trace-to-skill 0.1.26

package/LICENSE

@@ -0,0 +1,190 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2026 Ogün
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/README.md

@@ -0,0 +1,456 @@
+# trace-to-skill
+
+[![CI](https://github.com/grnbtqdbyx-create/trace-to-skill/actions/workflows/ci.yml/badge.svg)](https://github.com/grnbtqdbyx-create/trace-to-skill/actions/workflows/ci.yml)
+[![Codex Readiness](https://github.com/grnbtqdbyx-create/trace-to-skill/actions/workflows/codex-readiness.yml/badge.svg)](https://github.com/grnbtqdbyx-create/trace-to-skill/actions/workflows/codex-readiness.yml)
+[![Release](https://img.shields.io/github/v/release/grnbtqdbyx-create/trace-to-skill)](https://github.com/grnbtqdbyx-create/trace-to-skill/releases)
+[![License](https://img.shields.io/badge/license-Apache--2.0-blue.svg)](LICENSE)
+[![Node](https://img.shields.io/badge/node-%3E%3D20-339933.svg)](package.json)
+
+Turn failed AI coding-agent runs into reusable `AGENTS.md` rules, `SKILL.md` files, and eval evidence.
+
+```bash
+npx github:grnbtqdbyx-create/trace-to-skill doctor .
+npx github:grnbtqdbyx-create/trace-to-skill lint-agents .
+npx github:grnbtqdbyx-create/trace-to-skill analyze ./runs
+npx github:grnbtqdbyx-create/trace-to-skill init --comment --sarif
+npx github:grnbtqdbyx-create/trace-to-skill suggest ./runs --target agents-md
+npx github:grnbtqdbyx-create/trace-to-skill eval ./runs --threshold 80
+npx github:grnbtqdbyx-create/trace-to-skill benchmark
+npx github:grnbtqdbyx-create/trace-to-skill scorecard .
+npx github:grnbtqdbyx-create/trace-to-skill scorecard-comment . --dry-run
+npx github:grnbtqdbyx-create/trace-to-skill guard-github-event "$GITHUB_EVENT_PATH"
+npx github:grnbtqdbyx-create/trace-to-skill comment ./runs --dry-run
+npx github:grnbtqdbyx-create/trace-to-skill compare --before ./runs/before --after ./runs/after
+```
+
+AI coding agents are getting good enough to change real repositories, but they still repeat the same workflow mistakes: claiming success without tests, ignoring repo instructions, over-editing, inventing files, leaking secrets into traces, or enabling risky MCP tools.
+
+`trace-to-skill` closes that loop:
+
+```text
+failed agent run -> failure class -> reusable rule/skill -> eval gate -> keep or revise
+```
+
+It is built for maintainers using Codex, Claude Code, Cursor, Copilot coding agent, Gemini CLI, OpenCode, or MCP-enabled workflows.
+
+## Why This Exists
+
+Open-source maintainers do not need more AI-generated noise. They need agents that learn from concrete failures and produce reviewable evidence.
+
+`trace-to-skill` helps teams answer:
+
+- Is this repository ready for Codex-driven OSS maintenance?
+- Why did this Codex or Claude run fail?
+- Was the failure caused by missing repo instructions?
+- Should this become an `AGENTS.md` rule?
+- Should this become a reusable `SKILL.md` workflow?
+- Did the proposed rule actually improve the next run?
+- Can this be reported in a PR without leaking secrets?
+
+## Example Output
+
+```text
+Agent workflow failed: score 25/100, critical findings 1.
+```
+
+Markdown report:
+
+```md
+# Agent Learning Report
+
+Score: 25/100
+
+## Findings
+
+### Agent claimed completion without verifiable proof
+Severity: high
+Evidence:
+- fixtures/failed-run.md:7 Done. The parser is fixed and all set.
+
+Suggested rule:
+> Before claiming completion, run the relevant validation command or clearly state the exact validation that could not be run and why.
+```
+
+Generated `AGENTS.md` snippet:
+
+```md
+# Agent Rules Generated From Failed Runs
+
+- Every code-changing task must end with a named validation command and its result, even when the command fails.
+- Before editing or referencing a path, verify it exists with a file search command such as rg --files.
