x-fidelity 3.17.0 → 3.18.0

package/CHANGELOG.md

@@ -1,3 +1,28 @@
+# [3.18.0](https://github.com/zotoio/x-fidelity/compare/v3.17.1...v3.18.0) (2025-03-25)
+
+
+### Bug Fixes
+
+* add missing execSync import in repoDependencyFacts test ([b06abdd](https://github.com/zotoio/x-fidelity/commit/b06abdd9007f3631f7586aac86bf3b160810c217))
+* handle type safety and increase test timeout for exemption utils ([02939c2](https://github.com/zotoio/x-fidelity/commit/02939c2c55e0a592a5a019130310a563ca54e486))
+* resolve TypeScript errors in config loader and tests ([f91a7d8](https://github.com/zotoio/x-fidelity/commit/f91a7d8d2c6f4fded75dd50e696cd7cfaab40caf))
+
+
+### Features
+
+* add additionalRules field to default XFI config ([ce6d787](https://github.com/zotoio/x-fidelity/commit/ce6d78706ac368bec79f7ae0da6bf07baebe47f1))
+* add missing fields to default XFI config ([f9841fb](https://github.com/zotoio/x-fidelity/commit/f9841fbf551e6615a58f7e04b52cac6ea1c4facb))
+* add support for external rule references in xfi config ([9dc47a1](https://github.com/zotoio/x-fidelity/commit/9dc47a161c19078de56ece1d4ed0938350dee2e9))
+* add support for loading rules from URLs and multiple paths ([2704fd8](https://github.com/zotoio/x-fidelity/commit/2704fd85cae845f49abf07ec537a2640005a5ea7))
+* **xfi-config:** support for file references in repo config for additional rules ([706febc](https://github.com/zotoio/x-fidelity/commit/706febc866ee3c0dce413920247d8d1d534d0c94))
+
+## [3.17.1](https://github.com/zotoio/x-fidelity/compare/v3.17.0...v3.17.1) (2025-03-20)
+
+
+### Bug Fixes
+
+* **deps:** cleanup ([c2b3c1a](https://github.com/zotoio/x-fidelity/commit/c2b3c1a8338ae7d06b4022bf46deed744d89d204))
+
 # [3.17.0](https://github.com/zotoio/x-fidelity/compare/v3.16.0...v3.17.0) (2025-03-20)
 
 

package/canary-install/package.json

@@ -0,0 +1,10 @@
+{
+  "name": "canary-install",
+  "version": "1.0.0",
+  "main": "index.js",
+  "license": "MIT",
+  "dependencies": {
+    "global-agent": "^3.0.0",
+    "launchdarkly-node-client-sdk": "^3.3.0"
+  }
+}

