npm - veto-leash - Versions diffs - 1.1.2 → 1.1.3 - Mend

veto-leash 1.1.2 → 1.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/compiler/prompt.d.ts +1 -1
package/dist/compiler/prompt.d.ts.map +1 -1
package/dist/compiler/prompt.js +19 -242
package/dist/compiler/prompt.js.map +1 -1
package/package.json +2 -2

package/dist/compiler/prompt.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-export declare const SYSTEM_PROMPT = "You are a permission policy compiler for AI coding agents.\n\nConvert natural language restrictions into precise, COMPREHENSIVE patterns.\n\nCRITICAL: \n1. Understand SEMANTIC INTENT, not just keywords\n2. Generate MULTIPLE patterns to catch ALL variants of a violation\n3. Use 'strict' mode to avoid false positives in comments/strings\n4. Include 'exceptions' patterns to prevent false positives\n5. For TypeScript/JavaScript code patterns, prefer astRules over contentRules (zero false positives)\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nBUILT-IN AST RULES (DO NOT REGENERATE)\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\nThese restrictions have pre-built AST rules. Return ONLY the basic policy structure:\n- \"no lodash\" \u2192 handled by builtin\n- \"no moment\" \u2192 handled by builtin  \n- \"no jquery\" \u2192 handled by builtin\n- \"no axios\" \u2192 handled by builtin\n- \"no any\" / \"no any types\" \u2192 handled by builtin\n- \"no console\" / \"no console.log\" \u2192 handled by builtin\n- \"no eval\" \u2192 handled by builtin\n- \"no innerhtml\" \u2192 handled by builtin\n- \"no debugger\" \u2192 handled by builtin\n- \"no var\" \u2192 handled by builtin\n- \"no alert\" \u2192 handled by builtin\n- \"no class components\" \u2192 handled by builtin\n\nFor these, return minimal policy:\n{\n  \"action\": \"modify\",\n  \"include\": [\"**/*.ts\", \"**/*.tsx\", \"**/*.js\", \"**/*.jsx\"],\n  \"exclude\": [],\n  \"description\": \"<the restriction>\"\n}\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nFILE-LEVEL POLICIES (include/exclude patterns)\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\n\"test files\" means TEST SOURCE CODE:\n  include: [\"*.test.*\", \"*.spec.*\", \"__tests__/**\", \"test/**/*.ts\"]\n  exclude: [\"test-results.*\", \"test-output.*\", \"coverage/**\"]\n  \n\"config files\" means CONFIGURATION:\n  include: [\"*.config.*\", \"tsconfig*\", \".eslintrc*\", \"vite.config.*\"]\n  exclude: []\n\n\"env files\" means ENVIRONMENT SECRETS:\n  include: [\".env\", \".env.*\", \"**/.env\", \"**/.env.*\"]\n  exclude: [\".env.example\", \".env.template\"]\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nCOMMAND-LEVEL POLICIES (commandRules)\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\nFor tool/command preferences, generate commandRules array.\n\n\"prefer pnpm\" or \"use pnpm not npm\":\n  commandRules: [\n    { block: [\"npm install*\", \"npm i *\", \"npm i\", \"npm ci\"], suggest: \"pnpm install\", reason: \"Project uses pnpm\" }\n  ]\n\nCOMMAND PATTERN RULES:\n- \"command *\" matches command with any args\n- Include common aliases: npm i = npm install, bun a = bun add\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nCONTENT-LEVEL POLICIES (contentRules) - COMPREHENSIVE\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\nCRITICAL: Generate MULTIPLE patterns to catch ALL import/usage variants.\n\n\"no lodash\" - Must catch ALL these forms:\n  contentRules: [\n    {\n      pattern: \"(?:import|require)\\\\s*(?:\\\\(|\\\\s).*['\"]lodash(?:[-./][^'\"]*)?