npm - vibecheck-ai - Versions diffs - 2.0.1 → 5.0.0 - Mend

vibecheck-ai 2.0.1 → 5.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (456) hide show

package/bin/.generated +25 -0
package/bin/_deprecations.js +463 -0
package/bin/_router.js +46 -0
package/bin/cli-hygiene.js +241 -0
package/bin/dev/run-v2-torture.js +30 -0
package/bin/registry.js +656 -0
package/bin/runners/CLI_REFACTOR_SUMMARY.md +229 -0
package/bin/runners/ENHANCEMENT_GUIDE.md +121 -0
package/bin/runners/REPORT_AUDIT.md +64 -0
package/bin/runners/cli-utils.js +1070 -0
package/bin/runners/context/ai-task-decomposer.js +337 -0
package/bin/runners/context/analyzer.js +513 -0
package/bin/runners/context/api-contracts.js +427 -0
package/bin/runners/context/context-diff.js +342 -0
package/bin/runners/context/context-pruner.js +291 -0
package/bin/runners/context/dependency-graph.js +414 -0
package/bin/runners/context/generators/claude.js +107 -0
package/bin/runners/context/generators/codex.js +108 -0
package/bin/runners/context/generators/copilot.js +119 -0
package/bin/runners/context/generators/cursor-enhanced.js +2525 -0
package/bin/runners/context/generators/cursor.js +514 -0
package/bin/runners/context/generators/mcp.js +169 -0
package/bin/runners/context/generators/windsurf.js +180 -0
package/bin/runners/context/git-context.js +304 -0
package/bin/runners/context/index.js +1110 -0
package/bin/runners/context/insights.js +173 -0
package/bin/runners/context/mcp-server/generate-rules.js +337 -0
package/bin/runners/context/mcp-server/index.js +1176 -0
package/bin/runners/context/mcp-server/package.json +24 -0
package/bin/runners/context/memory.js +200 -0
package/bin/runners/context/monorepo.js +215 -0
package/bin/runners/context/multi-repo-federation.js +404 -0
package/bin/runners/context/patterns.js +253 -0
package/bin/runners/context/proof-context.js +1264 -0
package/bin/runners/context/security-scanner.js +541 -0
package/bin/runners/context/semantic-search.js +350 -0
package/bin/runners/context/shared.js +264 -0
package/bin/runners/context/team-conventions.js +336 -0
package/bin/runners/lib/__tests__/entitlements-v2.test.js +295 -0
package/bin/runners/lib/agent-firewall/ai/false-positive-analyzer.js +474 -0
package/bin/runners/lib/agent-firewall/change-packet/builder.js +488 -0
package/bin/runners/lib/agent-firewall/change-packet/schema.json +228 -0
package/bin/runners/lib/agent-firewall/change-packet/store.js +200 -0
package/bin/runners/lib/agent-firewall/claims/claim-types.js +21 -0
package/bin/runners/lib/agent-firewall/claims/extractor.js +303 -0
package/bin/runners/lib/agent-firewall/claims/patterns.js +24 -0
package/bin/runners/lib/agent-firewall/critic/index.js +151 -0
package/bin/runners/lib/agent-firewall/critic/judge.js +432 -0
package/bin/runners/lib/agent-firewall/critic/prompts.js +305 -0
package/bin/runners/lib/agent-firewall/enforcement/gateway.js +1059 -0
package/bin/runners/lib/agent-firewall/enforcement/index.js +98 -0
package/bin/runners/lib/agent-firewall/enforcement/mode.js +318 -0
package/bin/runners/lib/agent-firewall/enforcement/orchestrator.js +484 -0
package/bin/runners/lib/agent-firewall/enforcement/proof-artifact.js +418 -0
package/bin/runners/lib/agent-firewall/enforcement/schemas/change-event.schema.json +173 -0
package/bin/runners/lib/agent-firewall/enforcement/schemas/intent.schema.json +181 -0
package/bin/runners/lib/agent-firewall/enforcement/schemas/verdict.schema.json +222 -0
package/bin/runners/lib/agent-firewall/enforcement/verdict-v2.js +333 -0
package/bin/runners/lib/agent-firewall/evidence/auth-evidence.js +88 -0
package/bin/runners/lib/agent-firewall/evidence/contract-evidence.js +75 -0
package/bin/runners/lib/agent-firewall/evidence/env-evidence.js +127 -0
package/bin/runners/lib/agent-firewall/evidence/resolver.js +102 -0
package/bin/runners/lib/agent-firewall/evidence/route-evidence.js +213 -0
package/bin/runners/lib/agent-firewall/evidence/side-effect-evidence.js +145 -0
package/bin/runners/lib/agent-firewall/fs-hook/daemon.js +19 -0
package/bin/runners/lib/agent-firewall/fs-hook/installer.js +87 -0
package/bin/runners/lib/agent-firewall/fs-hook/watcher.js +184 -0
package/bin/runners/lib/agent-firewall/git-hook/pre-commit.js +163 -0
package/bin/runners/lib/agent-firewall/ide-extension/cursor.js +107 -0
package/bin/runners/lib/agent-firewall/ide-extension/vscode.js +68 -0
package/bin/runners/lib/agent-firewall/ide-extension/windsurf.js +66 -0
package/bin/runners/lib/agent-firewall/index.js +200 -0
package/bin/runners/lib/agent-firewall/integration/index.js +20 -0
package/bin/runners/lib/agent-firewall/integration/ship-gate.js +437 -0
package/bin/runners/lib/agent-firewall/intent/alignment-engine.js +634 -0
package/bin/runners/lib/agent-firewall/intent/auto-detect.js +426 -0
package/bin/runners/lib/agent-firewall/intent/index.js +102 -0
package/bin/runners/lib/agent-firewall/intent/schema.js +352 -0
package/bin/runners/lib/agent-firewall/intent/store.js +283 -0
package/bin/runners/lib/agent-firewall/interception/fs-interceptor.js +502 -0
package/bin/runners/lib/agent-firewall/interception/index.js +23 -0
package/bin/runners/lib/agent-firewall/interceptor/base.js +308 -0
package/bin/runners/lib/agent-firewall/interceptor/cursor.js +35 -0
package/bin/runners/lib/agent-firewall/interceptor/vscode.js +35 -0
package/bin/runners/lib/agent-firewall/interceptor/windsurf.js +34 -0
package/bin/runners/lib/agent-firewall/lawbook/distributor.js +465 -0
package/bin/runners/lib/agent-firewall/lawbook/evaluator.js +604 -0
package/bin/runners/lib/agent-firewall/lawbook/index.js +304 -0
