trace-to-skill 0.1.26

package/dist/src/agentsLint.js

@@ -0,0 +1,156 @@
+import { promises as fs } from "node:fs";
+import path from "node:path";
+import { doctorRepo } from "./doctor.js";
+const SKIP_DIRS = new Set([".git", "node_modules", "dist", "coverage", ".next", "build"]);
+export async function lintAgents(target = process.cwd()) {
+    const root = path.resolve(target);
+    const files = await listFiles(root);
+    const lintableFiles = files.filter((file) => !isEvidenceArchive(file));
+    const instructionFiles = lintableFiles.filter((file) => isInstructionFile(file));
+    const mcpConfigs = lintableFiles.filter((file) => isMcpConfigCandidate(file));
+    const doctor = await doctorRepo(root);
+    const checks = doctor.checks.filter((check) => check.id === "agent-instructions" || check.id === "validation");
+    const findings = doctor.findings.filter((finding) => finding.kind === "ignored_instruction" ||
+        finding.kind === "mcp_risk" ||
+        finding.kind === "secret_exposure" ||
+        finding.kind === "hidden_unicode" ||
+        finding.kind === "prompt_injection");
+    const score = calculateAgentsLintScore(checks, findings);
+    const status = statusFrom(score, checks, findings);
+    return {
+        generatedAt: new Date().toISOString(),
+        root,
+        status,
+        score,
+        instructionFiles,
+        mcpConfigs,
+        checks,
+        findings,
+        summary: summarizeAgentsLint(status, instructionFiles, mcpConfigs, findings)
+    };
+}
+export function renderAgentsLintMarkdown(result) {
+    const lines = [
+        "# AGENTS.md Lint Report",
+        "",
+        `Status: **${result.status}**`,
+        `Score: **${result.score}/100**`,
+        "",
+        result.summary,
+        "",
+        `Repository: \`${result.root}\``,
+        `Generated: ${result.generatedAt}`,
+        "",
+        "## Instruction Files",
+        ""
+    ];
+    if (result.instructionFiles.length > 0) {
+        result.instructionFiles.forEach((file) => lines.push(`- \`${file}\``));
+    }
+    else {
+        lines.push("No AGENTS.md, CLAUDE.md, GEMINI.md, Cursor rules, or Copilot instruction files found.");
+    }
+    lines.push("", "## MCP Configs", "");
+    if (result.mcpConfigs.length > 0) {
+        result.mcpConfigs.forEach((file) => lines.push(`- \`${file}\``));
+    }
+    else {
+        lines.push("No MCP config files detected.");
+    }
+    lines.push("", "## Checks", "");
+    result.checks.forEach((check) => {
+        lines.push(`- **${check.status.toUpperCase()}** ${check.title}: ${check.detail}`);
+        if (check.recommendation) {
+            lines.push(`  Recommendation: ${check.recommendation}`);
+        }
+    });
+    lines.push("", "## Findings", "");
+    if (result.findings.length === 0) {
+        lines.push("No instruction or MCP findings detected.");
+    }
+    else {
+        result.findings.forEach((finding) => {
+            const firstEvidence = finding.evidence[0];
+            const evidence = firstEvidence ? ` Evidence: \`${firstEvidence.file}:${firstEvidence.line}\`.` : "";
+            lines.push(`- **${finding.severity}** ${finding.title}.${evidence}`);
+        });
+    }
+    lines.push("", "## Suggested Next Step", "", result.status === "pass"
+        ? "Keep AGENTS.md as the canonical maintainer-controlled instruction file, and make tool-specific files reference it."
+        : "Fix failed checks or high-risk findings before letting Codex act broadly on this repository.");
+    return `${lines.join("\n")}\n`;
+}
+async function listFiles(root) {
+    const files = [];
+    async function visit(dir) {
+        const entries = await fs.readdir(dir, { withFileTypes: true });
+        for (const entry of entries) {
+            const fullPath = path.join(dir, entry.name);
+            const relative = path.relative(root, fullPath).split(path.sep).join("/");
+            if (entry.isDirectory()) {
+                if (!SKIP_DIRS.has(entry.name)) {
+                    await visit(fullPath);
+                }
+                continue;
+            }
+            if (entry.isFile()) {
+                files.push(relative);
+            }
+        }
+    }
+    await visit(root);
+    return files.sort((a, b) => a.localeCompare(b));
+}
+function calculateAgentsLintScore(checks, findings) {
+    const checkPenalty = checks.reduce((total, check) => {
+        if (check.status === "fail") {
+            return total + 30;
+        }
+        if (check.status === "warn") {
+            return total + 10;
+        }
+        return total;
+    }, 0);
+    const findingPenalty = findings.reduce((total, finding) => {
+        const value = {
+            low: 5,
+            medium: 10,
+            high: 25,
+            critical: 35
+        }[finding.severity];
+        return total + value;
+    }, 0);
+    return Math.max(0, Math.min(100, 100 - checkPenalty - findingPenalty));
+}
+function statusFrom(checksScore, checks, findings) {
+    if (checks.some((check) => check.status === "fail") || findings.some((finding) => finding.severity === "critical" || finding.severity === "high")) {
+        return "fail";
+    }
+    if (checksScore < 90 || checks.some((check) => check.status === "warn") || findings.length > 0) {
+        return "warn";
+    }
+    return "pass";
+}
+function summarizeAgentsLint(status, instructionFiles, mcpConfigs, findings) {
+    if (status === "pass") {
+        return "Agent instructions look consistent and ready for Codex use.";
+    }
+    if (status === "fail") {
+        return "Agent instructions or MCP configuration need fixes before broad Codex automation.";
+    }
+    const missingAgents = instructionFiles.includes("AGENTS.md") ? "" : " Add AGENTS.md as the shared source of truth.";
+    const mcpNote = mcpConfigs.length > 0 && findings.length === 0 ? " MCP configs were detected; keep their trust boundaries documented." : "";
+    return `Agent instructions are usable but need tightening.${missingAgents}${mcpNote}`.trim();
+}
+function isInstructionFile(file) {
+    return /(^|\/)(AGENTS|CLAUDE|GEMINI|COPILOT|copilot-instructions)\.md$/i.test(file) ||
+        /^\.cursor\/rules\/.+/i.test(file);
+}
+function isMcpConfigCandidate(file) {
+    return /(^|\/)(mcp|\.mcp|mcp-config|model-context)\.(json|jsonc)$/i.test(file) ||
+        /(^|\/)\.cursor\/mcp\.json$/i.test(file);
+}
+function isEvidenceArchive(file) {
+    return /^(fixtures|examples|runs)\//i.test(file);
+}
+//# sourceMappingURL=agentsLint.js.map

