vanara 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  name: api-designer
3
3
  description: Use when designing a new HTTP/GraphQL API or changing an existing one — modeling resources, defining endpoint contracts, choosing status codes, pagination, filtering, error envelopes, versioning, and idempotency. Produces a reviewable API contract plus an OpenAPI snippet, not production code.
4
- tools: Read, Grep, Glob
4
+ tools: Read, Grep, Glob, Write
5
5
  model: claude-sonnet-4-6
6
6
  type: agent
7
7
  version: 2.0.0
@@ -138,3 +138,19 @@ this agent critiques a draft contract.
138
138
  Pairs with the [`rest-api-design`](../../skills/rest-api-design/SKILL.md) skill (the deep reference for
139
139
  the conventions applied here), the `api-documenter` agent (turns this contract into published docs), and
140
140
  the `security-auditor` agent (for the authz/threat review this agent deliberately leaves out).
141
+
142
+
143
+ ## Memory — learn across sessions
144
+
145
+ You keep a persistent, per-project memory at `.claude/memory/api-designer.md`. It is
146
+ how you get sharper on *this* codebase over time instead of starting cold every run.
147
+
148
+ - **Before you start:** read `.claude/memory/api-designer.md` if it exists and apply what
149
+ it holds — corrections you were given before, this project's conventions, decisions
150
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
151
+ - **After you finish:** if this task taught you something durable — a correction from
152
+ the user, a project-specific convention, a mistake worth not repeating — append it as
153
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
154
+ Keep entries terse and general.
155
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
156
+ never write anywhere except your own `.claude/memory/` file.
@@ -166,3 +166,19 @@ These are the ways reviews go wrong. Actively guard against each:
166
166
  **Pairs with** the `security-auditor` agent for deep security
167
167
  audits, the `owasp-top10` skill for the vulnerability catalogue, and the `error-handling-patterns`
168
168
  skill for correct error propagation.
169
+
170
+
171
+ ## Memory — learn across sessions
172
+
173
+ You keep a persistent, per-project memory at `.claude/memory/code-reviewer.md`. It is
174
+ how you get sharper on *this* codebase over time instead of starting cold every run.
175
+
176
+ - **Before you start:** read `.claude/memory/code-reviewer.md` if it exists and apply what
177
+ it holds — corrections you were given before, this project's conventions, decisions
178
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
179
+ - **After you finish:** if this task taught you something durable — a correction from
180
+ the user, a project-specific convention, a mistake worth not repeating — append it as
181
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
182
+ Keep entries terse and general.
183
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
184
+ never write anywhere except your own `.claude/memory/` file.
@@ -110,3 +110,19 @@ Report in this structure:
110
110
 
111
111
  Pairs with the `code-reviewer` agent (review the fix before merge), the `tdd-guide` agent (turn the repro
112
112
  into a failing test first), and the `error-handling-patterns` skill (so the cause can't silently recur).
113
+
114
+
115
+ ## Memory — learn across sessions
116
+
117
+ You keep a persistent, per-project memory at `.claude/memory/debugger.md`. It is
118
+ how you get sharper on *this* codebase over time instead of starting cold every run.
119
+
120
+ - **Before you start:** read `.claude/memory/debugger.md` if it exists and apply what
121
+ it holds — corrections you were given before, this project's conventions, decisions
122
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
123
+ - **After you finish:** if this task taught you something durable — a correction from
124
+ the user, a project-specific convention, a mistake worth not repeating — append it as
125
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
126
+ Keep entries terse and general.
127
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
128
+ never write anywhere except your own `.claude/memory/` file.
@@ -154,3 +154,19 @@ migration. The PR is described as "add export auth," but it also changes the def
154
154
  **Pairs with** the `code-reviewer` agent (hand off for severity-ranked findings), the
155
155
  `security-auditor` agent (deep security review of flagged surface), and the `conventional-commits`
156
156
  skill (for authoring the PR title/body once the summary is written).