package/bin/runners/lib/agent-firewall/lawbook/registry.js +514 -0
package/bin/runners/lib/agent-firewall/lawbook/schema.js +420 -0
package/bin/runners/lib/agent-firewall/logger.js +141 -0
package/bin/runners/lib/agent-firewall/policy/default-policy.json +90 -0
package/bin/runners/lib/agent-firewall/policy/engine.js +103 -0
package/bin/runners/lib/agent-firewall/policy/loader.js +451 -0
package/bin/runners/lib/agent-firewall/policy/rules/auth-drift.js +50 -0
package/bin/runners/lib/agent-firewall/policy/rules/contract-drift.js +50 -0
package/bin/runners/lib/agent-firewall/policy/rules/fake-success.js +79 -0
package/bin/runners/lib/agent-firewall/policy/rules/ghost-env.js +227 -0
package/bin/runners/lib/agent-firewall/policy/rules/ghost-route.js +191 -0
package/bin/runners/lib/agent-firewall/policy/rules/scope.js +93 -0
package/bin/runners/lib/agent-firewall/policy/rules/unsafe-side-effect.js +57 -0
package/bin/runners/lib/agent-firewall/policy/schema.json +183 -0
package/bin/runners/lib/agent-firewall/policy/verdict.js +54 -0
package/bin/runners/lib/agent-firewall/proposal/extractor.js +394 -0
package/bin/runners/lib/agent-firewall/proposal/index.js +212 -0
package/bin/runners/lib/agent-firewall/proposal/schema.js +251 -0
package/bin/runners/lib/agent-firewall/proposal/validator.js +386 -0
package/bin/runners/lib/agent-firewall/reality/index.js +332 -0
package/bin/runners/lib/agent-firewall/reality/state.js +625 -0
package/bin/runners/lib/agent-firewall/reality/watcher.js +322 -0
package/bin/runners/lib/agent-firewall/risk/index.js +173 -0
package/bin/runners/lib/agent-firewall/risk/scorer.js +328 -0
package/bin/runners/lib/agent-firewall/risk/thresholds.js +322 -0
package/bin/runners/lib/agent-firewall/risk/vectors.js +421 -0
package/bin/runners/lib/agent-firewall/session/collector.js +451 -0
package/bin/runners/lib/agent-firewall/session/index.js +26 -0
package/bin/runners/lib/agent-firewall/simulator/diff-simulator.js +472 -0
package/bin/runners/lib/agent-firewall/simulator/import-resolver.js +346 -0
package/bin/runners/lib/agent-firewall/simulator/index.js +181 -0
package/bin/runners/lib/agent-firewall/simulator/route-validator.js +380 -0
package/bin/runners/lib/agent-firewall/time-machine/incident-correlator.js +661 -0
package/bin/runners/lib/agent-firewall/time-machine/index.js +267 -0
package/bin/runners/lib/agent-firewall/time-machine/replay-engine.js +436 -0
package/bin/runners/lib/agent-firewall/time-machine/state-reconstructor.js +490 -0
package/bin/runners/lib/agent-firewall/time-machine/timeline-builder.js +530 -0
package/bin/runners/lib/agent-firewall/truthpack/index.js +67 -0
package/bin/runners/lib/agent-firewall/truthpack/loader.js +137 -0
package/bin/runners/lib/agent-firewall/unblock/planner.js +337 -0
package/bin/runners/lib/agent-firewall/utils/ignore-checker.js +118 -0
package/bin/runners/lib/ai-bridge.js +416 -0
package/bin/runners/lib/analysis-core.js +309 -0
package/bin/runners/lib/analyzers.js +2500 -0
package/bin/runners/lib/api-client.js +269 -0
package/bin/runners/lib/approve-output.js +235 -0
package/bin/runners/lib/artifact-envelope.js +540 -0
package/bin/runners/lib/assets/vibecheck-logo.png +0 -0
package/bin/runners/lib/audit-bridge.js +391 -0
package/bin/runners/lib/auth-shared.js +977 -0
package/bin/runners/lib/auth-truth.js +193 -0
package/bin/runners/lib/auth.js +215 -0
package/bin/runners/lib/authority-badge.js +425 -0
package/bin/runners/lib/backup.js +62 -0
package/bin/runners/lib/billing.js +107 -0
package/bin/runners/lib/checkpoint.js +941 -0
package/bin/runners/lib/claims.js +118 -0
package/bin/runners/lib/classify-output.js +204 -0
package/bin/runners/lib/cleanup/engine.js +571 -0
package/bin/runners/lib/cleanup/index.js +53 -0
package/bin/runners/lib/cleanup/output.js +375 -0
package/bin/runners/lib/cleanup/rules.js +1060 -0
package/bin/runners/lib/cli-output.js +400 -0
package/bin/runners/lib/cli-ui.js +540 -0
package/bin/runners/lib/compliance-bridge-new.js +0 -0
package/bin/runners/lib/compliance-bridge.js +165 -0
package/bin/runners/lib/contracts/auth-contract.js +202 -0
package/bin/runners/lib/contracts/env-contract.js +181 -0
package/bin/runners/lib/contracts/external-contract.js +206 -0
package/bin/runners/lib/contracts/guard.js +168 -0
package/bin/runners/lib/contracts/index.js +89 -0
package/bin/runners/lib/contracts/plan-validator.js +311 -0
package/bin/runners/lib/contracts/route-contract.js +199 -0
package/bin/runners/lib/contracts.js +804 -0
package/bin/runners/lib/default-config.js +127 -0
package/bin/runners/lib/detect.js +89 -0
package/bin/runners/lib/detectors-v2.js +622 -0
package/bin/runners/lib/doctor/autofix.js +254 -0
package/bin/runners/lib/doctor/diagnosis-receipt.js +454 -0
package/bin/runners/lib/doctor/failure-signatures.js +526 -0
package/bin/runners/lib/doctor/fix-script.js +336 -0
package/bin/runners/lib/doctor/index.js +37 -0
package/bin/runners/lib/doctor/modules/build-tools.js +453 -0
package/bin/runners/lib/doctor/modules/dependencies.js +325 -0
package/bin/runners/lib/doctor/modules/index.js +105 -0
package/bin/runners/lib/doctor/modules/network.js +250 -0
package/bin/runners/lib/doctor/modules/os-quirks.js +706 -0
package/bin/runners/lib/doctor/modules/project.js +312 -0
package/bin/runners/lib/doctor/modules/repo-integrity.js +485 -0
package/bin/runners/lib/doctor/modules/runtime.js +224 -0
package/bin/runners/lib/doctor/modules/security.js +350 -0
package/bin/runners/lib/doctor/modules/system.js +213 -0
package/bin/runners/lib/doctor/modules/vibecheck.js +394 -0
package/bin/runners/lib/doctor/reporter.js +262 -0