package/dist/src/agentsLint.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agentsLint.js","sourceRoot":"","sources":["../../src/agentsLint.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,UAAU,EAAoB,MAAM,aAAa,CAAC;AAe3D,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;AAE1F,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,MAAM,GAAG,OAAO,CAAC,GAAG,EAAE;IACrD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAClC,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC;IACpC,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC;IACvE,MAAM,gBAAgB,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC;IACjF,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC;IAC9E,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,IAAI,CAAC,CAAC;IACtC,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,KAAK,oBAAoB,IAAI,KAAK,CAAC,EAAE,KAAK,YAAY,CAAC,CAAC;IAC/G,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAClD,OAAO,CAAC,IAAI,KAAK,qBAAqB;QACtC,OAAO,CAAC,IAAI,KAAK,UAAU;QAC3B,OAAO,CAAC,IAAI,KAAK,iBAAiB;QAClC,OAAO,CAAC,IAAI,KAAK,gBAAgB;QACjC,OAAO,CAAC,IAAI,KAAK,kBAAkB,CACpC,CAAC;IACF,MAAM,KAAK,GAAG,wBAAwB,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IACzD,MAAM,MAAM,GAAG,UAAU,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAEnD,OAAO;QACL,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACrC,IAAI;QACJ,MAAM;QACN,KAAK;QACL,gBAAgB;QAChB,UAAU;QACV,MAAM;QACN,QAAQ;QACR,OAAO,EAAE,mBAAmB,CAAC,MAAM,EAAE,gBAAgB,EAAE,UAAU,EAAE,QAAQ,CAAC;KAC7E,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,MAAwB;IAC/D,MAAM,KAAK,GAAG;QACZ,yBAAyB;QACzB,EAAE;QACF,aAAa,MAAM,CAAC,MAAM,IAAI;QAC9B,YAAY,MAAM,CAAC,KAAK,QAAQ;QAChC,EAAE;QACF,MAAM,CAAC,OAAO;QACd,EAAE;QACF,iBAAiB,MAAM,CAAC,IAAI,IAAI;QAChC,cAAc,MAAM,CAAC,WAAW,EAAE;QAClC,EAAE;QACF,sBAAsB;QACtB,EAAE;KACH,CAAC;IAEF,IAAI,MAAM,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACvC,MAAM,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC;IACzE,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,uFAAuF,CAAC,CAAC;IACtG,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,EAAE,EAAE,gBAAgB,EAAE,EAAE,CAAC,CAAC;IACrC,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACjC,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC;IACnE,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;IAC9C,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,EAAE,EAAE,WAAW,EAAE,EAAE,CAAC,CAAC;IAChC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,EAAE;QAC9B,KAAK,CAAC,IAAI,CAAC,OAAO,KAAK,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,KAAK,CAAC,KAAK,KAAK,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;QAClF,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;YACzB,KAAK,CAAC,IAAI,CAAC,qBAAqB,KAAK,CAAC,cAAc,EAAE,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,KAAK,CAAC,IAAI,CAAC,EAAE,EAAE,aAAa,EAAE,EAAE,CAAC,CAAC;IAClC,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAC;IACzD,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAClC,MAAM,aAAa,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;YAC1C,MAAM,QAAQ,GAAG,aAAa,CAAC,CAAC,CAAC,gBAAgB,aAAa,CAAC,IAAI,IAAI,aAAa,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;YACpG,KAAK,CAAC,IAAI,CAAC,OAAO,OAAO,CAAC,QAAQ,MAAM,OAAO,CAAC,KAAK,IAAI,QAAQ,EAAE,CAAC,CAAC;QACvE,CAAC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,IAAI,CACR,EAAE,EACF,wBAAwB,EACxB,EAAE,EACF,MAAM,CAAC,MAAM,KAAK,MAAM;QACtB,CAAC,CAAC,oHAAoH;QACtH,CAAC,CAAC,8FAA8F,CACnG,CAAC;IAEF,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;AACjC,CAAC;AAED,KAAK,UAAU,SAAS,CAAC,IAAY;IACnC,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,UAAU,KAAK,CAAC,GAAW;QAC9B,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAC/D,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAC5C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzE,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC/B,MAAM,KAAK,CAAC,QAAQ,CAAC,CAAC;gBACxB,CAAC;gBACD,SAAS;YACX,CAAC;YAED,IAAI,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;gBACnB,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACvB,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC;IAClB,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,CAAC;AAClD,CAAC;AAED,SAAS,wBAAwB,CAAC,MAAqB,EAAE,QAAmB;IAC1E,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;QAClD,IAAI,KAAK,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAC5B,OAAO,KAAK,GAAG,EAAE,CAAC;QACpB,CAAC;QACD,IAAI,KAAK,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAC5B,OAAO,KAAK,GAAG,EAAE,CAAC;QACpB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,EAAE,CAAC,CAAC,CAAC;IACN,MAAM,cAAc,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QACxD,MAAM,KAAK,GAAG;YACZ,GAAG,EAAE,CAAC;YACN,MAAM,EAAE,EAAE;YACV,IAAI,EAAE,EAAE;YACR,QAAQ,EAAE,EAAE;SACb,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACpB,OAAO,KAAK,GAAG,KAAK,CAAC;IACvB,CAAC,EAAE,CAAC,CAAC,CAAC;IAEN,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,GAAG,YAAY,GAAG,cAAc,CAAC,CAAC,CAAC;AACzE,CAAC;AAED,SAAS,UAAU,CAAC,WAAmB,EAAE,MAAqB,EAAE,QAAmB;IACjF,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,UAAU,IAAI,OAAO,CAAC,QAAQ,KAAK,MAAM,CAAC,EAAE,CAAC;QAClJ,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,IAAI,WAAW,GAAG,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/F,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,mBAAmB,CAAC,MAAkC,EAAE,gBAA0B,EAAE,UAAoB,EAAE,QAAmB;IACpI,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,6DAA6D,CAAC;IACvE,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,mFAAmF,CAAC;IAC7F,CAAC;IAED,MAAM,aAAa,GAAG,gBAAgB,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+CAA+C,CAAC;IACpH,MAAM,OAAO,GAAG,UAAU,CAAC,MAAM,GAAG,CAAC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,qEAAqE,CAAC,CAAC,CAAC,EAAE,CAAC;IAC5I,OAAO,qDAAqD,aAAa,GAAG,OAAO,EAAE,CAAC,IAAI,EAAE,CAAC;AAC/F,CAAC;AAED,SAAS,iBAAiB,CAAC,IAAY;IACrC,OAAO,iEAAiE,CAAC,IAAI,CAAC,IAAI,CAAC;QACjF,uBAAuB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACvC,CAAC;AAED,SAAS,oBAAoB,CAAC,IAAY;IACxC,OAAO,4DAA4D,CAAC,IAAI,CAAC,IAAI,CAAC;QAC5E,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC7C,CAAC;AAED,SAAS,iBAAiB,CAAC,IAAY;IACrC,OAAO,8BAA8B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACnD,CAAC"}

