triage-ai 1.0.2

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 wyman101
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,209 @@
+# triage-ai
+
+**Run Claude, Gemini and Codex in parallel to review your code. Get one merged report with consensus scoring.**
+
+![Node.js 18+](https://img.shields.io/badge/node-18+-green.svg) ![npm](https://img.shields.io/badge/npm-triage--ai-red.svg) ![MIT License](https://img.shields.io/badge/license-MIT-green.svg) ![Claude | Gemini | Codex](https://img.shields.io/badge/models-Claude%20%7C%20Gemini%20%7C%20Codex-purple.svg) ![MCP Compatible](https://img.shields.io/badge/MCP-compatible-orange.svg)
+
+---
+
+```bash
+npm install -g triage-ai && triage-ai "find security vulnerabilities"
+```
+
+Three AI models analyze your code independently, then triage merges their findings into a single prioritized report. When 2+ models flag the same issue, it's marked as **consensus** — high confidence, low false positive rate. You only need one CLI installed (`claude`, `gemini`, or `codex`), but three catch what one misses.
+
+## Features
+
+- **3 models, 1 report** — Claude, Gemini and Codex run concurrently. Consensus findings (2+ models agree) rise to the top.
+- **Conflict detection** — When models disagree on severity, triage flags it so you can decide.
+- **Smart context** — Auto-discovers files from your prompt, git diff, keywords and entrypoints. No file lists.
+- **Secret redaction** — API keys, passwords, private keys stripped before any model sees your code.
+- **Auth detection** — If a CLI isn't logged in or has hit rate limits, you get a clear error with instructions.
+- **Auto-patching** — Models propose unified diffs, applied safely on a new git branch. Preview with `--dry-run`.
+- **AI memory** — `--remember` saves findings to CLAUDE.md, GEMINI.md and AGENTS.md so every AI tool in your project knows what triage found. `--forget` clears them.
+- **MCP server** — Works with Claude Desktop, Claude Code, Cursor, Windsurf, Cline, VS Code, Zed.
+- **Severity classification** — S0 (blocker) through S3 (style). Markdown or JSON output.
+
+## Install
+
+```bash
+npm install -g triage-ai
+triage-ai setup              # detects installed CLIs, shows paths
+```
+
+You need [Node.js](https://nodejs.org/) 18+ and at least one AI CLI:
+
+| Model | Install |
+|-------|---------|
+| **Claude** | `npm install -g @anthropic-ai/claude-code` |
+| **Gemini** | `npm install -g @google/gemini-cli` |
+| **Codex** | `npm install -g @openai/codex` |
+
+## Quick Start
+
+```bash
+cd your-project
+
+# Full 3-model review
+triage-ai "find bugs and security issues"
+
+# Single model (faster)
+triage-ai --models claude "quick security scan"
+
+# Review only uncommitted changes
+triage-ai --diff-only "check my changes for bugs"
+
+# Save report to file
+triage-ai --out report.md "full security audit"
+
+# Auto-fix with patches
+triage-ai --dry-run "fix the XSS vulnerability"     # preview
+triage-ai --apply "fix the SQL injection"             # apply on new branch
+
+# Save findings to AI memory files
+triage-ai --remember "pre-launch security audit"
+```
+
+**Validate AI-generated code** — the highest-value use case. After an AI proposes changes, get a second and third opinion before implementing:
+
+```bash
+triage-ai --diff-only "an AI generated these changes — review for correctness and security"
+triage-ai --remember "review plan.md for risks before I implement"
+```
+
+## Example Output
+
+```
+┌ triage-ai v1.0.2
+│
+├ Intake
+│  ✓ Scanned repository          42 files, 3 modified
+│  ✓ Redacted secrets             7 patterns masked
+│  ✓ Built context package        186 KB across 28 files
+│
+├ Triage Team
+│  ✓ Claude                       found at /usr/local/bin/claude
+│  ✓ Gemini                       found at /usr/local/bin/gemini
+│  ✗ Codex                        not installed (skipping)
+│
+├ Assessment