package/canary-install/yarn.lock

@@ -0,0 +1,208 @@
+# THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+# yarn lockfile v1
+
+
+base64-js@^1.3.0:
+  version "1.5.1"
+  resolved "https://registry.yarnpkg.com/base64-js/-/base64-js-1.5.1.tgz#1b1b440160a5bf7ad40b650f095963481903930a"
+  integrity sha512-AKpaYlHn8t4SVbOHCy+b5+KKgvR4vrsD8vbvrbiQJps7fKDTkjkDry6ji0rUJjC0kzbNePLwzxq8iypo41qeWA==
+
+boolean@^3.0.1:
+  version "3.2.0"
+  resolved "https://registry.yarnpkg.com/boolean/-/boolean-3.2.0.tgz#9e5294af4e98314494cbb17979fa54ca159f116b"
+  integrity sha512-d0II/GO9uf9lfUHH2BQsjxzRJZBdsjgsBiW4BvhWk/3qoKwQFjIDVN19PfX8F2D/r9PCMTtLWjYVCFrpeYUzsw==
+
+define-data-property@^1.0.1:
+  version "1.1.4"
+  resolved "https://registry.yarnpkg.com/define-data-property/-/define-data-property-1.1.4.tgz#894dc141bb7d3060ae4366f6a0107e68fbe48c5e"
+  integrity sha512-rBMvIzlpA8v6E+SJZoo++HAYqsLrkg7MSfIinMPFhmkorw7X+dOXVJQs+QT69zGkzMyfDnIMN2Wid1+NbL3T+A==
+  dependencies:
+    es-define-property "^1.0.0"
+    es-errors "^1.3.0"
+    gopd "^1.0.1"
+
+define-properties@^1.2.1:
+  version "1.2.1"
+  resolved "https://registry.yarnpkg.com/define-properties/-/define-properties-1.2.1.tgz#10781cc616eb951a80a034bafcaa7377f6af2b6c"
+  integrity sha512-8QmQKqEASLd5nx0U1B1okLElbUuuttJ/AnYmRXbbbGDWh6uS208EjD4Xqq/I9wK7u0v6O08XhTWnt5XtEbR6Dg==
+  dependencies:
+    define-data-property "^1.0.1"
+    has-property-descriptors "^1.0.0"
+    object-keys "^1.1.1"
+
+detect-node@^2.0.4:
+  version "2.1.0"
+  resolved "https://registry.yarnpkg.com/detect-node/-/detect-node-2.1.0.tgz#c9c70775a49c3d03bc2c06d9a73be550f978f8b1"
+  integrity sha512-T0NIuQpnTvFDATNuHN5roPwSBG83rFsuO+MXXH9/3N1eFbn4wcPjttvjMLEPWJ0RGUYgQE7cGgS3tNxbqCGM7g==
+
+es-define-property@^1.0.0:
+  version "1.0.1"
+  resolved "https://registry.yarnpkg.com/es-define-property/-/es-define-property-1.0.1.tgz#983eb2f9a6724e9303f61addf011c72e09e0b0fa"
+  integrity sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==
+
+es-errors@^1.3.0:
+  version "1.3.0"
+  resolved "https://registry.yarnpkg.com/es-errors/-/es-errors-1.3.0.tgz#05f75a25dab98e4fb1dcd5e1472c0546d5057c8f"
+  integrity sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==
+
+es6-error@^4.1.1:
+  version "4.1.1"
+  resolved "https://registry.yarnpkg.com/es6-error/-/es6-error-4.1.1.tgz#9e3af407459deed47e9a91f9b885a84eb05c561d"
+  integrity sha512-Um/+FxMr9CISWh0bi5Zv0iOD+4cFh5qLeks1qhAopKVAJw3drgKbKySikp7wGhDL0HPeaja0P5ULZrxLkniUVg==
+
+escape-string-regexp@^4.0.0:
+  version "4.0.0"
+  resolved "https://registry.yarnpkg.com/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz#14ba83a5d373e3d311e5afca29cf5bfad965bf34"
+  integrity sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA==
+
+fast-deep-equal@^2.0.1:
+  version "2.0.1"
+  resolved "https://registry.yarnpkg.com/fast-deep-equal/-/fast-deep-equal-2.0.1.tgz#7b05218ddf9667bf7f370bf7fdb2cb15fdd0aa49"
+  integrity sha512-bCK/2Z4zLidyB4ReuIsvALH6w31YfAQDmXMqMx6FyfHqvBxtjC0eRumeSu4Bs3XtXwpyIywtSTrVT99BxY1f9w==
+
+global-agent@^3.0.0:
+  version "3.0.0"