package/dist/src/analyze.d.ts

@@ -0,0 +1,3 @@
+import type { AnalysisResult, AnalyzeOptions, TraceInput } from "./types.js";
+export declare function analyzeTargets(targets: string[], options?: AnalyzeOptions): Promise<AnalysisResult>;
+export declare function analyzeInputs(inputs: TraceInput[], options?: AnalyzeOptions): AnalysisResult;

package/dist/src/analyze.js

@@ -0,0 +1,53 @@
+import { loadTraceInputs } from "./parsers.js";
+import { collectFindings } from "./rules.js";
+export async function analyzeTargets(targets, options = {}) {
+    const inputs = await loadTraceInputs(targets);
+    return analyzeInputs(inputs, options);
+}
+export function analyzeInputs(inputs, options = {}) {
+    const findings = collectFindings(inputs, options.maxFilesChanged);
+    const score = calculateScore(findings);
+    return {
+        generatedAt: new Date().toISOString(),
+        inputs: inputs.map((input) => input.path),
+        score,
+        summary: summarize(score, findings),
+        findings,
+        recommendations: buildRecommendations(findings)
+    };
+}
+function calculateScore(findings) {
+    const penalty = findings.reduce((total, finding) => {
+        const value = {
+            low: 4,
+            medium: 9,
+            high: 16,
+            critical: 25
+        }[finding.severity];
+        return total + value;
+    }, 0);
+    return Math.max(0, Math.min(100, 100 - penalty));
+}
+function summarize(score, findings) {
+    if (findings.length === 0) {
+        return "No agent workflow risks detected in the provided traces.";
+    }
+    if (findings.some((finding) => finding.severity === "critical")) {
+        return "Agent workflow is risky. Critical findings must be resolved before this workflow is reused.";
+    }
+    if (findings.some((finding) => finding.severity === "high")) {
+        return "Agent workflow needs clearer verification, instruction, or security hardening before broad reuse.";
+    }
+    if (score >= 80) {
+        return "Agent workflow is mostly healthy, with a few hardening opportunities.";
+    }
+    if (score >= 60) {
+        return "Agent workflow needs clearer verification and instruction hardening before broad reuse.";
+    }
+    return "Agent workflow is risky. Convert the findings into explicit rules or skills before repeating this workflow.";
+}
+function buildRecommendations(findings) {
+    const unique = new Set(findings.map((finding) => finding.suggestedRule));
+    return Array.from(unique);
+}
+//# sourceMappingURL=analyze.js.map

package/dist/src/analyze.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"analyze.js","sourceRoot":"","sources":["../../src/analyze.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAG7C,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,OAAiB,EAAE,UAA0B,EAAE;IAClF,MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,OAAO,CAAC,CAAC;IAC9C,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AACxC,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,MAAoB,EAAE,UAA0B,EAAE;IAC9E,MAAM,QAAQ,GAAG,eAAe,CAAC,MAAM,EAAE,OAAO,CAAC,eAAe,CAAC,CAAC;IAClE,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;IAEvC,OAAO;QACL,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACrC,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC;QACzC,KAAK;QACL,OAAO,EAAE,SAAS,CAAC,KAAK,EAAE,QAAQ,CAAC;QACnC,QAAQ;QACR,eAAe,EAAE,oBAAoB,CAAC,QAAQ,CAAC;KAChD,CAAC;AACJ,CAAC;AAED,SAAS,cAAc,CAAC,QAAoC;IAC1D,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QACjD,MAAM,KAAK,GAAG;YACZ,GAAG,EAAE,CAAC;YACN,MAAM,EAAE,CAAC;YACT,IAAI,EAAE,EAAE;YACR,QAAQ,EAAE,EAAE;SACb,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACpB,OAAO,KAAK,GAAG,KAAK,CAAC;IACvB,CAAC,EAAE,CAAC,CAAC,CAAC;IAEN,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC;AACnD,CAAC;AAED,SAAS,SAAS,CAAC,KAAa,EAAE,QAAoC;IACpE,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,0DAA0D,CAAC;IACpE,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,UAAU,CAAC,EAAE,CAAC;QAChE,OAAO,6FAA6F,CAAC;IACvG,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,MAAM,CAAC,EAAE,CAAC;QAC5D,OAAO,mGAAmG,CAAC;IAC7G,CAAC;IAED,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QAChB,OAAO,uEAAuE,CAAC;IACjF,CAAC;IAED,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QAChB,OAAO,yFAAyF,CAAC;IACnG,CAAC;IAED,OAAO,6GAA6G,CAAC;AACvH,CAAC;AAED,SAAS,oBAAoB,CAAC,QAAoC;IAChE,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;IACzE,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC5B,CAAC"}

package/dist/src/benchmark.d.ts

@@ -0,0 +1,27 @@
+import type { FindingKind } from "./types.js";
+export interface BenchmarkCaseDefinition {
+    id: string;
+    title: string;
+    fixture: string;
+    expectedKinds: FindingKind[];
+    requireCritical?: boolean;
+    requireClean?: boolean;
+}
+export interface BenchmarkCaseResult {
+    id: string;
+    title: string;
+    fixture: string;
+    score: number;
+    findings: number;
+    criticalFindings: number;
+    detectedKinds: FindingKind[];
+    expectedKinds: FindingKind[];
+    passed: boolean;
+}
+export interface BenchmarkResult {
+    generatedAt: string;
+    passed: boolean;
+    cases: BenchmarkCaseResult[];
+}
+export declare function runBenchmark(): Promise<BenchmarkResult>;
+export declare function renderBenchmarkMarkdown(result: BenchmarkResult): string;