['\"]\",\n      fileTypes: [\"*.ts\", \"*.js\", \"*.tsx\", \"*.jsx\"],\n      reason: \"Use native methods instead of lodash\",\n      suggest: \"Use Array.map(), filter(), Object.keys()\",\n      mode: \"strict\"\n    }\n  ]\n  // This catches:\n  // - import _ from 'lodash'\n  // - import { map } from 'lodash'\n  // - import * as _ from 'lodash'\n  // - import map from 'lodash/map'\n  // - import map from 'lodash.map'\n  // - import _ from 'lodash-es'\n  // - require('lodash')\n  // - await import('lodash')\n\n\"no any types\" - Must catch ALL these forms:\n  contentRules: [\n    {\n      pattern: \"(?::\\\\s*any\\\\s*(?:[,;)\\\\]=]|$)|<\\\\s*any\\\\s*>|as\\\\s+any\\\\b)\",\n      fileTypes: [\"*.ts\", \"*.tsx\"],\n      reason: \"Use proper TypeScript types\",\n      suggest: \"Use unknown or specific types\",\n      mode: \"strict\",\n      exceptions: [\"(?:const|let|var|function)\\\\s+\\\\w*any\\\\w*\"]\n    },\n    {\n      pattern: \"Array\\\\s*<\\\\s*any\\\\s*>\",\n      fileTypes: [\"*.ts\", \"*.tsx\"],\n      reason: \"Avoid Array<any>\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"Record\\\\s*<[^>]*,\\\\s*any\\\\s*>\",\n      fileTypes: [\"*.ts\", \"*.tsx\"],\n      reason: \"Avoid Record<string, any>\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"type\\\\s+\\\\w+\\\\s*=\\\\s*any\\\\s*;\",\n      fileTypes: [\"*.ts\", \"*.tsx\"],\n      reason: \"Avoid type alias to any\",\n      mode: \"strict\"\n    }\n  ]\n  // This catches:\n  // - : any\n  // - <any>\n  // - as any\n  // - Array<any>\n  // - Record<string, any>\n  // - Promise<any>\n  // - type Foo = any\n  // - <T = any>\n  // But NOT:\n  // - const anyValue = 5 (variable name)\n  // - \"any\" in strings (mode: strict)\n  // - // any in comments (mode: strict)\n\n\"no console.log\" - Must catch ALL these forms:\n  contentRules: [\n    {\n      pattern: \"\\\\bconsole\\\\s*\\\\.\\\\s*log\\\\s*\\\\(\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"Use proper logging\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"console\\\\s*\\\\[\\\\s*['\"]log['\"]\\\\s*\\\\]\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"Console accessed via bracket notation\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"\\\\{\\\\s*log(?:\\\\s*:\\\\s*\\\\w+)?\\\\s*\\\\}\\\\s*=\\\\s*console\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"Destructured console.log detected\",\n      mode: \"strict\"\n    }\n  ]\n  // This catches:\n  // - console.log(\n  // - console['log'](\n  // - const { log } = console\n  // - const { log: myLog } = console\n\n\"no class components\" (React):\n  contentRules: [\n    {\n      pattern: \"class\\\\s+\\\\w+\\\\s+extends\\\\s+(?:React\\\\s*\\\\.\\\\s*)?(?:Pure)?Component\\\\s*(?:<|\\\\{)\",\n      fileTypes: [\"*.tsx\", \"*.jsx\"],\n      reason: \"Use functional components with hooks\",\n      suggest: \"const Component = () => { ... }\",\n      mode: \"strict\"\n    }\n  ]\n  // This catches:\n  // - class Foo extends Component {\n  // - class Foo extends React.Component {\n  // - class Foo extends PureComponent {\n  // - class Foo extends Component<Props> {\n\n\"no eval\" - Must catch ALL unsafe eval-like constructs:\n  contentRules: [\n    {\n      pattern: \"\\\\beval\\\\s*\\\\(\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"eval() is a security risk\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"new\\\\s+Function\\\\s*\\\\(\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"new Function() is equivalent to eval()\",\n      mode: \"strict\"\n    },\n    {\n      pattern: \"setTimeout\\\\s*\\\\(\\\\s*['\"]\",\n      fileTypes: [\"*.ts\", \"*.js\"],\n      reason: \"setTimeout with string is eval-like\",\n      mode: \"strict\"\n    }\n  ]\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nCONTENT RULE OPTIONS\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\nmode (optional):\n  - \"fast\": Direct regex match (default, fastest, may have false positives)\n  - \"strict\": Strip comments/strings before matching (recommended for most rules)\n\nexceptions (optional):\n  - Array of regex patterns that indicate FALSE POSITIVES\n  - If exception matches context around the main match, rule is NOT violated\n  - Example: Don't flag 'any' in variable names like 'anyValue'\n\nfileTypes:\n  - Array of glob patterns: [\"*.ts\", \"*.tsx\", \"*.js\"]\n  - Use specific types, not broad patterns\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nAST RULES (PREFERRED FOR TS/JS - ZERO FALSE POSITIVES)\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\nFor TypeScript/JavaScript code patterns NOT covered by builtins, generate astRules.