command.js +547 -0
package/server/lib/workspace-docs-command.test.js +692 -0
package/server/lib/workspace-memory.js +451 -0
package/server/lib/workspace-memory.test.js +403 -0
package/server/lib/workspace-scanner.js +452 -0
package/server/lib/workspace-scanner.test.js +677 -0
package/server/lib/workspace-test-runner.js +315 -0
package/server/lib/workspace-test-runner.test.js +294 -0
package/server/lib/zero-retention-command.js +439 -0
package/server/lib/zero-retention-command.test.js +448 -0
package/server/lib/zero-retention.js +322 -0
package/server/lib/zero-retention.test.js +258 -0

package/server/lib/session-purge.js ADDED Viewed

@@ -0,0 +1,460 @@
+/**
+ * Session Purge Manager - Automatically purge data when sessions end
+ *
+ * Provides:
+ * - Session-end detection and data purging
+ * - Policy-based retention evaluation
+ * - Process exit and timeout handling
+ * - Audit logging for purge operations
+ * - Graceful and forced shutdown support
+ */
+const { getPolicy, evaluateRetention } = require('./retention-policy.js');
+/**
+ * Session Purge Manager
+ *
+ * Manages automatic purging of session data based on session lifecycle events
+ */
+class SessionPurgeManager {
+  /**
+   * Create a session purge manager
+   * @param {Object} options - Configuration options
+   * @param {Object} options.storage - EphemeralStorage instance to manage
+   * @param {string} [options.sessionId] - Current session ID
+   * @param {boolean} [options.auditEnabled] - Enable audit logging
+   * @param {Function} [options.onAuditLog] - Callback for audit log entries
+   * @param {Object} [options.policies] - Custom retention policies
+   */
+  constructor(options = {}) {
+    this.storage = options.storage;
+    this.sessionId = options.sessionId || this._generateSessionId();
+    this.auditEnabled = options.auditEnabled || false;
+    this.onAuditLog = options.onAuditLog || null;
+    this.policies = options.policies || null;
+    // Track purge history
+    this.purgeHistory = [];
+    this.lastPurge = null;
+    // Idle timer
+    this.idleTimer = null;
+    this.idleTimeout = null;
+  }
+  /**
+   * Generate a unique session ID
+   * @private
+   */
+  _generateSessionId() {
+    return `session-${Date.now()}-${Math.random().toString(36).substr(2, 9)}`;
+  }
+  /**
+   * Log an audit entry if audit is enabled
+   * @private
+   */
+  _logAudit(entry) {
+    if (this.auditEnabled && this.onAuditLog) {
+      const auditEntry = {
+        timestamp: new Date().toISOString(),
+        sessionId: this.sessionId,
+        ...entry,
+      };
+      this.onAuditLog(auditEntry);
+    }
+  }
+  /**
+   * Get all keys from storage with their values
+   * @private
+   */
+  _getAllEntries() {
+    const entries = [];
+    const keys = this.storage.keys();
+    for (const key of keys) {
+      const value = this.storage.get(key);
+      entries.push({ key, value });
+    }
+    return entries;
+  }
+  /**
+   * Handle session end - purge all session-specific data
+   * @param {Object} [options] - Purge options
+   * @param {boolean} [options.respectPolicies] - Evaluate retention policies before purging
+   * @returns {Object} Purge result with count and keys
+   */
+  onSessionEnd(options = {}) {
+    const purgedKeys = [];
+    const entries = this._getAllEntries();
+    for (const { key, value } of entries) {
+      let shouldPurge = false;
+      // Check if data belongs to this session
+      if (value && typeof value === 'object' && value.sessionId === this.sessionId) {
+        shouldPurge = true;
+      }
+      // If respecting policies, evaluate retention
+      if (options.respectPolicies && value && typeof value === 'object') {
+        const policyOptions = {
+          sensitivityLevel: value.sensitivityLevel,
+          dataType: value.dataType,
+        };
+        const policy = getPolicy(policyOptions, this.policies);
+        const decision = evaluateRetention(value, policy, {
+          currentSessionId: this.sessionId,
+        });
+        if (decision === 'purge') {