+```
+
+## What It Detects
+
+`doctor` checks repo-level readiness:
+
+| Check | Why maintainers care |
+| --- | --- |
+| `AGENTS.md` | Codex needs clear repository instructions |
+| CI workflow | Agent changes need visible validation |
+| Validation scripts | Completion claims need repeatable proof |
+| License | OSS adoption and review need clear terms |
+| Maintainer docs | Contributors and agent PRs need process |
+| Distribution | Users should be able to try the project in one command |
+| Agent learning loop | Failed runs should become evidence, not folklore |
+
+Trace analysis detects run-level failures:
+
+| Finding | Why maintainers care |
+| --- | --- |
+| Premature completion | Agent says "done" without proof |
+| Tests not run | Review load moves back to maintainers |
+| Test/build failure | Completion should be blocked |
+| Hallucinated file | Agent invented a path or module |
+| Instruction drift | `AGENTS.md`, `CLAUDE.md`, and tool-specific files conflict |
+| Over-editing | Diff is broader than the task needs |
+| Unsafe command | Destructive shell or remote script execution |
+| Secret exposure | Tokens/API keys in traces or PR comments |
+| Hidden Unicode | Invisible instruction or code-review manipulation |
+| Prompt injection | Untrusted issue, PR, log, or web text asks the agent to ignore policy or leak secrets |
+| MCP risk | Tool permissions and trust boundaries are unclear |
+
+## Installation
+
+The GitHub release is available now:
+
+```bash
+npx github:grnbtqdbyx-create/trace-to-skill analyze ./runs
+```
+
+After npm publication:
+
+```bash
+npm install -D trace-to-skill
+```
+
+or:
+
+```bash
+npx trace-to-skill analyze ./runs
+```
+
+Requires Node.js 20+.
+
+## CLI
+
+Check whether a repository is ready for Codex automation:
+
+```bash
+trace-to-skill doctor .
+trace-to-skill doctor . --threshold 85
+trace-to-skill doctor . --format json
+trace-to-skill doctor . --format comment
+```
+
+Lint `AGENTS.md`, tool-specific agent instruction files, and MCP config risk:
+
+```bash
+trace-to-skill lint-agents .
+trace-to-skill lint-agents . --format json
+```
+
+This focused linter checks whether `AGENTS.md` exists as the canonical instruction source, whether validation commands are discoverable, whether `AGENTS.md` / `CLAUDE.md` / Cursor / Copilot guidance conflicts, and whether MCP configs expose risky capabilities or secrets.
+
+Scaffold a repo:
+
+```bash
+trace-to-skill init --comment --sarif
+```
+
+`init` writes `.github/workflows/codex-readiness.yml`, `.github/workflows/agent-learning.yml`, `runs/README.md`, and `runs/.gitkeep`. The generated workflows use the published GitHub Action, expose score/report outputs, and will not overwrite existing files unless `--force` is passed.
+
+Analyze traces:
+
+```bash
+trace-to-skill analyze ./runs --format markdown --output agent-learning-report.md
+trace-to-skill analyze ./runs --format json
+trace-to-skill analyze ./runs --format sarif --output trace-to-skill.sarif
+```
+
+Generate reusable rules:
+
+```bash
+trace-to-skill suggest ./runs --target agents-md --output AGENTS.generated.md
+trace-to-skill suggest ./runs --target skill --output skills/verification-before-completion/SKILL.md
+```
+
+Use as an eval gate:
+
+```bash
+trace-to-skill eval ./runs --threshold 80
+```
+
+The eval command exits non-zero when the score is below the threshold or critical findings exist.
+
+Run the built-in fixture benchmark:
+
+```bash
+trace-to-skill benchmark
+trace-to-skill benchmark --format json
+```
+
+See the current public scorecard in [docs/BENCHMARK.md](docs/BENCHMARK.md).
+
+Generate a combined Codex readiness and benchmark scorecard:
+
+```bash
+trace-to-skill scorecard .
+trace-to-skill scorecard . --format json
+```
+
+See this repository's current public scorecard in [docs/SCORECARD.md](docs/SCORECARD.md).
+
+Post or update a pull request comment with the combined scorecard:
+
+```bash
+trace-to-skill scorecard-comment . --threshold 85 --token "$GITHUB_TOKEN"
+```
+
+Guard untrusted GitHub event text before an agent acts on it:
+
+```bash
+trace-to-skill guard-github-event "$GITHUB_EVENT_PATH"
+trace-to-skill guard-github-event fixtures/github-prompt-injection-event.json --format json
+```
+
+This extracts PR titles/bodies, issue bodies, review comments, discussion text, check-run output, and commit messages from a GitHub event payload, then scans that text for prompt injection, leaked secrets, unsafe command requests, and weak evidence patterns.