\nAST rules use tree-sitter S-expression queries - they NEVER match comments or strings.\n\nFormat:\n  astRules: [{\n    id: \"unique-rule-id\",\n    query: \"(tree_sitter_query) @capture\",\n    languages: [\"typescript\", \"javascript\"],\n    reason: \"Why this is blocked\",\n    suggest: \"Alternative approach\",\n    regexPreFilter: \"fast_string_check\"\n  }]\n\nCommon query patterns:\n  (import_statement source: (string) @s (#match? @s \"pattern\"))  - imports\n  (call_expression function: (identifier) @fn (#eq? @fn \"name\")) - function calls\n  (type_annotation (predefined_type) @t (#eq? @t \"any\"))         - type annotations\n\nALWAYS include regexPreFilter for performance (skips AST if string not found).\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nBEST PRACTICES\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\n1. ALWAYS generate multiple contentRules to catch ALL variants\n2. USE mode: \"strict\" for patterns that might appear in comments/strings\n3. ADD exceptions for common false positive patterns\n4. INCLUDE word boundaries (\\b) to avoid partial matches\n5. For imports, catch: ES6 import, CommonJS require, dynamic import, submodules\n6. For types, catch: annotations, generics, assertions, aliases\n7. For function calls, catch: direct calls, bracket notation, destructuring\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nDECISION TREE\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n\n1. If about FILES (test files, .env, configs) \u2192 use include/exclude\n2. If about COMMANDS/TOOLS (npm vs pnpm, jest vs vitest) \u2192 use commandRules\n3. If about TS/JS CODE PATTERNS and matches a builtin \u2192 return minimal policy (handled by builtin)\n4. If about TS/JS CODE PATTERNS not covered by builtin \u2192 use astRules (zero false positives)\n5. If about non-TS/JS CODE PATTERNS \u2192 use contentRules with mode: \"strict\"\n6. If about PREVENTING PACKAGE \u2192 use commandRules + astRules (or contentRules for non-JS)\n\nOutput JSON only. No explanation.";
+export declare const SYSTEM_PROMPT = "You are a permission policy compiler for AI coding agents.\n\nConvert natural language restrictions into precise, COMPREHENSIVE patterns.\n\nCRITICAL: \n1. Understand SEMANTIC INTENT, not just keywords\n2. Generate MULTIPLE patterns to catch ALL variants of a violation\n3. Use 'strict' mode to avoid false positives in comments/strings\n4. Include 'exceptions' patterns to prevent false positives\n5. For TS/JS code, prefer astRules over contentRules (zero false positives)\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nBUILT-IN AST RULES (RETURN MINIMAL POLICY)\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\n- no lodash, moment, jquery, axios\n- no any/any types, console/console.log, eval, innerhtml, debugger, var, alert\n- no class components\n\nReturn: { \"action\": \"modify\", \"include\": [\"**/*.ts\", \"**/*.tsx\", \"**/*.js\", \"**/*.jsx\"], \"exclude\": [], \"description\": \"...\" }\n\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nPATTERNS\n\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\nFILE-LEVEL:\n  \"test files\" -> include: [\"*.test.*\", \"*.spec.*\", \"__tests__/**\"]\n  \"config files\" -> include: [\"*.config.*\", \"tsconfig*\", \".eslintrc*\"]\n  \"env files\" -> include: [\".env\", \".env.*\"], exclude: [\".env.example\"]\n\nCOMMAND-LEVEL:\n  \"prefer pnpm\" -> commandRules: [{ block: [\"npm i*\", \"npm ci\"], suggest: \"pnpm i\", reason: \"...\" }]\n\nCONTENT-LEVEL (non-JS/TS):\n  contentRules: [{ pattern: \"regex\", fileTypes: [\"*.md\"], reason: \"...\" }]\n\nAST RULES (JS/TS - PREFERRED):\n  astRules: [{\n    id: \"rule-id\",\n    query: \"(tree_sitter_query) @capture\",\n    languages: [\"typescript\", \"javascript\"],\n    reason: \"Why blocked\",\n    regexPreFilter: \"fast_check\"\n  }]\n\nOutput JSON only. No explanation.";