package/dist/src/benchmark.js

@@ -0,0 +1,109 @@
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import { analyzeTargets } from "./analyze.js";
+const BENCHMARK_CASES = [
+    {
+        id: "clean-validated-run",
+        title: "Clean validated agent run",
+        fixture: "fixtures/safe-run.md",
+        expectedKinds: [],
+        requireClean: true
+    },
+    {
+        id: "failed-workflow",
+        title: "Failed workflow with missing validation",
+        fixture: "fixtures/failed-run.md",
+        expectedKinds: ["test_failure", "premature_completion", "tests_not_run", "mcp_risk", "hallucinated_file"],
+        requireCritical: true
+    },
+    {
+        id: "codex-jsonl",
+        title: "Codex JSONL failed session",
+        fixture: "fixtures/codex-session.jsonl",
+        expectedKinds: ["test_failure", "premature_completion", "weak_evidence"],
+        requireCritical: true
+    },
+    {
+        id: "mcp-risk",
+        title: "MCP config with secret exposure",
+        fixture: "fixtures/mcp-risk.json",
+        expectedKinds: ["secret_exposure", "mcp_risk"],
+        requireCritical: true
+    },
+    {
+        id: "prompt-injection",
+        title: "Untrusted PR comment prompt injection",
+        fixture: "fixtures/prompt-injection.md",
+        expectedKinds: ["prompt_injection"],
+        requireCritical: true
+    },
+    {
+        id: "instruction-drift",
+        title: "Conflicting agent instruction files",
+        fixture: "fixtures/instruction-drift",
+        expectedKinds: ["ignored_instruction"]
+    }
+];
+export async function runBenchmark() {
+    const cases = [];
+    const root = packageRoot();
+    for (const definition of BENCHMARK_CASES) {
+        const result = await analyzeTargets([path.join(root, definition.fixture)]);
+        const detectedKinds = Array.from(new Set(result.findings.map((finding) => finding.kind))).sort();
+        const criticalFindings = result.findings.filter((finding) => finding.severity === "critical").length;
+        cases.push({
+            id: definition.id,
+            title: definition.title,
+            fixture: definition.fixture,
+            score: result.score,
+            findings: result.findings.length,
+            criticalFindings,
+            detectedKinds,
+            expectedKinds: definition.expectedKinds,
+            passed: casePassed(definition, detectedKinds, result.findings.length, criticalFindings)
+        });
+    }
+    return {
+        generatedAt: new Date().toISOString(),
+        passed: cases.every((item) => item.passed),
+        cases
+    };
+}
+export function renderBenchmarkMarkdown(result) {
+    const lines = [
+        "# trace-to-skill Benchmark",
+        "",
+        `Status: **${result.passed ? "pass" : "fail"}**`,
+        "",
+        "This benchmark runs the public fixture pack that ships with the repository and package. It is not a model leaderboard; it checks whether deterministic detectors still catch the agent-workflow failure classes the project claims to cover.",
+        "",
+        "| Case | Fixture | Score | Findings | Critical | Detected kinds | Result |",
+        "| --- | --- | ---: | ---: | ---: | --- | --- |"
+    ];
+    for (const item of result.cases) {
+        lines.push([
+            `| ${item.title}`,
+            `\`${item.fixture}\``,
+            `${item.score}`,
+            `${item.findings}`,
+            `${item.criticalFindings}`,
+            item.detectedKinds.length > 0 ? item.detectedKinds.map((kind) => `\`${kind}\``).join(", ") : "none",
+            item.passed ? "pass |" : "fail |"
+        ].join(" | "));
+    }
+    lines.push("", "Run it locally:", "", "```bash", "trace-to-skill benchmark", "trace-to-skill benchmark --format json", "```", "");
+    return lines.join("\n");
+}
+function casePassed(definition, detectedKinds, findings, criticalFindings) {
+    if (definition.requireClean && findings !== 0) {
+        return false;
+    }
+    if (definition.requireCritical && criticalFindings === 0) {
+        return false;
+    }
+    return definition.expectedKinds.every((kind) => detectedKinds.includes(kind));
+}
+function packageRoot() {
+    return path.resolve(path.dirname(fileURLToPath(import.meta.url)), "../..");
+}
+//# sourceMappingURL=benchmark.js.map