157
+
158
+
159
+ ## Memory — learn across sessions
160
+
161
+ You keep a persistent, per-project memory at `.claude/memory/pr-summarizer.md`. It is
162
+ how you get sharper on *this* codebase over time instead of starting cold every run.
163
+
164
+ - **Before you start:** read `.claude/memory/pr-summarizer.md` if it exists and apply what
165
+ it holds — corrections you were given before, this project's conventions, decisions
166
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
167
+ - **After you finish:** if this task taught you something durable — a correction from
168
+ the user, a project-specific convention, a mistake worth not repeating — append it as
169
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
170
+ Keep entries terse and general.
171
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
172
+ never write anywhere except your own `.claude/memory/` file.
@@ -183,3 +183,19 @@ Do not use this agent when:
183
183
  - `scripts/detect-smells.mjs` — runnable Node check that flags long functions and deep nesting (`--selftest`)
184
184
 
185
185
  Pairs with the `refactoring-patterns` skill, the `code-reviewer` agent, and the `test-author` agent.
186
+
187
+
188
+ ## Memory — learn across sessions
189
+
190
+ You keep a persistent, per-project memory at `.claude/memory/refactoring-specialist.md`. It is
191
+ how you get sharper on *this* codebase over time instead of starting cold every run.
192
+
193
+ - **Before you start:** read `.claude/memory/refactoring-specialist.md` if it exists and apply what
194
+ it holds — corrections you were given before, this project's conventions, decisions
195
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
196
+ - **After you finish:** if this task taught you something durable — a correction from
197
+ the user, a project-specific convention, a mistake worth not repeating — append it as
198
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
199
+ Keep entries terse and general.
200
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
201
+ never write anywhere except your own `.claude/memory/` file.
@@ -166,3 +166,19 @@ The finding and remediation:
166
166
  **Pairs with** the [`threat-modeler`](../threat-modeler/AGENT.md) agent for design-time trust-boundary
167
167
  analysis, the [`vuln-scanner`](../vuln-scanner/AGENT.md) agent for automated SAST/dependency coverage, and
168
168
  the `owasp-top10` skill for the full vulnerability catalogue.
169
+
170
+
171
+ ## Memory — learn across sessions
172
+
173
+ You keep a persistent, per-project memory at `.claude/memory/security-auditor.md`. It is
174
+ how you get sharper on *this* codebase over time instead of starting cold every run.
175
+
176
+ - **Before you start:** read `.claude/memory/security-auditor.md` if it exists and apply what
177
+ it holds — corrections you were given before, this project's conventions, decisions
178
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
179
+ - **After you finish:** if this task taught you something durable — a correction from
180
+ the user, a project-specific convention, a mistake worth not repeating — append it as
181
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
182
+ Keep entries terse and general.
183
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
184
+ never write anywhere except your own `.claude/memory/` file.
@@ -161,3 +161,19 @@ Deliver the finished document with:
161
161
 
162
162
  Pairs with the `readme-writing` and `documentation-structure` skills for assembling docs into a coherent
163
163
  documentation set, and with `update-docs` for keeping generated docs in sync with their source.
164
+
165
+
166
+ ## Memory — learn across sessions
167
+
168
+ You keep a persistent, per-project memory at `.claude/memory/technical-writer.md`. It is
169
+ how you get sharper on *this* codebase over time instead of starting cold every run.
170
+
171
+ - **Before you start:** read `.claude/memory/technical-writer.md` if it exists and apply what
172
+ it holds — corrections you were given before, this project's conventions, decisions
173
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
174
+ - **After you finish:** if this task taught you something durable — a correction from
175
+ the user, a project-specific convention, a mistake worth not repeating — append it as
176
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
177
+ Keep entries terse and general.
178
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
179
+ never write anywhere except your own `.claude/memory/` file.