package/bin/runners/lib/doctor/safe-repair.js +384 -0
package/bin/runners/lib/doctor/service.js +262 -0
package/bin/runners/lib/doctor/types.js +113 -0
package/bin/runners/lib/doctor/ui.js +263 -0
package/bin/runners/lib/doctor-enhanced.js +233 -0
package/bin/runners/lib/doctor-output.js +226 -0
package/bin/runners/lib/doctor-v2.js +608 -0
package/bin/runners/lib/drift.js +425 -0
package/bin/runners/lib/enforcement.js +72 -0
package/bin/runners/lib/engine/ast-cache.js +210 -0
package/bin/runners/lib/engine/auth-extractor.js +211 -0
package/bin/runners/lib/engine/billing-extractor.js +112 -0
package/bin/runners/lib/engine/enforcement-extractor.js +100 -0
package/bin/runners/lib/engine/env-extractor.js +207 -0
package/bin/runners/lib/engine/express-extractor.js +208 -0
package/bin/runners/lib/engine/extractors.js +849 -0
package/bin/runners/lib/engine/index.js +207 -0
package/bin/runners/lib/engine/repo-index.js +514 -0
package/bin/runners/lib/engine/types.js +124 -0
package/bin/runners/lib/engines/accessibility-engine.js +190 -0
package/bin/runners/lib/engines/api-consistency-engine.js +162 -0
package/bin/runners/lib/engines/ast-cache.js +99 -0
package/bin/runners/lib/engines/attack-detector.js +1192 -0
package/bin/runners/lib/engines/code-quality-engine.js +255 -0
package/bin/runners/lib/engines/console-logs-engine.js +115 -0
package/bin/runners/lib/engines/cross-file-analysis-engine.js +268 -0
package/bin/runners/lib/engines/dead-code-engine.js +198 -0
package/bin/runners/lib/engines/deprecated-api-engine.js +226 -0
package/bin/runners/lib/engines/empty-catch-engine.js +150 -0
package/bin/runners/lib/engines/file-filter.js +131 -0
package/bin/runners/lib/engines/hardcoded-secrets-engine.js +251 -0
package/bin/runners/lib/engines/mock-data-engine.js +272 -0
package/bin/runners/lib/engines/parallel-processor.js +71 -0
package/bin/runners/lib/engines/performance-issues-engine.js +265 -0
package/bin/runners/lib/engines/security-vulnerabilities-engine.js +243 -0
package/bin/runners/lib/engines/todo-fixme-engine.js +115 -0
package/bin/runners/lib/engines/type-aware-engine.js +152 -0
package/bin/runners/lib/engines/unsafe-regex-engine.js +225 -0
package/bin/runners/lib/engines/vibecheck-engines/README.md +53 -0
package/bin/runners/lib/engines/vibecheck-engines/index.js +15 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/ast-cache.js +164 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/code-quality-engine.js +291 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/console-logs-engine.js +83 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/dead-code-engine.js +198 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/deprecated-api-engine.js +275 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/empty-catch-engine.js +167 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/file-filter.js +217 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/hardcoded-secrets-engine.js +139 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/mock-data-engine.js +140 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/parallel-processor.js +164 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/performance-issues-engine.js +234 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/type-aware-engine.js +217 -0
package/bin/runners/lib/engines/vibecheck-engines/lib/unsafe-regex-engine.js +78 -0
package/bin/runners/lib/engines/vibecheck-engines/package.json +13 -0
package/bin/runners/lib/enterprise-detect.js +603 -0
package/bin/runners/lib/enterprise-init.js +942 -0
package/bin/runners/lib/entitlements-v2.js +265 -0
package/bin/runners/lib/entitlements.generated.js +0 -0
package/bin/runners/lib/entitlements.js +340 -0
package/bin/runners/lib/env-resolver.js +417 -0
package/bin/runners/lib/env-template.js +66 -0
package/bin/runners/lib/env.js +189 -0
package/bin/runners/lib/error-handler.js +368 -0
package/bin/runners/lib/error-messages.js +289 -0
package/bin/runners/lib/evidence-pack.js +684 -0
package/bin/runners/lib/exit-codes.js +275 -0
package/bin/runners/lib/extractors/client-calls.js +990 -0
package/bin/runners/lib/extractors/fastify-route-dump.js +573 -0
package/bin/runners/lib/extractors/fastify-routes.js +426 -0
package/bin/runners/lib/extractors/index.js +363 -0
package/bin/runners/lib/extractors/next-routes.js +524 -0
package/bin/runners/lib/extractors/proof-graph.js +431 -0
package/bin/runners/lib/extractors/route-matcher.js +451 -0
package/bin/runners/lib/extractors/truthpack-v2.js +377 -0
package/bin/runners/lib/extractors/ui-bindings.js +547 -0
package/bin/runners/lib/finding-id.js +69 -0
package/bin/runners/lib/finding-sorter.js +89 -0
package/bin/runners/lib/findings-schema.js +281 -0
package/bin/runners/lib/fingerprint.js +377 -0
package/bin/runners/lib/firewall-prompt.js +50 -0
package/bin/runners/lib/fix-output.js +228 -0
package/bin/runners/lib/global-flags.js +250 -0
package/bin/runners/lib/graph/graph-builder.js +265 -0
package/bin/runners/lib/graph/html-renderer.js +413 -0
package/bin/runners/lib/graph/index.js +32 -0
package/bin/runners/lib/graph/runtime-collector.js +215 -0
package/bin/runners/lib/graph/static-extractor.js +518 -0
package/bin/runners/lib/help-formatter.js +413 -0
package/bin/runners/lib/html-proof-report.js +913 -0
package/bin/runners/lib/html-report.js +650 -0
package/bin/runners/lib/init-wizard.js +601 -0
package/bin/runners/lib/interactive-menu.js +1496 -0
package/bin/runners/lib/json-output.js +76 -0
package/bin/runners/lib/llm.js +75 -0
package/bin/runners/lib/logger.js +38 -0
package/bin/runners/lib/meter.js +61 -0
package/bin/runners/lib/missions/briefing.js +427 -0