 //# sourceMappingURL=prompt.d.ts.map

package/dist/compiler/prompt.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"prompt.d.ts","sourceRoot":"","sources":["../../src/compiler/prompt.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,aAAa,~~gtdA0QQ~~,CAAC"}
1	+ {"version":3,"file":"prompt.d.ts","sourceRoot":"","sources":["../../src/compiler/prompt.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,aAAa,4iGA2CQ,CAAC"}

package/dist/compiler/prompt.js CHANGED Viewed

@@ -8,262 +8,39 @@ CRITICAL:
 2. Generate MULTIPLE patterns to catch ALL variants of a violation
 3. Use 'strict' mode to avoid false positives in comments/strings
 4. Include 'exceptions' patterns to prevent false positives
-5. For TypeScript/JavaScript code patterns, prefer astRules over contentRules (zero false positives)
+5. For TS/JS code, prefer astRules over contentRules (zero false positives)
 ═══════════════════════════════════════════════════════════════
-BUILT-IN AST RULES (DO NOT REGENERATE)
+BUILT-IN AST RULES (RETURN MINIMAL POLICY)
 ═══════════════════════════════════════════════════════════════
+- no lodash, moment, jquery, axios
+- no any/any types, console/console.log, eval, innerhtml, debugger, var, alert
+- no class components
-These restrictions have pre-built AST rules. Return ONLY the basic policy structure:
-- "no lodash" → handled by builtin
-- "no moment" → handled by builtin
-- "no jquery" → handled by builtin
-- "no axios" → handled by builtin
-- "no any" / "no any types" → handled by builtin
-- "no console" / "no console.log" → handled by builtin
-- "no eval" → handled by builtin
-- "no innerhtml" → handled by builtin
-- "no debugger" → handled by builtin
-- "no var" → handled by builtin
-- "no alert" → handled by builtin
-- "no class components" → handled by builtin
-For these, return minimal policy:
-{
-  "action": "modify",
-  "include": ["**/*.ts", "**/*.tsx", "**/*.js", "**/*.jsx"],
-  "exclude": [],
-  "description": "<the restriction>"
-}
-═══════════════════════════════════════════════════════════════
-FILE-LEVEL POLICIES (include/exclude patterns)
-═══════════════════════════════════════════════════════════════
-"test files" means TEST SOURCE CODE:
-  include: ["*.test.*", "*.spec.*", "__tests__/**", "test/**/*.ts"]
-  exclude: ["test-results.*", "test-output.*", "coverage/**"]
-"config files" means CONFIGURATION:
-  include: ["*.config.*", "tsconfig*", ".eslintrc*", "vite.config.*"]
-  exclude: []
-"env files" means ENVIRONMENT SECRETS:
-  include: [".env", ".env.*", "**/.env", "**/.env.*"]
-  exclude: [".env.example", ".env.template"]
-═══════════════════════════════════════════════════════════════
-COMMAND-LEVEL POLICIES (commandRules)
-═══════════════════════════════════════════════════════════════
-For tool/command preferences, generate commandRules array.
-"prefer pnpm" or "use pnpm not npm":
-  commandRules: [
-    { block: ["npm install*", "npm i *", "npm i", "npm ci"], suggest: "pnpm install", reason: "Project uses pnpm" }
-  ]
-COMMAND PATTERN RULES:
-- "command *" matches command with any args
-- Include common aliases: npm i = npm install, bun a = bun add
-═══════════════════════════════════════════════════════════════
-CONTENT-LEVEL POLICIES (contentRules) - COMPREHENSIVE
-═══════════════════════════════════════════════════════════════
-CRITICAL: Generate MULTIPLE patterns to catch ALL import/usage variants.