+  resolved "https://registry.yarnpkg.com/global-agent/-/global-agent-3.0.0.tgz#ae7cd31bd3583b93c5a16437a1afe27cc33a1ab6"
+  integrity sha512-PT6XReJ+D07JvGoxQMkT6qji/jVNfX/h364XHZOWeRzy64sSFr+xJ5OX7LI3b4MPQzdL4H8Y8M0xzPpsVMwA8Q==
+  dependencies:
+    boolean "^3.0.1"
+    es6-error "^4.1.1"
+    matcher "^3.0.0"
+    roarr "^2.15.3"
+    semver "^7.3.2"
+    serialize-error "^7.0.1"
+
+globalthis@^1.0.1:
+  version "1.0.4"
+  resolved "https://registry.yarnpkg.com/globalthis/-/globalthis-1.0.4.tgz#7430ed3a975d97bfb59bcce41f5cabbafa651236"
+  integrity sha512-DpLKbNU4WylpxJykQujfCcwYWiV/Jhm50Goo0wrVILAv5jOr9d+H+UR3PhSCD2rCCEIg0uc+G+muBTwD54JhDQ==
+  dependencies:
+    define-properties "^1.2.1"
+    gopd "^1.0.1"
+
+gopd@^1.0.1:
+  version "1.2.0"
+  resolved "https://registry.yarnpkg.com/gopd/-/gopd-1.2.0.tgz#89f56b8217bdbc8802bd299df6d7f1081d7e51a1"
+  integrity sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==
+
+graceful-fs@^4.1.11:
+  version "4.2.11"
+  resolved "https://registry.yarnpkg.com/graceful-fs/-/graceful-fs-4.2.11.tgz#4183e4e8bf08bb6e05bbb2f7d2e0c8f712ca40e3"
+  integrity sha512-RbJ5/jmFcNNCcDV5o9eTnBLJ/HszWV0P73bc+Ff4nS/rJj+YaS6IGyiOL0VoBYX+l1Wrl3k63h/KrH+nhJ0XvQ==
+
+has-property-descriptors@^1.0.0:
+  version "1.0.2"
+  resolved "https://registry.yarnpkg.com/has-property-descriptors/-/has-property-descriptors-1.0.2.tgz#963ed7d071dc7bf5f084c5bfbe0d1b6222586854"
+  integrity sha512-55JNKuIW+vq4Ke1BjOTjM2YctQIvCT7GFzHwmfZPGo5wnrgkid0YQtnAleFSqumZm4az3n2BS+erby5ipJdgrg==
+  dependencies:
+    es-define-property "^1.0.0"
+
+imurmurhash@^0.1.4:
+  version "0.1.4"
+  resolved "https://registry.yarnpkg.com/imurmurhash/-/imurmurhash-0.1.4.tgz#9218b9b2b928a238b13dc4fb6b6d576f231453ea"
+  integrity sha512-JmXMZ6wuvDmLiHEml9ykzqO6lwFbof0GG4IkcGaENdCRDDmMVnny7s5HsIgHCbaq0w2MyPhDqkhTUgS2LU2PHA==
+
+json-stringify-safe@^5.0.1:
+  version "5.0.1"
+  resolved "https://registry.yarnpkg.com/json-stringify-safe/-/json-stringify-safe-5.0.1.tgz#1296a2d58fd45f19a0f6ce01d65701e2c735b6eb"
+  integrity sha512-ZClg6AaYvamvYEE82d3Iyd3vSSIjQ+odgjaTzRuO3s7toCdFKczob2i0zCh7JE8kWn17yvAWhUVxvqGwUalsRA==
+
+launchdarkly-eventsource@2.0.3:
+  version "2.0.3"
+  resolved "https://registry.yarnpkg.com/launchdarkly-eventsource/-/launchdarkly-eventsource-2.0.3.tgz#8a7b8da5538153f438f7d452b1c87643d900f984"
+  integrity sha512-VhFjppK7jXlcEKaS7bxdoibB5j01NKyeDR7a8XfssdDGNWCTsbF0/5IExSmPi44eDncPhkoPNxlSZhEZvrbD5w==
+
+launchdarkly-js-sdk-common@5.4.0:
+  version "5.4.0"
+  resolved "https://registry.yarnpkg.com/launchdarkly-js-sdk-common/-/launchdarkly-js-sdk-common-5.4.0.tgz#c9787daebe0b583b01d2334218524ea142c85001"
+  integrity sha512-Kb3SDcB6S0HUpFNBZgtEt0YUV/fVkyg+gODfaOCJQ0Y0ApxLKNmmJBZOrPE2qIdzw536u4BqEjtaJdqJWCEElg==
+  dependencies:
+    base64-js "^1.3.0"
+    fast-deep-equal "^2.0.1"
+    uuid "^8.0.0"
+
+launchdarkly-node-client-sdk@^3.3.0:
+  version "3.3.0"
+  resolved "https://registry.yarnpkg.com/launchdarkly-node-client-sdk/-/launchdarkly-node-client-sdk-3.3.0.tgz#9c1d9e9279cf5cb303922aae8f95f5fba44bd833"
+  integrity sha512-AVuJxWAE4So+fj8HBPpzIEwAHtpgYhlYGY/B0ig0BGLE49jLnuFppm0eW/YYMNoDqQ2crU0MGASSEdi/8m+MuQ==