package/bin/runners/lib/missions/checkpoint.js +753 -0
package/bin/runners/lib/missions/evidence.js +126 -0
package/bin/runners/lib/missions/hardening.js +851 -0
package/bin/runners/lib/missions/plan.js +648 -0
package/bin/runners/lib/missions/safety-gates.js +645 -0
package/bin/runners/lib/missions/schema.js +478 -0
package/bin/runners/lib/missions/templates.js +317 -0
package/bin/runners/lib/next-action.js +560 -0
package/bin/runners/lib/packs/bundle.js +675 -0
package/bin/runners/lib/packs/evidence-pack.js +671 -0
package/bin/runners/lib/packs/pack-factory.js +837 -0
package/bin/runners/lib/packs/permissions-pack.js +686 -0
package/bin/runners/lib/packs/proof-graph-pack.js +779 -0
package/bin/runners/lib/patch.js +40 -0
package/bin/runners/lib/permissions/auth-model.js +213 -0
package/bin/runners/lib/permissions/idor-prover.js +205 -0
package/bin/runners/lib/permissions/index.js +45 -0
package/bin/runners/lib/permissions/matrix-builder.js +198 -0
package/bin/runners/lib/pkgjson.js +28 -0
package/bin/runners/lib/policy.js +295 -0
package/bin/runners/lib/polish/accessibility.js +62 -0
package/bin/runners/lib/polish/analyzer.js +93 -0
package/bin/runners/lib/polish/backend.js +87 -0
package/bin/runners/lib/polish/configuration.js +83 -0
package/bin/runners/lib/polish/documentation.js +83 -0
package/bin/runners/lib/polish/frontend.js +817 -0
package/bin/runners/lib/polish/index.js +27 -0
package/bin/runners/lib/polish/infrastructure.js +80 -0
package/bin/runners/lib/polish/internationalization.js +85 -0
package/bin/runners/lib/polish/libraries.js +180 -0
package/bin/runners/lib/polish/observability.js +75 -0
package/bin/runners/lib/polish/performance.js +64 -0
package/bin/runners/lib/polish/privacy.js +110 -0
package/bin/runners/lib/polish/resilience.js +92 -0
package/bin/runners/lib/polish/security.js +78 -0
package/bin/runners/lib/polish/seo.js +71 -0
package/bin/runners/lib/polish/styles.js +62 -0
package/bin/runners/lib/polish/utils.js +104 -0
package/bin/runners/lib/preflight.js +142 -0
package/bin/runners/lib/prerequisites.js +149 -0
package/bin/runners/lib/prove-output.js +220 -0
package/bin/runners/lib/reality/correlation-detectors.js +359 -0
package/bin/runners/lib/reality/index.js +318 -0
package/bin/runners/lib/reality/request-hashing.js +416 -0
package/bin/runners/lib/reality/request-mapper.js +453 -0
package/bin/runners/lib/reality/safety-rails.js +463 -0
package/bin/runners/lib/reality/semantic-snapshot.js +408 -0
package/bin/runners/lib/reality/toast-detector.js +393 -0
package/bin/runners/lib/reality-findings.js +84 -0
package/bin/runners/lib/reality-output.js +231 -0
package/bin/runners/lib/receipts.js +179 -0
package/bin/runners/lib/redact.js +29 -0
package/bin/runners/lib/replay/capsule-manager.js +154 -0
package/bin/runners/lib/replay/index.js +263 -0
package/bin/runners/lib/replay/player.js +348 -0
package/bin/runners/lib/replay/recorder.js +331 -0
package/bin/runners/lib/report-engine.js +626 -0
package/bin/runners/lib/report-html.js +1233 -0
package/bin/runners/lib/report-output.js +366 -0
package/bin/runners/lib/report-templates.js +967 -0
package/bin/runners/lib/report.js +135 -0
package/bin/runners/lib/route-detection.js +1209 -0
package/bin/runners/lib/route-truth.js +1322 -0
package/bin/runners/lib/safelist/index.js +96 -0
package/bin/runners/lib/safelist/integration.js +334 -0
package/bin/runners/lib/safelist/matcher.js +696 -0
package/bin/runners/lib/safelist/schema.js +948 -0
package/bin/runners/lib/safelist/store.js +438 -0
package/bin/runners/lib/sandbox/index.js +59 -0
package/bin/runners/lib/sandbox/proof-chain.js +399 -0
package/bin/runners/lib/sandbox/sandbox-runner.js +205 -0
package/bin/runners/lib/sandbox/worktree.js +174 -0
package/bin/runners/lib/scan-cache.js +330 -0
package/bin/runners/lib/scan-output-schema.js +344 -0
package/bin/runners/lib/scan-output.js +631 -0
package/bin/runners/lib/scan-runner.js +135 -0
package/bin/runners/lib/schema-validator.js +350 -0
package/bin/runners/lib/schemas/ajv-validator.js +464 -0
package/bin/runners/lib/schemas/contracts.schema.json +160 -0
package/bin/runners/lib/schemas/error-envelope.schema.json +105 -0
package/bin/runners/lib/schemas/finding-v3.schema.json +151 -0
package/bin/runners/lib/schemas/finding.schema.json +100 -0
package/bin/runners/lib/schemas/mission-pack.schema.json +206 -0
package/bin/runners/lib/schemas/proof-graph.schema.json +176 -0
package/bin/runners/lib/schemas/reality-report.schema.json +162 -0
package/bin/runners/lib/schemas/report-artifact.schema.json +120 -0
package/bin/runners/lib/schemas/run-request.schema.json +108 -0
package/bin/runners/lib/schemas/share-pack.schema.json +180 -0
package/bin/runners/lib/schemas/ship-manifest.schema.json +251 -0
package/bin/runners/lib/schemas/ship-report.schema.json +117 -0
package/bin/runners/lib/schemas/truthpack-v2.schema.json +303 -0
package/bin/runners/lib/schemas/validator.js +465 -0
package/bin/runners/lib/schemas/verdict.schema.json +140 -0
package/bin/runners/lib/score-history.js +282 -0
package/bin/runners/lib/security-bridge.js +249 -0
package/bin/runners/lib/server-usage.js +513 -0
package/bin/runners/lib/share-pack.js +239 -0
package/bin/runners/lib/ship-gate.js +832 -0
package/bin/runners/lib/ship-manifest.js +1153 -0
package/bin/runners/lib/ship-output-enterprise.js +239 -0
package/bin/runners/lib/ship-output.js +1128 -0
package/bin/runners/lib/snippets.js +67 -0
package/bin/runners/lib/status-output.js +340 -0
package/bin/runners/lib/terminal-ui.js +356 -0
package/bin/runners/lib/truth.js +1691 -0