+│  ✓ Claude                       16 findings (47.3s)
+│  ✓ Gemini                       14 findings (38.2s)
+│
+├ Diagnosis
+│  ✓ Clustered findings           22 unique issues from 2 models
+│  ✓ Consensus detected           4 issues confirmed by 2+ models
+│
+├ Report
+│  ✓ Generated report             3 blockers, 5 high, 8 medium, 6 low
+│
+└ Done in 52.3s — 22 findings, 4 consensus
+```
+
+The merged report:
+
+```markdown
+## Blockers (S0)
+
+### 1. SQL Injection in User Lookup [CONSENSUS]
+- **Location:** `auth/login.py:47-52`
+- **Models:** claude, gemini
+
+## Consensus Findings
+- [S0] **SQL Injection in User Lookup** — *claude, gemini*
+- [S1] **Weak Password Hashing** — *gemini, codex*
+- [S1] **Missing Rate Limiting** — *claude, gemini*
+```
+
+## CLI Reference
+
+```
+triage-ai [PROMPT] [OPTIONS]
+triage-ai setup                  # detect CLIs, show paths
+```
+
+| Option | Default | Description |
+|--------|---------|-------------|
+| `--models` | `claude,gemini,codex` | Which models to use (comma-separated) |
+| `--diff-only` | off | Only analyze git diff |
+| `--max-files` | 30 | Max files to include in context |
+| `--format` | `md` | Output format: `md` or `json` |
+| `--out` | stdout | Write report to file |
+| `--apply` | off | Apply patches (creates git branch first) |
+| `--dry-run` | off | Preview patches without applying |
+| `--timeout` | 300 | Per-model timeout in seconds |
+| `--remember` | off | Save findings to CLAUDE.md, GEMINI.md, AGENTS.md |
+| `--forget` | — | Remove triage findings from memory files |
+| `--verbose` | off | Detailed progress output |
+| `--mcp` | — | Start as MCP server |
+
+## Severity Levels
+
+| Level | Name | Examples |
+|-------|------|---------|
+| **S0** | Blocker | SQL injection, RCE, auth bypass, data loss |
+| **S1** | High | Logic bugs, race conditions, XSS |
+| **S2** | Medium | N+1 queries, missing validation |
+| **S3** | Low | Naming conventions, dead code |
+
+## MCP Server
+
+Add to your editor's MCP configuration:
+
+```json
+{
+  "mcpServers": {
+    "triage": {
+      "command": "triage-ai",
+      "args": ["--mcp"]
+    }
+  }
+}
+```
+
+Works with Claude Desktop, Claude Code, Cursor, Windsurf, Cline, VS Code (Copilot), Zed, and Continue. See [`examples/mcp-config.json`](examples/mcp-config.json).
+
+### Claude Code Slash Command
+
+```bash
+cp examples/claude-code-skill.md ~/.claude/commands/triage.md
+```
+
+Then use `/triage "find security issues"` in Claude Code.
+
+## Safety
+
+- **Secrets redacted** before any model sees code (API keys, passwords, private keys, AWS credentials)
+- **Files excluded** automatically (`.env`, binaries, `node_modules`, `.git`)
+- **Patch safety** — new git branch created first, dry-run tested, max 5 files per session
+- **Auth errors** surfaced clearly — never silently fails
+
+## AI Memory (`--remember`)
+
+Writes findings to CLAUDE.md, GEMINI.md and AGENTS.md using `<!-- triage:start -->` / `<!-- triage:end -->` markers. Re-running replaces the section (doesn't accumulate). `--forget` removes it cleanly. Your existing file content is preserved.
+
+## Configuration
+
+```bash
+export TRIAGE_CLAUDE_CMD="claude"              # override CLI command
+export TRIAGE_GEMINI_CMD="gemini"
+export TRIAGE_CODEX_CMD="codex"
+export TRIAGE_GEMINI_MODEL="gemini-2.5-pro"    # override model
+```
+
+## Development
+
+```bash
+git clone https://github.com/wyman101/triage-ai.git
+cd triage-ai
+npm install
+npm run build
+```
+
+## Contributing
+
+Open an issue or PR at [github.com/wyman101/triage-ai](https://github.com/wyman101/triage-ai).
+
+## License
+
+MIT

package/dist/cli.d.ts

@@ -0,0 +1,9 @@
+#!/usr/bin/env node
+/**
+ * triage-ai CLI entry point.
+ *
+ * Parses arguments, runs the full triage pipeline and renders progress
+ * via TriageProgress.  Supports both interactive (TTY) and CI/piped modes.
+ */
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AACA;;;;;GAKG"}