+          shouldPurge = true;
+        }
+      }
+      if (shouldPurge) {
+        this.storage.delete(key);
+        purgedKeys.push(key);
+      }
+    }
+    // Record this purge
+    const purgeRecord = {
+      timestamp: new Date().toISOString(),
+      sessionId: this.sessionId,
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+      trigger: 'sessionEnd',
+    };
+    this.purgeHistory.push(purgeRecord);
+    this.lastPurge = purgeRecord;
+    // Log audit
+    this._logAudit({
+      action: 'purge',
+      trigger: 'sessionEnd',
+      purgedCount: purgedKeys.length,
+      keys: purgedKeys,
+    });
+    return {
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+    };
+  }
+  /**
+   * Handle process exit - purge session data
+   * @returns {Object} Purge result
+   */
+  onProcessExit() {
+    const purgedKeys = [];
+    const entries = this._getAllEntries();
+    for (const { key, value } of entries) {
+      // On process exit, purge session-specific data
+      if (value && typeof value === 'object' && value.sessionId === this.sessionId) {
+        this.storage.delete(key);
+        purgedKeys.push(key);
+      }
+    }
+    const purgeRecord = {
+      timestamp: new Date().toISOString(),
+      sessionId: this.sessionId,
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+      trigger: 'processExit',
+    };
+    this.purgeHistory.push(purgeRecord);
+    this.lastPurge = purgeRecord;
+    this._logAudit({
+      action: 'purge',
+      trigger: 'processExit',
+      purgedCount: purgedKeys.length,
+    });
+    return {
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+    };
+  }
+  /**
+   * Start idle timer - purge after inactivity
+   * @param {number} timeout - Idle timeout in milliseconds
+   */
+  startIdleTimer(timeout) {
+    this.idleTimeout = timeout;
+    this._scheduleIdleTimer();
+  }
+  /**
+   * Reset idle timer on activity
+   */
+  resetIdleTimer() {
+    if (this.idleTimer) {
+      clearTimeout(this.idleTimer);
+      this._scheduleIdleTimer();
+    }
+  }
+  /**
+   * Stop idle timer
+   */
+  stopIdleTimer() {
+    if (this.idleTimer) {
+      clearTimeout(this.idleTimer);
+      this.idleTimer = null;
+    }
+  }
+  /**
+   * Schedule the idle timer
+   * @private
+   */
+  _scheduleIdleTimer() {
+    if (this.idleTimeout) {
+      this.idleTimer = setTimeout(() => {
+        this._onTimeout();
+      }, this.idleTimeout);
+    }
+  }
+  /**
+   * Handle idle timeout
+   * @private
+   */
+  _onTimeout() {
+    const purgedKeys = [];
+    const entries = this._getAllEntries();
+    for (const { key, value } of entries) {
+      if (value && typeof value === 'object' && value.sessionId === this.sessionId) {
+        this.storage.delete(key);
+        purgedKeys.push(key);
+      }
+    }
+    const purgeRecord = {
+      timestamp: new Date().toISOString(),
+      sessionId: this.sessionId,
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+      trigger: 'timeout',
+    };
+    this.purgeHistory.push(purgeRecord);
+    this.lastPurge = purgeRecord;
+    this._logAudit({
+      action: 'purge',
+      trigger: 'timeout',
+      purgedCount: purgedKeys.length,
+    });
+    return {
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+    };
+  }
+  /**
+   * Purge data matching specific policy criteria
+   * @param {Object} criteria - Policy criteria to match
+   * @param {string} [criteria.sensitivityLevel] - Sensitivity level to purge
+   * @param {string} [criteria.dataType] - Data type to purge
+   * @returns {Object} Purge result
+   */
+  purgeByPolicy(criteria = {}) {
+    const purgedKeys = [];
+    const entries = this._getAllEntries();
+    for (const { key, value } of entries) {
+      if (!value || typeof value !== 'object') continue;
+      let shouldPurge = false;
+      // Match by sensitivity level
+      if (criteria.sensitivityLevel && value.sensitivityLevel === criteria.sensitivityLevel) {
+        shouldPurge = true;
+      }
+      // Match by data type
+      if (criteria.dataType && value.dataType === criteria.dataType) {