package/bin/runners/lib/ui.js +562 -0
package/bin/runners/lib/unified-cli-output.js +947 -0
package/bin/runners/lib/unified-output.js +197 -0
package/bin/runners/lib/upsell.js +410 -0
package/bin/runners/lib/usage.js +153 -0
package/bin/runners/lib/validate-patch.js +156 -0
package/bin/runners/lib/verdict-engine.js +628 -0
package/bin/runners/lib/verification.js +345 -0
package/bin/runners/lib/why-tree.js +650 -0
package/bin/runners/reality/engine.js +917 -0
package/bin/runners/reality/flows.js +122 -0
package/bin/runners/reality/report.js +378 -0
package/bin/runners/reality/session.js +193 -0
package/bin/runners/runAIAgent.js +229 -0
package/bin/runners/runAgent.d.ts +5 -0
package/bin/runners/runAgent.js +161 -0
package/bin/runners/runAllowlist.js +418 -0
package/bin/runners/runApprove.js +320 -0
package/bin/runners/runAudit.js +692 -0
package/bin/runners/runAuth.js +731 -0
package/bin/runners/runCI.js +353 -0
package/bin/runners/runCheckpoint.js +530 -0
package/bin/runners/runClassify.js +928 -0
package/bin/runners/runCleanup.js +343 -0
package/bin/runners/runContext.d.ts +4 -0
package/bin/runners/runContext.js +175 -0
package/bin/runners/runDoctor.js +877 -0
package/bin/runners/runEvidencePack.js +362 -0
package/bin/runners/runFirewall.d.ts +5 -0
package/bin/runners/runFirewall.js +134 -0
package/bin/runners/runFirewallHook.d.ts +5 -0
package/bin/runners/runFirewallHook.js +56 -0
package/bin/runners/runFix.js +1355 -0
package/bin/runners/runForge.js +451 -0
package/bin/runners/runGuard.js +262 -0
package/bin/runners/runInit.js +1927 -0
package/bin/runners/runIntent.js +906 -0
package/bin/runners/runKickoff.js +878 -0
package/bin/runners/runLabs.js +424 -0
package/bin/runners/runLaunch.js +2000 -0
package/bin/runners/runLink.js +785 -0
package/bin/runners/runMcp.js +1875 -0
package/bin/runners/runPacks.js +2089 -0
package/bin/runners/runPolish.d.ts +4 -0
package/bin/runners/runPolish.js +390 -0
package/bin/runners/runPromptFirewall.js +211 -0
package/bin/runners/runProve.js +1411 -0
package/bin/runners/runQuickstart.js +531 -0
package/bin/runners/runReality.js +2260 -0
package/bin/runners/runReport.js +726 -0
package/bin/runners/runRuntime.js +110 -0
package/bin/runners/runSafelist.js +1190 -0
package/bin/runners/runScan.js +688 -0
package/bin/runners/runShield.js +1282 -0
package/bin/runners/runShip.js +1660 -0
package/bin/runners/runTruth.d.ts +5 -0
package/bin/runners/runTruth.js +101 -0
package/bin/runners/runValidate.js +179 -0
package/bin/runners/runWatch.js +478 -0
package/bin/runners/utils.js +360 -0
package/bin/scan.js +617 -0
package/bin/vibecheck.js +1617 -0
package/dist/guardrail/index.d.ts +2405 -0
package/dist/guardrail/index.js +9747 -0
package/dist/guardrail/index.js.map +1 -0
package/dist/scanner/index.d.ts +282 -0
package/dist/scanner/index.js +3395 -0
package/dist/scanner/index.js.map +1 -0
package/package.json +123 -104
package/README.md +0 -491
package/dist/index.js +0 -99711
package/dist/index.js.map +0 -1

package/bin/runners/context/generators/cursor.js ADDED Viewed

@@ -0,0 +1,514 @@
+/**
+ * Cursor Rules Generator
+ * Generates .cursorrules and .cursor/rules/*.mdc files
+ */
+/**
+ * Get directory purpose description
+ */
+function getDirectoryPurpose(dir) {
+  const purposes = {
+    "src": "Source code root",
+    "app": "Next.js App Router pages",
+    "pages": "Next.js Pages Router",
+    "components": "Reusable UI components",
+    "lib": "Utility functions and shared logic",
+    "utils": "Helper functions",
+    "hooks": "Custom React hooks",
+    "services": "API and external service integrations",
+    "api": "API route handlers",
+    "server": "Server-side code",
+    "prisma": "Database schema and migrations",
+    "public": "Static assets",
+    "styles": "CSS and styling",
+    "types": "TypeScript type definitions",
+    "config": "Configuration files",
+    "test": "Test files",
+    "__tests__": "Test files",
+  };
+  return purposes[dir] || "Project files";
+}
+/**
+ * Generate main .cursorrules file
+ */
+function generateCursorRules(analysis) {
+  const p = analysis.patterns || {};
+  const t = analysis.types || {};
+  const s = analysis.stats || {};
+  const env = analysis.envVars || {};
+  const m = analysis.monorepo || {};
+  return `# vibecheck AI - Project Context for Cursor
+> Auto-generated by \`vibecheck context\`. Regenerate when your codebase changes.
+## Project Overview
+- **Name**: ${analysis.name}
+- **Framework**: ${analysis.framework || "Unknown"}
+- **Language**: ${analysis.language || "JavaScript"}
+- **Architecture**: ${analysis.architecture}
+${s.totalFiles ? `- **Size**: ${s.totalFiles} files, ~${Math.round(s.totalLines / 1000)}k lines` : ""}
+${m.isMonorepo ? `- **Monorepo**: ${m.type} with ${m.workspaces?.length || 0} workspaces` : ""}
+## Tech Stack
+${analysis.hasNextjs ? "- Next.js (App Router)" : ""}
+${analysis.hasReact ? "- React" : ""}
+${analysis.hasTypescript ? "- TypeScript" : ""}
+${analysis.hasPrisma ? "- Prisma ORM" : ""}
+${analysis.hasTailwind ? "- Tailwind CSS" : ""}
+${p.stateManagement ? `- State: ${p.stateManagement}` : ""}
+${p.validation ? `- Validation: ${p.validation}` : ""}
+${p.authentication ? `- Auth: ${p.authentication}` : ""}
+${p.dataFetching?.length ? `- Data Fetching: ${p.dataFetching.join(", ")}` : ""}
+## Project Structure
+\`\`\`
+${analysis.directories.map(d => `${d}/`).join("\n")}
+\`\`\`
+${m.isMonorepo && m.workspaces?.length > 0 ? `## Workspaces
+${m.workspaces.slice(0, 10).map(w => `- \`${w.path}\` - ${w.name}`).join("\n")}
+` : ""}
+${p.hooks?.length > 0 ? `## Custom Hooks (Use These!)