+
+Post or update a GitHub pull request comment:
+
+```bash
+trace-to-skill comment ./runs --token "$GITHUB_TOKEN"
+```
+
+Post or update a GitHub pull request comment with the Codex readiness doctor:
+
+```bash
+trace-to-skill doctor-comment . --threshold 85 --token "$GITHUB_TOKEN"
+```
+
+Compare an agent run before and after a generated rule or skill:
+
+```bash
+trace-to-skill compare --before ./runs/before --after ./runs/after
+```
+
+## Supported Inputs
+
+`trace-to-skill` scans directories or individual files:
+
+- `.md`
+- `.txt`
+- `.log`
+- `.json`
+- `.jsonl`
+
+JSONL traces are normalized by extracting common fields such as `message`, `content`, `text`, `output`, and `error`. Codex-style JSONL traces with `response_item`, `function_call`, `function_call_output`, and `event_msg` payloads are normalized into readable evidence lines.
+
+MCP configs with `mcpServers` are parsed for capability hints such as filesystem, shell, browser, network, database, container, and secret-bearing environment variables.
+
+Instruction files such as `AGENTS.md`, `CLAUDE.md`, `GEMINI.md`, `.cursor/rules`, and `.github/copilot-instructions.md` are checked for obvious contradictions in validation commands, test requirements, and destructive-command approval rules.
+
+## JSON Schemas
+
+Stable machine-readable contracts are published with the npm package and release tarball:
+
+- [`schemas/analysis-result.schema.json`](schemas/analysis-result.schema.json) describes `trace-to-skill analyze --format json`.
+- [`schemas/agents-lint-result.schema.json`](schemas/agents-lint-result.schema.json) describes `trace-to-skill lint-agents --format json`.
+- [`schemas/doctor-result.schema.json`](schemas/doctor-result.schema.json) describes `trace-to-skill doctor --format json`.
+- [`schemas/scorecard-result.schema.json`](schemas/scorecard-result.schema.json) describes `trace-to-skill scorecard --format json`.
+
+These schemas let downstream Codex workflows, dashboards, and CI bots consume reports without scraping Markdown.
+
+## Adoption Guide
+
+For a copy-paste maintainer rollout, see [docs/ADOPTION_GUIDE.md](docs/ADOPTION_GUIDE.md). It includes the first PR shape, privacy checklist, and a short pull request template for adding Codex readiness checks without handing policy changes to an agent.
+
+## GitHub Action
+
+Run the Codex readiness doctor as a GitHub Action:
+
+```yaml
+name: Codex Readiness
+
+on:
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  codex-readiness:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+      issues: write
+    steps:
+      - uses: actions/checkout@v5
+      - uses: grnbtqdbyx-create/trace-to-skill@v0.1.26
+        with:
+          mode: all
+          doctor-threshold: "85"
+          doctor-comment: "true"
+          scorecard-comment: "true"
+          job-summary: "true"
+          github-token: ${{ github.token }}
+```
+
+Add this to `.github/workflows/agent-learning.yml` for trace analysis:
+
+```yaml
+name: Agent Learning Report
+
+on:
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  agent-learning:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+      issues: write
+    steps:
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v5
+        with:
+          node-version: 20
+      - run: npx github:grnbtqdbyx-create/trace-to-skill analyze ./runs --output agent-learning-report.md
+      - run: npx github:grnbtqdbyx-create/trace-to-skill comment ./runs --token "${{ github.token }}"
+      - run: npx github:grnbtqdbyx-create/trace-to-skill eval ./runs --threshold 80
+```
+
+Code scanning / SARIF upload:
+
+```yaml
+- run: npx github:grnbtqdbyx-create/trace-to-skill analyze ./runs --format sarif --output trace-to-skill.sarif
+- uses: github/codeql-action/upload-sarif@v4
+  with:
+    sarif_file: trace-to-skill.sarif
+```
+
+Composite action usage:
+
+```yaml
+- id: trace-to-skill
+  uses: grnbtqdbyx-create/trace-to-skill@v0.1.26
+  with:
+    mode: all
+    doctor-threshold: "85"
+    doctor-comment: "true"
+    scorecard-comment: "true"
+    job-summary: "true"
+    traces: ./runs
+    threshold: "80"
+    comment: "true"
+    github-token: ${{ github.token }}
+- run: echo "Codex readiness score is ${{ steps.trace-to-skill.outputs.doctor-score }}"
+```
+
+Action outputs:
+
+| Output | Description |
+| --- | --- |
+| `doctor-score` | Codex readiness score from 0 to 100 |
+| `doctor-status` | `ready` or `needs-attention` |
+| `doctor-summary` | Human-readable doctor summary |
+| `doctor-report` | Markdown report path |
+| `doctor-json` | JSON report path |
+| `agent-report` | Agent learning report path |
+| `agents-lint-score` | AGENTS.md linter score from 0 to 100 |
+| `agents-lint-status` | `pass`, `warn`, or `fail` |
+| `agents-lint-report` | Markdown AGENTS.md linter report path |
+| `agents-lint-json` | JSON AGENTS.md linter report path |
+| `context-score` | Untrusted GitHub event context score from 0 to 100 |
+| `context-status` | `pass` or `fail` |
+| `context-report` | Markdown GitHub context guard report path |
+| `context-json` | JSON GitHub context guard report path |
+| `benchmark-status` | Built-in fixture benchmark status, `pass` or `fail` |
+| `benchmark-cases` | Number of benchmark cases executed |
+| `benchmark-report` | Markdown benchmark report path |
+| `benchmark-json` | JSON benchmark report path |
+| `scorecard-status` | Combined scorecard status, `pass` or `fail` |
+| `scorecard-report` | Markdown scorecard report path |
+| `scorecard-json` | JSON scorecard report path |
+
+By default, generated reports are also appended to the GitHub Actions Job Summary. Set `job-summary: "false"` to disable that UI output.