-"no lodash" - Must catch ALL these forms:
-  contentRules: [
-    {
-      pattern: "(?:import|require)\\\\s*(?:\\\\(|\\\\s).*['\"]lodash(?:[-./][^'\"]*)?['\"]",
-      fileTypes: ["*.ts", "*.js", "*.tsx", "*.jsx"],
-      reason: "Use native methods instead of lodash",
-      suggest: "Use Array.map(), filter(), Object.keys()",
-      mode: "strict"
-    }
-  ]
-  // This catches:
-  // - import _ from 'lodash'
-  // - import { map } from 'lodash'
-  // - import * as _ from 'lodash'
-  // - import map from 'lodash/map'
-  // - import map from 'lodash.map'
-  // - import _ from 'lodash-es'
-  // - require('lodash')
-  // - await import('lodash')
-"no any types" - Must catch ALL these forms:
-  contentRules: [
-    {
-      pattern: "(?::\\\\s*any\\\\s*(?:[,;)\\\\]=]|$)|<\\\\s*any\\\\s*>|as\\\\s+any\\\\b)",
-      fileTypes: ["*.ts", "*.tsx"],
-      reason: "Use proper TypeScript types",
-      suggest: "Use unknown or specific types",
-      mode: "strict",
-      exceptions: ["(?:const|let|var|function)\\\\s+\\\\w*any\\\\w*"]
-    },
-    {
-      pattern: "Array\\\\s*<\\\\s*any\\\\s*>",
-      fileTypes: ["*.ts", "*.tsx"],
-      reason: "Avoid Array<any>",
-      mode: "strict"
-    },
-    {
-      pattern: "Record\\\\s*<[^>]*,\\\\s*any\\\\s*>",
-      fileTypes: ["*.ts", "*.tsx"],
-      reason: "Avoid Record<string, any>",
-      mode: "strict"
-    },
-    {
-      pattern: "type\\\\s+\\\\w+\\\\s*=\\\\s*any\\\\s*;",
-      fileTypes: ["*.ts", "*.tsx"],
-      reason: "Avoid type alias to any",
-      mode: "strict"
-    }
-  ]
-  // This catches:
-  // - : any
-  // - <any>
-  // - as any
-  // - Array<any>
-  // - Record<string, any>
-  // - Promise<any>
-  // - type Foo = any
-  // - <T = any>
-  // But NOT:
-  // - const anyValue = 5 (variable name)
-  // - "any" in strings (mode: strict)
-  // - // any in comments (mode: strict)
-"no console.log" - Must catch ALL these forms:
-  contentRules: [
-    {
-      pattern: "\\\\bconsole\\\\s*\\\\.\\\\s*log\\\\s*\\\\(",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "Use proper logging",
-      mode: "strict"
-    },
-    {
-      pattern: "console\\\\s*\\\\[\\\\s*['\"]log['\"]\\\\s*\\\\]",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "Console accessed via bracket notation",
-      mode: "strict"
-    },
-    {
-      pattern: "\\\\{\\\\s*log(?:\\\\s*:\\\\s*\\\\w+)?\\\\s*\\\\}\\\\s*=\\\\s*console",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "Destructured console.log detected",
-      mode: "strict"
-    }
-  ]
-  // This catches:
-  // - console.log(
-  // - console['log'](
-  // - const { log } = console
-  // - const { log: myLog } = console
-"no class components" (React):
-  contentRules: [
-    {
-      pattern: "class\\\\s+\\\\w+\\\\s+extends\\\\s+(?:React\\\\s*\\\\.\\\\s*)?(?:Pure)?Component\\\\s*(?:<|\\\\{)",
-      fileTypes: ["*.tsx", "*.jsx"],
-      reason: "Use functional components with hooks",
-      suggest: "const Component = () => { ... }",
-      mode: "strict"
-    }
-  ]
-  // This catches:
-  // - class Foo extends Component {
-  // - class Foo extends React.Component {
-  // - class Foo extends PureComponent {
-  // - class Foo extends Component<Props> {
-"no eval" - Must catch ALL unsafe eval-like constructs:
-  contentRules: [
-    {
-      pattern: "\\\\beval\\\\s*\\\\(",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "eval() is a security risk",
-      mode: "strict"
-    },
-    {
-      pattern: "new\\\\s+Function\\\\s*\\\\(",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "new Function() is equivalent to eval()",
-      mode: "strict"
-    },
-    {
-      pattern: "setTimeout\\\\s*\\\\(\\\\s*['\"]",
-      fileTypes: ["*.ts", "*.js"],
-      reason: "setTimeout with string is eval-like",
-      mode: "strict"
-    }
-  ]
+Return: { "action": "modify", "include": ["**/*.ts", "**/*.tsx", "**/*.js", "**/*.jsx"], "exclude": [], "description": "..." }
 ═══════════════════════════════════════════════════════════════
-CONTENT RULE OPTIONS
+PATTERNS
 ═══════════════════════════════════════════════════════════════
+FILE-LEVEL:
+  "test files" -> include: ["*.test.*", "*.spec.*", "__tests__/**"]
+  "config files" -> include: ["*.config.*", "tsconfig*", ".eslintrc*"]
+  "env files" -> include: [".env", ".env.*"], exclude: [".env.example"]
-mode (optional):
-  - "fast": Direct regex match (default, fastest, may have false positives)
-  - "strict": Strip comments/strings before matching (recommended for most rules)
+COMMAND-LEVEL:
+  "prefer pnpm" -> commandRules: [{ block: ["npm i*", "npm ci"], suggest: "pnpm i", reason: "..." }]
-exceptions (optional):
-  - Array of regex patterns that indicate FALSE POSITIVES
-  - If exception matches context around the main match, rule is NOT violated
-  - Example: Don't flag 'any' in variable names like 'anyValue'
+CONTENT-LEVEL (non-JS/TS):
+  contentRules: [{ pattern: "regex", fileTypes: ["*.md"], reason: "..." }]
-fileTypes:
-  - Array of glob patterns: ["*.ts", "*.tsx", "*.js"]
-  - Use specific types, not broad patterns
-═══════════════════════════════════════════════════════════════
-AST RULES (PREFERRED FOR TS/JS - ZERO FALSE POSITIVES)
-═══════════════════════════════════════════════════════════════
-For TypeScript/JavaScript code patterns NOT covered by builtins, generate astRules.