+${p.hooks.slice(0, 15).map(h => `- \`${h}\``).join("\n")}
+${p.codeExamples?.hooks ? `### Example: ${p.codeExamples.hooks.name}
+\`\`\`typescript
+// From: ${p.codeExamples.hooks.file}
+${p.codeExamples.hooks.code}
+\`\`\`
+` : ""}
+` : ""}
+${analysis.apiRoutes.length > 0 ? `## API Routes
+${analysis.apiRoutes.slice(0, 20).map(r => `- \`${r}\``).join("\n")}
+${analysis.apiRoutes.length > 20 ? `\n... and ${analysis.apiRoutes.length - 20} more` : ""}
+` : ""}
+${analysis.components.length > 0 ? `## Components (Check Before Creating New)
+${analysis.components.slice(0, 30).map(c => `- \`${c}\``).join("\n")}
+${analysis.components.length > 30 ? `\n... and ${analysis.components.length - 30} more` : ""}
+` : ""}
+${analysis.models.length > 0 ? `## Data Models (Prisma)
+${analysis.models.map(m => `- \`${m}\``).join("\n")}
+` : ""}
+${t.interfaces?.length > 0 || t.types?.length > 0 ? `## Key Types & Interfaces
+${t.interfaces?.slice(0, 15).map(i => `- \`interface ${i}\``).join("\n") || ""}
+${t.types?.slice(0, 10).map(ty => `- \`type ${ty}\``).join("\n") || ""}
+${t.enums?.length > 0 ? `\nEnums: ${t.enums.slice(0, 5).map(e => `\`${e}\``).join(", ")}` : ""}
+` : ""}
+${env.variables?.length > 0 ? `## Environment Variables
+Required env vars:
+${env.variables.slice(0, 20).map(v => `- \`${v}\``).join("\n")}
+${env.files?.length ? `\nEnv files: ${env.files.join(", ")}` : ""}
+` : ""}
+${analysis.scripts?.length > 0 ? `## NPM Scripts
+${analysis.scripts.slice(0, 10).map(s => `- \`npm run ${s.name}\` - ${s.command}`).join("\n")}
+` : ""}
+## Coding Conventions
+### File Naming
+- Components: ${analysis.conventions.naming.components || "PascalCase"} (e.g., \`Button.tsx\`, \`UserCard.tsx\`)
+- Utilities: camelCase (e.g., \`formatDate.ts\`, \`apiClient.ts\`)
+- Types: PascalCase with \`.d.ts\` or \`.types.ts\` suffix
+### Import Order
+1. React/Next.js imports
+2. Third-party libraries
+3. Internal components (\`@/components/\`)
+4. Internal utilities (\`@/lib/\`, \`@/utils/\`)
+5. Types
+6. Styles
+### Code Style
+- Use ${analysis.hasTypescript ? "TypeScript with strict mode" : "JavaScript with JSDoc comments"}
+- Prefer functional components with hooks
+- Use path aliases (\`@/\`) for imports
+${analysis.hasTailwind ? "- Use Tailwind CSS for styling (no inline styles)" : ""}
+${analysis.hasPrisma ? "- Use Prisma client for database operations" : ""}
+${p.stateManagement ? `- Use ${p.stateManagement} for state management` : ""}
+${p.validation ? `- Use ${p.validation} for input validation` : ""}
+## Critical Rules
+1. **Never hardcode secrets** - Use environment variables
+2. **No mock data in production** - Check for \`demo\`, \`fake\`, \`mock\` patterns
+3. **Type everything** - No \`any\` types${analysis.hasTypescript ? "" : " (use JSDoc)"}
+4. **Follow existing patterns** - Match the codebase style
+5. **Use existing components** - Don't recreate what exists
+6. **API routes must validate input** - Never trust client data
+${p.hooks?.length ? `7. **Use existing hooks** - Check custom hooks list above` : ""}
+${p.antiPatterns?.length > 0 ? `## ⚠️ Avoid These Patterns
+${p.antiPatterns.map(ap => `- **${ap.message}** - ${ap.suggestion}`).join("\n")}
+` : ""}
+## When Creating New Files
+1. Check if similar file exists first
+2. Place in correct directory based on type
+3. Follow naming conventions
+4. Import from correct paths
+5. Add proper types/interfaces
+${p.hooks?.length ? `6. Check if there's an existing hook you can use` : ""}
+---
+*Context Enhanced by vibecheck AI*
+`;
+}
+/**
+ * Generate modular Cursor rules (.cursor/rules/*.mdc)
+ */
+function generateCursorModularRules(analysis) {
+  const rules = {};
+  const p = analysis.patterns || {};
+  const t = analysis.types || {};
+  const env = analysis.envVars || {};
+  const m = analysis.monorepo || {};
+  // Architecture rules
+  rules["architecture"] = `---
+description: Project architecture and structure guidelines
+globs: ["**/*.{ts,tsx,js,jsx}"]
+alwaysApply: true
+---
+# Architecture Guidelines
+## Project Type: ${analysis.architecture}
+${analysis.hasNextjs ? `### Next.js App Router Structure
+- Pages go in \`app/\` directory
+- API routes in \`app/api/\`
+- Layouts use \`layout.tsx\`
+- Loading states use \`loading.tsx\`
+- Error boundaries use \`error.tsx\`
+` : ""}
+${m.isMonorepo ? `### Monorepo Structure (${m.type})
+Workspaces:
+${m.workspaces?.slice(0, 8).map(w => `- \`${w.path}\` - ${w.name}`).join("\n") || "None detected"}
+${m.sharedPackages?.length > 0 ? `Shared Packages:
+${m.sharedPackages.slice(0, 5).map(p => `- ${p.name} (used in ${p.usedIn} workspaces)`).join("\n")}` : ""}
+` : ""}
+### Directory Purpose
+${analysis.directories.map(d => `- \`${d}/\` - ${getDirectoryPurpose(d)}`).join("\n")}
+### Import Aliases
+- Use \`@/\` for src directory imports
+- Never use relative imports deeper than \`../\`
+`;
+  // Data flow rules
+  if (analysis.hasPrisma || analysis.apiRoutes.length > 0 || p.dataFetching?.length) {
+    rules["data-flow"] = `---
+description: Data fetching and API interaction patterns
+globs: ["**/api/**", "**/lib/**", "**/services/**", "**/hooks/**"]
+alwaysApply: false
+---
+# Data Flow Guidelines
+${p.dataFetching?.length ? `## Data Fetching: ${p.dataFetching.join(", ")}
+${p.dataFetching.includes("TanStack Query") ? `### TanStack Query Pattern
+- Use \`useQuery\` for GET requests
+- Use \`useMutation\` for POST/PUT/DELETE
+- Define query keys consistently
+- Invalidate queries after mutations
+` : ""}
+${p.dataFetching.includes("SWR") ? `### SWR Pattern
+- Use \`useSWR\` for data fetching
+- Define fetcher functions
+- Handle loading and error states