package/dist/src/benchmark.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"benchmark.js","sourceRoot":"","sources":["../../src/benchmark.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AA8B9C,MAAM,eAAe,GAA8B;IACjD;QACE,EAAE,EAAE,qBAAqB;QACzB,KAAK,EAAE,2BAA2B;QAClC,OAAO,EAAE,sBAAsB;QAC/B,aAAa,EAAE,EAAE;QACjB,YAAY,EAAE,IAAI;KACnB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,KAAK,EAAE,yCAAyC;QAChD,OAAO,EAAE,wBAAwB;QACjC,aAAa,EAAE,CAAC,cAAc,EAAE,sBAAsB,EAAE,eAAe,EAAE,UAAU,EAAE,mBAAmB,CAAC;QACzG,eAAe,EAAE,IAAI;KACtB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,KAAK,EAAE,4BAA4B;QACnC,OAAO,EAAE,8BAA8B;QACvC,aAAa,EAAE,CAAC,cAAc,EAAE,sBAAsB,EAAE,eAAe,CAAC;QACxE,eAAe,EAAE,IAAI;KACtB;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,iCAAiC;QACxC,OAAO,EAAE,wBAAwB;QACjC,aAAa,EAAE,CAAC,iBAAiB,EAAE,UAAU,CAAC;QAC9C,eAAe,EAAE,IAAI;KACtB;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,KAAK,EAAE,uCAAuC;QAC9C,OAAO,EAAE,8BAA8B;QACvC,aAAa,EAAE,CAAC,kBAAkB,CAAC;QACnC,eAAe,EAAE,IAAI;KACtB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,KAAK,EAAE,qCAAqC;QAC5C,OAAO,EAAE,4BAA4B;QACrC,aAAa,EAAE,CAAC,qBAAqB,CAAC;KACvC;CACF,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,YAAY;IAChC,MAAM,KAAK,GAA0B,EAAE,CAAC;IACxC,MAAM,IAAI,GAAG,WAAW,EAAE,CAAC;IAE3B,KAAK,MAAM,UAAU,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;QAC3E,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACjG,MAAM,gBAAgB,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAErG,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,UAAU,CAAC,EAAE;YACjB,KAAK,EAAE,UAAU,CAAC,KAAK;YACvB,OAAO,EAAE,UAAU,CAAC,OAAO;YAC3B,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;YAChC,gBAAgB;YAChB,aAAa;YACb,aAAa,EAAE,UAAU,CAAC,aAAa;YACvC,MAAM,EAAE,UAAU,CAAC,UAAU,EAAE,aAAa,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,gBAAgB,CAAC;SACxF,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACrC,MAAM,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC;QAC1C,KAAK;KACN,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,MAAuB;IAC7D,MAAM,KAAK,GAAG;QACZ,4BAA4B;QAC5B,EAAE;QACF,aAAa,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,IAAI;QAChD,EAAE;QACF,8OAA8O;QAC9O,EAAE;QACF,4EAA4E;QAC5E,gDAAgD;KACjD,CAAC;IAEF,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,IAAI,CAAC,KAAK,EAAE;YACjB,KAAK,IAAI,CAAC,OAAO,IAAI;YACrB,GAAG,IAAI,CAAC,KAAK,EAAE;YACf,GAAG,IAAI,CAAC,QAAQ,EAAE;YAClB,GAAG,IAAI,CAAC,gBAAgB,EAAE;YAC1B,IAAI,CAAC,aAAa,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,IAAI,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM;YACnG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ;SAClC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,IAAI,CACR,EAAE,EACF,iBAAiB,EACjB,EAAE,EACF,SAAS,EACT,0BAA0B,EAC1B,wCAAwC,EACxC,KAAK,EACL,EAAE,CACH,CAAC;IAEF,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,SAAS,UAAU,CACjB,UAAmC,EACnC,aAA4B,EAC5B,QAAgB,EAChB,gBAAwB;IAExB,IAAI,UAAU,CAAC,YAAY,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QAC9C,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,UAAU,CAAC,eAAe,IAAI,gBAAgB,KAAK,CAAC,EAAE,CAAC;QACzD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO,UAAU,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC;AAChF,CAAC;AAED,SAAS,WAAW;IAClB,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;AAC7E,CAAC"}

package/dist/src/cli.d.ts

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+export {};