+        shouldPurge = true;
+      }
+      if (shouldPurge) {
+        this.storage.delete(key);
+        purgedKeys.push(key);
+      }
+    }
+    const purgeRecord = {
+      timestamp: new Date().toISOString(),
+      sessionId: this.sessionId,
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+      trigger: 'policy',
+      criteria,
+    };
+    this.purgeHistory.push(purgeRecord);
+    this.lastPurge = purgeRecord;
+    this._logAudit({
+      action: 'purge',
+      trigger: 'policy',
+      criteria,
+      purgedCount: purgedKeys.length,
+    });
+    return {
+      purgedKeys,
+      purgedCount: purgedKeys.length,
+    };
+  }
+  /**
+   * Force purge all data immediately
+   * @returns {Object} Purge result
+   */
+  forcePurge() {
+    const keys = this.storage.keys();
+    const purgedKeys = [...keys];
+    const purgedCount = keys.length;
+    this.storage.clear();
+    const purgeRecord = {
+      timestamp: new Date().toISOString(),
+      sessionId: this.sessionId,
+      purgedKeys,
+      purgedCount,
+      trigger: 'forced',
+      forced: true,
+    };
+    this.purgeHistory.push(purgeRecord);
+    this.lastPurge = purgeRecord;
+    this._logAudit({
+      action: 'purge',
+      trigger: 'forced',
+      purgedCount,
+    });
+    return {
+      purgedKeys,
+      purgedCount,
+      forced: true,
+    };
+  }
+  /**
+   * Get report of what was purged
+   * @returns {Object} Purge report
+   */
+  getPurgeReport() {
+    const totalPurged = this.purgeHistory.reduce((sum, record) => sum + record.purgedCount, 0);
+    if (!this.lastPurge) {
+      return {
+        purgedKeys: [],
+        purgedCount: 0,
+        timestamp: null,
+        sessionId: this.sessionId,
+        totalPurged: 0,
+        history: [],
+      };
+    }
+    return {
+      purgedKeys: this.lastPurge.purgedKeys,
+      purgedCount: this.lastPurge.purgedCount,
+      timestamp: this.lastPurge.timestamp,
+      sessionId: this.sessionId,
+      totalPurged,
+      history: this.purgeHistory,
+    };
+  }
+  /**
+   * Perform graceful shutdown with timeout
+   * @param {Object} [options] - Shutdown options
+   * @param {number} [options.timeout] - Timeout in milliseconds before force purge
+   * @returns {Promise<Object>} Shutdown result
+   */
+  async gracefulShutdown(options = {}) {
+    const timeout = options.timeout || 5000;
+    return new Promise((resolve) => {
+      let timedOut = false;
+      // Set up timeout for force purge
+      const timeoutId = setTimeout(() => {
+        timedOut = true;
+        const result = this.forcePurge();
+        resolve({
+          ...result,
+          graceful: false,
+          timedOut: true,
+        });
+      }, timeout);
+      // Try graceful purge
+      try {
+        // Stop idle timer if running
+        this.stopIdleTimer();
+        // Purge session data
+        const result = this.onSessionEnd({ respectPolicies: true });
+        if (!timedOut) {
+          clearTimeout(timeoutId);
+          resolve({
+            ...result,
+            graceful: true,
+            timedOut: false,
+          });
+        }
+      } catch (error) {
+        if (!timedOut) {
+          clearTimeout(timeoutId);
+          // On error, force purge
+          const result = this.forcePurge();
+          resolve({
+            ...result,
+            graceful: false,
+            error: error.message,
+          });
+        }
+      }
+    });
+  }
+  /**
+   * Register process exit handlers
+   */
+  registerProcessHandlers() {
+    const exitHandler = () => this.onProcessExit();
+    process.on('exit', exitHandler);
+    process.on('SIGINT', exitHandler);
+    process.on('SIGTERM', exitHandler);
+  }
+}
+/**
+ * Factory function to create a SessionPurgeManager
+ * @param {Object} options - Configuration options
+ * @returns {SessionPurgeManager} New instance
+ */
+function createPurgeManager(options = {}) {
+  return new SessionPurgeManager(options);
+}
+module.exports = {
+  SessionPurgeManager,
+  createPurgeManager,
+};