+` : ""}
+${p.dataFetching.includes("tRPC") ? `### tRPC Pattern
+- Use tRPC procedures for type-safe API calls
+- Define routers in \`server/api/routers\`
+- Use \`api.*.useQuery()\` pattern
+` : ""}
+` : ""}
+${analysis.hasPrisma ? `## Database (Prisma)
+Models: ${analysis.models.join(", ")}
+Rules:
+- Use Prisma client from \`@/lib/prisma\` or \`@/server/db\`
+- Use transactions for multi-step operations
+- Handle errors with try/catch
+- Never expose raw database errors
+` : ""}
+${analysis.apiRoutes.length > 0 ? `## API Routes
+${analysis.apiRoutes.slice(0, 15).map(r => `- ${r}`).join("\n")}
+Rules:
+${p.validation ? `- Validate all input with ${p.validation}` : "- Validate all input"}
+- Return consistent response shapes
+- Use proper HTTP status codes
+` : ""}
+`;
+  }
+  // Component rules
+  if (analysis.components.length > 0) {
+    rules["components"] = `---
+description: Component creation and styling guidelines
+globs: ["**/components/**/*.{tsx,jsx}"]
+alwaysApply: false
+---
+# Component Guidelines
+## Existing Components (${analysis.components.length})
+${analysis.components.slice(0, 20).map(c => `- \`${c}\``).join("\n")}
+## Before Creating New Components
+1. **Check if it exists above**
+2. Place in \`components/\` or feature folder
+3. Use ${analysis.conventions.naming.components || "PascalCase"} naming
+4. Export as named export
+${analysis.hasTailwind ? "5. Use Tailwind CSS for styling" : ""}
+${p.styling?.length ? `6. Styling: ${p.styling.join(", ")}` : ""}
+## Component Template
+\`\`\`tsx
+interface Props {
+  // Define props with types
+}
+export function ComponentName({ ...props }: Props) {
+  return (
+    // JSX
+  );
+}
+\`\`\`
+`;
+  }
+  // Hooks rules
+  if (p.hooks?.length > 0) {
+    rules["hooks"] = `---
+description: Custom hooks patterns and usage
+globs: ["**/hooks/**/*.{ts,tsx}", "**/use*.{ts,tsx}"]
+alwaysApply: false
+---
+# Custom Hooks
+## Available Hooks (${p.hooks.length})
+${p.hooks.map(h => `- \`${h}\``).join("\n")}
+## Before Creating a New Hook
+1. **Check the list above first**
+2. Name it \`use[Feature]\`
+3. Place in \`hooks/\` or \`lib/hooks/\`
+4. Return a consistent shape
+${p.codeExamples?.hooks ? `## Example
+\`\`\`typescript
+// ${p.codeExamples.hooks.file}
+${p.codeExamples.hooks.code}
+\`\`\`
+` : ""}
+`;
+  }
+  // State management rules
+  if (p.stateManagement) {
+    rules["state"] = `---
+description: State management patterns
+globs: ["**/store/**", "**/state/**", "**/context/**"]
+alwaysApply: false
+---
+# State Management: ${p.stateManagement}
+${p.stateManagement === "Zustand" ? `## Zustand Pattern
+\`\`\`typescript
+import { create } from 'zustand'
+interface Store {
+  count: number
+  increment: () => void
+}
+export const useStore = create<Store>((set) => ({
+  count: 0,
+  increment: () => set((state) => ({ count: state.count + 1 })),
+}))
+\`\`\`
+- Create stores in \`store/\` directory
+- Use typed store interfaces
+- Keep stores focused and small
+` : ""}
+${p.stateManagement === "Redux Toolkit" ? `## Redux Toolkit Pattern
+\`\`\`typescript
+import { createSlice } from '@reduxjs/toolkit'
+const slice = createSlice({
+  name: 'feature',
+  initialState: {},
+  reducers: {}
+})
+\`\`\`
+- Use createSlice for reducers
+- Use createAsyncThunk for async
+` : ""}
+${p.stateManagement === "React Context" ? `## Context Pattern
+\`\`\`typescript
+const Context = createContext<Type | null>(null)
+export function useFeature() {
+  const context = useContext(Context)
+  if (!context) throw new Error('Must be used within Provider')
+  return context
+}
+\`\`\`
+` : ""}
+`;
+  }
+  // Types rules
+  if (t.interfaces?.length > 0 || t.types?.length > 0) {
+    rules["types"] = `---
+description: Type definitions and interfaces
+globs: ["**/*.d.ts", "**/types/**", "**/*.types.ts"]
+alwaysApply: false
+---
+# Type Definitions
+## Interfaces (${t.interfaces?.length || 0})
+${t.interfaces?.slice(0, 20).map(i => `- \`${i}\``).join("\n") || "None"}
+## Types (${t.types?.length || 0})
+${t.types?.slice(0, 15).map(ty => `- \`${ty}\``).join("\n") || "None"}
+${t.enums?.length > 0 ? `## Enums
+${t.enums.map(e => `- \`${e}\``).join("\n")}` : ""}
+## Conventions
+- Interfaces for object shapes
+- Type aliases for unions
+- No \`any\` - use \`unknown\`
+`;
+  }
+  // Environment rules
+  if (env.variables?.length > 0) {
+    rules["environment"] = `---
+description: Environment variables
+globs: ["**/*.env*", "**/config/**"]
+alwaysApply: false
+---
+# Environment Variables (${env.variables?.length || 0})
+${env.variables?.slice(0, 25).map(v => `- \`${v}\``).join("\n")}
+## Rules
+- Never commit \`.env\` files
+- Access via \`process.env.VAR_NAME\`
+- Prefix client-side vars with \`NEXT_PUBLIC_\`
+`;
+  }
+  // Anti-patterns rules
+  if (p.antiPatterns?.length > 0) {
+    rules["avoid"] = `---
+description: Patterns to avoid
+globs: ["**/*.{ts,tsx,js,jsx}"]
+alwaysApply: true
+---
+# ⚠️ Patterns to Avoid
+${p.antiPatterns.map(ap => `## ${ap.severity === 'error' ? '🔴' : '🟡'} ${ap.message}
+**Fix:** ${ap.suggestion}
+`).join("\n")}
+## General
+- ❌ No \`any\` type
+- ❌ No hardcoded secrets
+- ❌ No console.log in production
+- ❌ No mock data in production
+`;
+  }
+  // Testing rules
+  if (p.testing?.length > 0) {
+    rules["testing"] = `---
+description: Testing patterns
+globs: ["**/*.test.{ts,tsx}", "**/*.spec.{ts,tsx}"]
+alwaysApply: false
+---
+# Testing: ${p.testing.join(", ")}
+${p.testing.includes("Jest") || p.testing.includes("Vitest") ? `## Unit Tests
+\`\`\`typescript
+describe('Feature', () => {
+  it('should work', () => {
+    expect(result).toBe('expected')