package/dist/src/cli.js

@@ -0,0 +1,281 @@
+#!/usr/bin/env node
+import { writeFile } from "node:fs/promises";
+import { lintAgents, renderAgentsLintMarkdown } from "./agentsLint.js";
+import { analyzeTargets } from "./analyze.js";
+import { renderBenchmarkMarkdown, runBenchmark } from "./benchmark.js";
+import { doctorRepo } from "./doctor.js";
+import { compareAnalyses, evaluate } from "./eval.js";
+import { analyzeGithubEventContext } from "./githubContext.js";
+import { postPullRequestComment } from "./github.js";
+import { initProject } from "./init.js";
+import { renderAgentsRules, renderComparison, renderDoctorMarkdown, renderDoctorPrComment, renderMarkdown, renderPrComment, renderSarif, renderSkill } from "./report.js";
+import { renderScorecardMarkdown, renderScorecardPrComment, runScorecard } from "./scorecard.js";
+async function main() {
+    const parsed = parseArgs(process.argv.slice(2));
+    if (parsed.flags.help || parsed.command === "help") {
+        printHelp();
+        return;
+    }
+    if (parsed.command === "analyze") {
+        const result = await analyzeTargets(parsed.targets);
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = renderAnalysis(result, format);
+        await writeOutput(output, parsed.flags.output);
+        return;
+    }
+    if (parsed.command === "suggest") {
+        const result = await analyzeTargets(parsed.targets);
+        const target = String(parsed.flags.target ?? "agents-md");
+        const output = target === "skill" ? renderSkill(result) : renderAgentsRules(result);
+        await writeOutput(output, parsed.flags.output);
+        return;
+    }
+    if (parsed.command === "lint-agents") {
+        const result = await lintAgents(parsed.targets[0] ?? process.cwd());
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(result, null, 2)}\n` : renderAgentsLintMarkdown(result);
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = result.status === "fail" ? 1 : 0;
+        return;
+    }
+    if (parsed.command === "eval") {
+        const threshold = Number(parsed.flags.threshold ?? 75);
+        const result = await analyzeTargets(parsed.targets);
+        const evalResult = evaluate(result, threshold);
+        const format = String(parsed.flags.format ?? "text");
+        const output = format === "json" ? `${JSON.stringify(evalResult, null, 2)}\n` : `${evalResult.message}\n`;
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = evalResult.passed ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "benchmark") {
+        const result = await runBenchmark();
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(result, null, 2)}\n` : renderBenchmarkMarkdown(result);
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = result.passed ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "scorecard") {
+        const threshold = numberFlag(parsed.flags.threshold) ?? 85;
+        const result = await runScorecard(parsed.targets[0] ?? process.cwd(), threshold);
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(result, null, 2)}\n` : renderScorecardMarkdown(result);
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = result.passed ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "scorecard-comment") {
+        const threshold = numberFlag(parsed.flags.threshold) ?? 85;
+        const result = await runScorecard(parsed.targets[0] ?? process.cwd(), threshold);
+        const body = renderScorecardPrComment(result);
+        const message = await postPullRequestComment({
+            body,
+            token: stringFlag(parsed.flags.token),
+            repository: stringFlag(parsed.flags.repository),
+            eventPath: stringFlag(parsed.flags.event),
+            dryRun: Boolean(parsed.flags["dry-run"]),
+            marker: "<!-- trace-to-skill-scorecard-report -->",
+            reportName: "trace-to-skill scorecard report"
+        });
+        process.stdout.write(`${message}\n`);
+        process.exitCode = result.passed ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "guard-github-event") {
+        const eventPath = parsed.targets[0] ?? stringFlag(parsed.flags.event) ?? process.env.GITHUB_EVENT_PATH;
+        if (!eventPath) {