+
+Tagged Action releases build and run the CLI from `$GITHUB_ACTION_PATH`, so a workflow pinned to `@v0.1.26` executes that release's checked-out source instead of pulling the default branch at runtime.
+
+## Codex Skill
+
+This repository also ships a Codex-native skill for maintainers who want the agent itself to run a repeatable readiness audit:
+
+```bash
+python3 ~/.codex/skills/.system/skill-installer/scripts/install-skill-from-github.py \
+  --repo grnbtqdbyx-create/trace-to-skill \
+  --path skills/codex-readiness-auditor \
+  --name codex-readiness-auditor
+```
+
+The skill tells Codex to run the scorecard, treat issue/PR text as untrusted data, avoid committing generated policy without maintainer review, and report exact validation evidence.
+
+## OpenAI / Codex Use Case
+
+This project is designed to support open-source maintainers who use Codex for:
+
+- pull request review
+- issue triage
+- release workflow automation
+- security review
+- repository-specific agent skills
+- maintainer handoff reports
+
+The goal is not to let agents autonomously rewrite project policy. The goal is to turn repeated, evidence-backed agent failures into small, reviewable improvements that maintainers can accept or reject.
+
+## Roadmap
+
+- Codex session JSONL adapters
+- Claude Code transcript adapters
+- `AGENTS.md` contradiction detector
+- MCP config parser with explicit capability scoring
+- GitHub PR comment mode
+- before/after eval runner
+- SARIF output for GitHub code scanning
+- `trace-to-skill doctor` for Codex readiness scoring
+- GitHub Action doctor mode with score threshold
+- Doctor PR summary comments
+- Marketplace-ready action branding and self-dogfooding workflow
+- Composite Action outputs for downstream workflow steps
+- Job Summary output for generated reports
+- `trace-to-skill init` for Codex readiness and agent-learning workflow setup
+- Published JSON schemas for deterministic CLI report contracts
+- `trace-to-skill benchmark` for public fixture scorecards
+- GitHub Action `benchmark` and `all` modes
+- `trace-to-skill scorecard` for combined reviewer proof
+- Scorecard JSON schema and Action outputs
+- Tag-pinned GitHub Action runtime via `$GITHUB_ACTION_PATH`
+- Scorecard PR comments with update-in-place marker
+- public benchmark of common agent failure classes
+
+See [docs/ROADMAP.md](docs/ROADMAP.md).
+
+## Design Principles
+
+- Evidence first: every suggestion must point to trace lines.
+- Maintainer control: generated rules are suggestions, not automatic policy changes.
+- No secret leakage: reports redact common token patterns.
+- Model agnostic: useful for Codex, Claude Code, Cursor, Copilot, Gemini CLI, and other coding agents.
+- Small surface area: no runtime dependencies in the CLI.
+
+## Contributing
+
+Contributions are welcome, especially:
+
+- real-world anonymized failed agent traces
+- new failure detectors
+- adapters for Codex, Claude Code, Cursor, Copilot, and Gemini CLI
+- eval fixtures proving a rule improves behavior
+- docs for maintainer workflows
+
+Read [CONTRIBUTING.md](CONTRIBUTING.md) and [SECURITY.md](SECURITY.md).
+
+## License
+
+Apache-2.0. See [LICENSE](LICENSE).

package/dist/src/agentsLint.d.ts

@@ -0,0 +1,15 @@
+import { type DoctorCheck } from "./doctor.js";
+import type { Finding } from "./types.js";
+export interface AgentsLintResult {
+    generatedAt: string;
+    root: string;
+    status: "pass" | "warn" | "fail";
+    score: number;
+    instructionFiles: string[];
+    mcpConfigs: string[];
+    checks: DoctorCheck[];
+    findings: Finding[];
+    summary: string;
+}
+export declare function lintAgents(target?: string): Promise<AgentsLintResult>;
+export declare function renderAgentsLintMarkdown(result: AgentsLintResult): string;