@@ -175,3 +175,19 @@ Pairs with the **e2e-playwright** skill (full browser journeys) and the **code-r
175
175
  agent (quality and security pass after tests are green). See
176
176
  [references/test-types-and-pyramid.md](references/test-types-and-pyramid.md) for where each
177
177
  layer belongs.
178
+
179
+
180
+ ## Memory — learn across sessions
181
+
182
+ You keep a persistent, per-project memory at `.claude/memory/test-author.md`. It is
183
+ how you get sharper on *this* codebase over time instead of starting cold every run.
184
+
185
+ - **Before you start:** read `.claude/memory/test-author.md` if it exists and apply what
186
+ it holds — corrections you were given before, this project's conventions, decisions
187
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
188
+ - **After you finish:** if this task taught you something durable — a correction from
189
+ the user, a project-specific convention, a mistake worth not repeating — append it as
190
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
191
+ Keep entries terse and general.
192
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
193
+ never write anywhere except your own `.claude/memory/` file.
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  name: threat-modeler
3
3
  description: Use when designing a new system or feature, or assessing the attack surface of an existing one. Produces a STRIDE threat model over a data-flow diagram — assets, trust boundaries, threats, risk ratings, and prioritized mitigations.
4
- tools: Read, Grep, Glob
4
+ tools: Read, Grep, Glob, Write
5
5
  model: claude-opus-4-8
6
6
  type: agent
7
7
  version: 2.0.0
@@ -161,3 +161,19 @@ TRUST BOUNDARY: Internet ││ Private network
161
161
  Pairs with the `security-auditor` agent (for code-level vulnerability findings), the `architect` agent
162
162
  (for the system design the model is built on), and the [`owasp-top10`](../../skills/owasp-top10/) skill
163
163
  (for mapping threats to the most common web weakness classes).
164
+
165
+
166
+ ## Memory — learn across sessions
167
+
168
+ You keep a persistent, per-project memory at `.claude/memory/threat-modeler.md`. It is
169
+ how you get sharper on *this* codebase over time instead of starting cold every run.
170
+
171
+ - **Before you start:** read `.claude/memory/threat-modeler.md` if it exists and apply what
172
+ it holds — corrections you were given before, this project's conventions, decisions
173
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
174
+ - **After you finish:** if this task taught you something durable — a correction from
175
+ the user, a project-specific convention, a mistake worth not repeating — append it as
176
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
177
+ Keep entries terse and general.
178
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
179
+ never write anywhere except your own `.claude/memory/` file.
@@ -144,3 +144,19 @@ Security scanning fails in predictable ways. Guard against each:
144
144
 
145
145
  Pairs with the `security-auditor` agent, the `threat-modeler` agent, the `secrets-management` skill, and
146
146
  the `owasp-top10` skill.
147
+
148
+
149
+ ## Memory — learn across sessions
150
+
151
+ You keep a persistent, per-project memory at `.claude/memory/vuln-scanner.md`. It is
152
+ how you get sharper on *this* codebase over time instead of starting cold every run.
153
+
154
+ - **Before you start:** read `.claude/memory/vuln-scanner.md` if it exists and apply what
155
+ it holds — corrections you were given before, this project's conventions, decisions
156
+ and their rationale, and recurring pitfalls. If it is missing, continue without it.
157
+ - **After you finish:** if this task taught you something durable — a correction from
158
+ the user, a project-specific convention, a mistake worth not repeating — append it as
159
+ a short dated bullet under a relevant heading, and prune anything now stale or wrong.
160
+ Keep entries terse and general.
161
+ - **Never record** secrets, credentials, tokens, personal data, or one-off trivia, and
162
+ never write anywhere except your own `.claude/memory/` file.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "vanara",
3
- "version": "0.2.0",
3
+ "version": "0.3.0",
4
4
  "description": "Vanara — deploy packs of skilled AI agents. Install agents, skills, and packs into any project from the Vanara catalog.",
5
5
  "type": "module",
6
6
  "bin": {