+            throw new Error("guard-github-event requires an event JSON path or GITHUB_EVENT_PATH.");
+        }
+        const threshold = numberFlag(parsed.flags.threshold) ?? 80;
+        const result = await analyzeGithubEventContext(eventPath);
+        const evalResult = evaluate(result, threshold);
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(result, null, 2)}\n` : renderAnalysis(result, "markdown");
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = evalResult.passed ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "comment") {
+        const result = await analyzeTargets(parsed.targets);
+        const body = renderPrComment(result);
+        const message = await postPullRequestComment({
+            body,
+            token: stringFlag(parsed.flags.token),
+            repository: stringFlag(parsed.flags.repository),
+            eventPath: stringFlag(parsed.flags.event),
+            dryRun: Boolean(parsed.flags["dry-run"])
+        });
+        process.stdout.write(`${message}\n`);
+        return;
+    }
+    if (parsed.command === "compare") {
+        const before = stringFlag(parsed.flags.before) ?? parsed.targets[0];
+        const after = stringFlag(parsed.flags.after) ?? parsed.targets[1];
+        if (!before || !after) {
+            throw new Error("compare requires --before <trace> and --after <trace>, or two positional paths.");
+        }
+        const beforeResult = await analyzeTargets([before]);
+        const afterResult = await analyzeTargets([after]);
+        const comparison = compareAnalyses(beforeResult, afterResult);
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(comparison, null, 2)}\n` : renderComparison(comparison);
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = comparison.decision === "reject" ? 1 : 0;
+        return;
+    }
+    if (parsed.command === "doctor") {
+        const result = await doctorRepo(parsed.targets[0] ?? process.cwd());
+        const threshold = numberFlag(parsed.flags.threshold);
+        const format = String(parsed.flags.format ?? "markdown");
+        const output = format === "json" ? `${JSON.stringify(result, null, 2)}\n` :
+            format === "comment" ? renderDoctorPrComment(result, threshold) :
+                renderDoctorMarkdown(result);
+        await writeOutput(output, parsed.flags.output);
+        process.exitCode = doctorPassed(result, threshold) ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "doctor-comment") {
+        const result = await doctorRepo(parsed.targets[0] ?? process.cwd());
+        const threshold = numberFlag(parsed.flags.threshold);
+        const body = renderDoctorPrComment(result, threshold);
+        const message = await postPullRequestComment({
+            body,
+            token: stringFlag(parsed.flags.token),
+            repository: stringFlag(parsed.flags.repository),
+            eventPath: stringFlag(parsed.flags.event),
+            dryRun: Boolean(parsed.flags["dry-run"]),
+            marker: "<!-- trace-to-skill-doctor-report -->",
+            reportName: "trace-to-skill doctor report"
+        });
+        process.stdout.write(`${message}\n`);
+        process.exitCode = doctorPassed(result, threshold) ? 0 : 1;
+        return;
+    }
+    if (parsed.command === "init") {
+        const result = await initProject({
+            traces: stringFlag(parsed.flags.traces),
+            threshold: stringFlag(parsed.flags.threshold),
+            doctorThreshold: stringFlag(parsed.flags["doctor-threshold"]),
+            comment: Boolean(parsed.flags.comment),
+            sarif: Boolean(parsed.flags.sarif),
+            force: Boolean(parsed.flags.force),
+            dryRun: Boolean(parsed.flags["dry-run"])
+        });
+        process.stdout.write(`${result.message}\n`);
+        result.written.forEach((file) => process.stdout.write(`write ${file}\n`));
+        result.skipped.forEach((file) => process.stdout.write(`skip ${file}\n`));
+        return;
+    }
+    printHelp();
+    process.exitCode = 1;
+}
+function stringFlag(value) {
+    return typeof value === "string" ? value : undefined;
+}
+function numberFlag(value) {
+    if (value === undefined) {
+        return undefined;
+    }