+  })
+})
+\`\`\`
+` : ""}
+${p.testing.includes("Playwright") ? `## E2E Tests
+\`\`\`typescript
+test('user flow', async ({ page }) => {
+  await page.goto('/')
+  await page.click('button')
+})
+\`\`\`
+` : ""}
+`;
+  }
+  return rules;
+}
+module.exports = {
+  generateCursorRules,
+  generateCursorModularRules,
+  getDirectoryPurpose,
+};

package/bin/runners/context/generators/mcp.js ADDED Viewed

@@ -0,0 +1,169 @@
+/**
+ * MCP Context JSON Generator
+ * Generates .vibecheck/context.json for MCP servers
+ *
+ * Uses the unified EVIDENCE_SCHEMA and TRUTH_CONTRACT from proof-context.js
+ */
+const { EVIDENCE_SCHEMA, TRUTH_CONTRACT } = require("../proof-context.js");
+// Context attribution message shown when AI uses vibecheck data
+const CONTEXT_ATTRIBUTION = "🧠 Context enhanced by vibecheck";
+/**
+ * Generate universal context JSON for MCP
+ */
+function generateContextJson(analysis, projectPath) {
+  const p = analysis.patterns || {};
+  const m = analysis.monorepo || {};
+  return JSON.stringify({
+    version: "3.0.0",
+    generatedAt: new Date().toISOString(),
+    generator: "vibecheck-context",
+    // Reference the unified schema from proof-context.js
+    evidenceSchema: EVIDENCE_SCHEMA,
+    truthContract: TRUTH_CONTRACT,
+    project: {
+      name: analysis.name,
+      path: projectPath,
+      framework: analysis.framework,
+      language: analysis.language,
+      architecture: analysis.architecture,
+    },
+    techStack: {
+      nextjs: analysis.hasNextjs,
+      react: analysis.hasReact,
+      typescript: analysis.hasTypescript,
+      prisma: analysis.hasPrisma,
+      tailwind: analysis.hasTailwind,
+      stateManagement: p.stateManagement,
+      validation: p.validation,
+      authentication: p.authentication,
+      dataFetching: p.dataFetching || [],
+      testing: p.testing || [],
+      styling: p.styling || [],
+    },
+    structure: {
+      directories: analysis.directories,
+      components: analysis.components,
+      apiRoutes: analysis.apiRoutes,
+      models: analysis.models,
+    },
+    patterns: {
+      hooks: p.hooks || [],
+      stateManagement: p.stateManagement,
+      validation: p.validation,
+      authentication: p.authentication,
+      dataFetching: p.dataFetching || [],
+      styling: p.styling || [],
+      testing: p.testing || [],
+      codeExamples: p.codeExamples || {},
+    },
+    antiPatterns: p.antiPatterns || [],
+    types: {
+      interfaces: analysis.types?.interfaces || [],
+      types: analysis.types?.types || [],
+      enums: analysis.types?.enums || [],
+    },
+    environment: {
+      files: analysis.envVars?.files || [],
+      variables: analysis.envVars?.variables || [],
+    },
+    scripts: analysis.scripts || [],
+    conventions: {
+      naming: analysis.conventions?.naming || {},
+      imports: analysis.imports?.importPatterns || [],
+    },
+    monorepo: m.isMonorepo ? {
+      type: m.type,
+      tools: m.tools || [],
+      workspaces: m.workspaces?.map(w => ({
+        name: w.name,
+        path: w.path,
+        description: w.description,
+      })) || [],
+      sharedPackages: m.sharedPackages || [],
+    } : null,
+    stats: {
+      totalFiles: analysis.stats?.totalFiles || 0,
+      totalLines: analysis.stats?.totalLines || 0,
+      byExtension: analysis.stats?.byExtension || {},
+      largestFiles: analysis.stats?.largestFiles || [],
+    },
+    contextValidation: analysis.contextValidation || null,
+    contextDrift: analysis.contextDrift || null,
+    contextSummary: analysis.contextSummary || null,
+    rules: {
+      critical: [
+        "Never hardcode secrets - use environment variables",
+        "No mock data in production code",
+        `No 'any' types - use proper TypeScript types`,
+        "Follow existing patterns in the codebase",
+        "Use existing components before creating new ones",
+        "API routes must validate all input",
+      ],
+      style: [
+        `File naming: ${analysis.conventions?.naming?.components || "PascalCase"} for components`,
+        "Use path aliases (@/) for imports",
+        analysis.hasTailwind ? "Use Tailwind CSS for styling" : null,
+        p.stateManagement ? `Use ${p.stateManagement} for state management` : null,
+        p.validation ? `Use ${p.validation} for validation` : null,
+      ].filter(Boolean),
+    },
+    mcp: {
+      resources: [
+        {
+          uri: `file://${projectPath}/.vibecheck/context.json`,
+          name: "Project Context",
+          description: "Full project analysis and context",
+          mimeType: "application/json",
+        },
+        {
+          uri: `file://${projectPath}/.vibecheck/project-map.json`,
+          name: "Project Map",
+          description: "Complete project structure map",
+          mimeType: "application/json",
+        },
+        {
+          uri: `file://${projectPath}/.vibecheck/memory.json`,
+          name: "AI Memory",
+          description: "AI learning memory for this project",
+          mimeType: "application/json",
+        },
+      ],
+      tools: [
+        {
+          name: "vibecheck.context",
+          description: "Regenerate project context",
+        },
+        {
+          name: "vibecheck.analyze",
+          description: "Analyze specific file or directory",
+        },
+      ],
+    },
+    // Attribution message for AI responses
+    _attribution: CONTEXT_ATTRIBUTION,
+    _attributionNote: "Include this attribution when referencing vibecheck context in responses",
+  }, null, 2);
+}
+module.exports = {
+  generateContextJson,
+  CONTEXT_ATTRIBUTION,
+};