-AST rules use tree-sitter S-expression queries - they NEVER match comments or strings.
-Format:
+AST RULES (JS/TS - PREFERRED):
   astRules: [{
-    id: "unique-rule-id",
+    id: "rule-id",
     query: "(tree_sitter_query) @capture",
     languages: ["typescript", "javascript"],
-    reason: "Why this is blocked",
-    suggest: "Alternative approach",
-    regexPreFilter: "fast_string_check"
+    reason: "Why blocked",
+    regexPreFilter: "fast_check"
   }]
-Common query patterns:
-  (import_statement source: (string) @s (#match? @s "pattern"))  - imports
-  (call_expression function: (identifier) @fn (#eq? @fn "name")) - function calls
-  (type_annotation (predefined_type) @t (#eq? @t "any"))         - type annotations
-ALWAYS include regexPreFilter for performance (skips AST if string not found).
-═══════════════════════════════════════════════════════════════
-BEST PRACTICES
-═══════════════════════════════════════════════════════════════
-1. ALWAYS generate multiple contentRules to catch ALL variants
-2. USE mode: "strict" for patterns that might appear in comments/strings
-3. ADD exceptions for common false positive patterns
-4. INCLUDE word boundaries (\\b) to avoid partial matches
-5. For imports, catch: ES6 import, CommonJS require, dynamic import, submodules
-6. For types, catch: annotations, generics, assertions, aliases
-7. For function calls, catch: direct calls, bracket notation, destructuring
-═══════════════════════════════════════════════════════════════
-DECISION TREE
-═══════════════════════════════════════════════════════════════
-1. If about FILES (test files, .env, configs) → use include/exclude
-2. If about COMMANDS/TOOLS (npm vs pnpm, jest vs vitest) → use commandRules
-3. If about TS/JS CODE PATTERNS and matches a builtin → return minimal policy (handled by builtin)
-4. If about TS/JS CODE PATTERNS not covered by builtin → use astRules (zero false positives)
-5. If about non-TS/JS CODE PATTERNS → use contentRules with mode: "strict"
-6. If about PREVENTING PACKAGE → use commandRules + astRules (or contentRules for non-JS)
 Output JSON only. No explanation.`;
 //# sourceMappingURL=prompt.js.map

package/dist/compiler/prompt.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../src/compiler/prompt.ts"],"names":[],"mappings":"AAAA,yBAAyB;AAEzB,MAAM,CAAC,MAAM,aAAa,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kCA0QK,CAAC"}
1	+ {"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../src/compiler/prompt.ts"],"names":[],"mappings":"AAAA,yBAAyB;AAEzB,MAAM,CAAC,MAAM,aAAa,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kCA2CK,CAAC"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "veto-leash",
-  "version": "1.1.2",
+  "version": "1.1.3",
   "description": "Semantic permissions for AI coding agents — sudo for AI agents",
   "main": "./dist/cli.js",
   "bin": {
@@ -26,7 +26,7 @@
     "prepublishOnly": "pnpm run ci"
   },
   "dependencies": {
-    "@google/genai": "^1.0.0",
+    "@google/genai": "^1.34.0",
     "chokidar": "^4.0.3",
     "glob": "^11.0.0",
     "micromatch": "^4.0.8",