+    if (typeof value !== "string" || !/^[0-9]{1,3}$/.test(value)) {
+        throw new Error("--threshold must be an integer between 1 and 100");
+    }
+    const parsed = Number(value);
+    if (!Number.isInteger(parsed) || parsed < 1 || parsed > 100) {
+        throw new Error("--threshold must be an integer between 1 and 100");
+    }
+    return parsed;
+}
+function doctorPassed(result, threshold) {
+    if (result.checks.some((check) => check.status === "fail")) {
+        return false;
+    }
+    if (result.findings.some((finding) => finding.severity === "critical")) {
+        return false;
+    }
+    return threshold === undefined || result.score >= threshold;
+}
+function renderAnalysis(result, format) {
+    if (format === "json") {
+        return `${JSON.stringify(result, null, 2)}\n`;
+    }
+    if (format === "sarif") {
+        return renderSarif(result);
+    }
+    return renderMarkdown(result);
+}
+function parseArgs(args) {
+    const [command = "help", ...rest] = args;
+    const targets = [];
+    const flags = {};
+    for (let index = 0; index < rest.length; index += 1) {
+        const value = rest[index];
+        if (!value.startsWith("--")) {
+            targets.push(value);
+            continue;
+        }
+        const [key, inlineValue] = value.slice(2).split("=", 2);
+        if (inlineValue !== undefined) {
+            flags[key] = inlineValue;
+            continue;
+        }
+        const next = rest[index + 1];
+        if (next && !next.startsWith("--")) {
+            flags[key] = next;
+            index += 1;
+        }
+        else {
+            flags[key] = true;
+        }
+    }
+    return { command, targets, flags };
+}
+async function writeOutput(output, outputPath) {
+    if (typeof outputPath === "string") {
+        await writeFile(outputPath, output, "utf8");
+        return;
+    }
+    process.stdout.write(output);
+}
+function printHelp() {
+    process.stdout.write(`trace-to-skill
+
+Turn failed AI coding-agent runs into reusable rules, skills, and eval evidence.
+
+Usage:
+  trace-to-skill analyze <trace-file-or-dir> [--format markdown|json|sarif] [--output report.md]
+  trace-to-skill suggest <trace-file-or-dir> [--target agents-md|skill] [--output AGENTS.generated.md]
+  trace-to-skill lint-agents [repo-dir] [--format markdown|json] [--output report.md]
+  trace-to-skill eval <trace-file-or-dir> [--threshold 75] [--format text|json]
+  trace-to-skill benchmark [--format markdown|json] [--output docs/BENCHMARK.md]
+  trace-to-skill scorecard [repo-dir] [--threshold 85] [--format markdown|json] [--output docs/SCORECARD.md]
+  trace-to-skill scorecard-comment [repo-dir] [--threshold 85] [--dry-run] [--token $GITHUB_TOKEN]
+  trace-to-skill guard-github-event [event.json] [--threshold 80] [--format markdown|json] [--output report.md]
+  trace-to-skill comment <trace-file-or-dir> [--dry-run] [--token $GITHUB_TOKEN]
+  trace-to-skill compare --before <old-run> --after <new-run> [--format markdown|json]
+  trace-to-skill doctor [repo-dir] [--threshold 85] [--format markdown|json|comment] [--output report.md]
+  trace-to-skill doctor-comment [repo-dir] [--threshold 85] [--dry-run] [--token $GITHUB_TOKEN]
+  trace-to-skill init [--traces runs] [--threshold 80] [--doctor-threshold 85] [--comment] [--sarif] [--dry-run]
+
+Examples:
+  trace-to-skill analyze ./runs
+  trace-to-skill suggest ./runs --target skill --output skills/verification-before-completion/SKILL.md
+  trace-to-skill lint-agents .
+  trace-to-skill eval ./runs --threshold 80
+  trace-to-skill benchmark
+  trace-to-skill scorecard .
+  trace-to-skill scorecard-comment . --threshold 85
+  trace-to-skill guard-github-event "$GITHUB_EVENT_PATH"
+  trace-to-skill comment ./runs
+  trace-to-skill compare --before ./runs/before --after ./runs/after
+  trace-to-skill doctor . --threshold 85
+  trace-to-skill doctor-comment . --threshold 85
+  trace-to-skill init --comment --sarif
+`);
+}
+main().catch((error) => {
+    const message = error instanceof Error ? error.message : String(error);
+    process.stderr.write(`trace-to-skill: ${message}\n`);
+    process.exitCode = 1;
+});
+//# sourceMappingURL=cli.js.map