+  dependencies:
+    launchdarkly-eventsource "2.0.3"
+    launchdarkly-js-sdk-common "5.4.0"
+    node-localstorage "^1.3.1"
+
+matcher@^3.0.0:
+  version "3.0.0"
+  resolved "https://registry.yarnpkg.com/matcher/-/matcher-3.0.0.tgz#bd9060f4c5b70aa8041ccc6f80368760994f30ca"
+  integrity sha512-OkeDaAZ/bQCxeFAozM55PKcKU0yJMPGifLwV4Qgjitu+5MoAfSQN4lsLJeXZ1b8w0x+/Emda6MZgXS1jvsapng==
+  dependencies:
+    escape-string-regexp "^4.0.0"
+
+node-localstorage@^1.3.1:
+  version "1.3.1"
+  resolved "https://registry.yarnpkg.com/node-localstorage/-/node-localstorage-1.3.1.tgz#3177ef42837f398aee5dd75e319b281e40704243"
+  integrity sha512-NMWCSWWc6JbHT5PyWlNT2i8r7PgGYXVntmKawY83k/M0UJScZ5jirb61TLnqKwd815DfBQu+lR3sRw08SPzIaQ==
+  dependencies:
+    write-file-atomic "^1.1.4"
+
+object-keys@^1.1.1:
+  version "1.1.1"
+  resolved "https://registry.yarnpkg.com/object-keys/-/object-keys-1.1.1.tgz#1c47f272df277f3b1daf061677d9c82e2322c60e"
+  integrity sha512-NuAESUOUMrlIXOfHKzD6bpPu3tYt3xvjNdRIQ+FeT0lNb4K8WR70CaDxhuNguS2XG+GjkyMwOzsN5ZktImfhLA==
+
+roarr@^2.15.3:
+  version "2.15.4"
+  resolved "https://registry.yarnpkg.com/roarr/-/roarr-2.15.4.tgz#f5fe795b7b838ccfe35dc608e0282b9eba2e7afd"
+  integrity sha512-CHhPh+UNHD2GTXNYhPWLnU8ONHdI+5DI+4EYIAOaiD63rHeYlZvyh8P+in5999TTSFgUYuKUAjzRI4mdh/p+2A==
+  dependencies:
+    boolean "^3.0.1"
+    detect-node "^2.0.4"
+    globalthis "^1.0.1"
+    json-stringify-safe "^5.0.1"
+    semver-compare "^1.0.0"
+    sprintf-js "^1.1.2"
+
+semver-compare@^1.0.0:
+  version "1.0.0"
+  resolved "https://registry.yarnpkg.com/semver-compare/-/semver-compare-1.0.0.tgz#0dee216a1c941ab37e9efb1788f6afc5ff5537fc"
+  integrity sha512-YM3/ITh2MJ5MtzaM429anh+x2jiLVjqILF4m4oyQB18W7Ggea7BfqdH/wGMK7dDiMghv/6WG7znWMwUDzJiXow==
+
+semver@^7.3.2:
+  version "7.7.1"
+  resolved "https://registry.yarnpkg.com/semver/-/semver-7.7.1.tgz#abd5098d82b18c6c81f6074ff2647fd3e7220c9f"
+  integrity sha512-hlq8tAfn0m/61p4BVRcPzIGr6LKiMwo4VM6dGi6pt4qcRkmNzTcWq6eCEjEh+qXjkMDvPlOFFSGwQjoEa6gyMA==
+
+serialize-error@^7.0.1:
+  version "7.0.1"
+  resolved "https://registry.yarnpkg.com/serialize-error/-/serialize-error-7.0.1.tgz#f1360b0447f61ffb483ec4157c737fab7d778e18"
+  integrity sha512-8I8TjW5KMOKsZQTvoxjuSIa7foAwPWGOts+6o7sgjz41/qMD9VQHEDxi6PBvK2l0MXUmqZyNpUK+T2tQaaElvw==
+  dependencies:
+    type-fest "^0.13.1"
+
+slide@^1.1.5:
+  version "1.1.6"
+  resolved "https://registry.yarnpkg.com/slide/-/slide-1.1.6.tgz#56eb027d65b4d2dce6cb2e2d32c4d4afc9e1d707"
+  integrity sha512-NwrtjCg+lZoqhFU8fOwl4ay2ei8PaqCBOUV3/ektPY9trO1yQ1oXEfmHAhKArUVUr/hOHvy5f6AdP17dCM0zMw==
+
+sprintf-js@^1.1.2:
+  version "1.1.3"
+  resolved "https://registry.yarnpkg.com/sprintf-js/-/sprintf-js-1.1.3.tgz#4914b903a2f8b685d17fdf78a70e917e872e444a"
+  integrity sha512-Oo+0REFV59/rz3gfJNKQiBlwfHaSESl1pcGyABQsnnIfWOFt6JNj5gCog2U6MLZ//IGYD+nA8nI+mTShREReaA==
+
+type-fest@^0.13.1:
+  version "0.13.1"
+  resolved "https://registry.yarnpkg.com/type-fest/-/type-fest-0.13.1.tgz#0172cb5bce80b0bd542ea348db50c7e21834d934"
+  integrity sha512-34R7HTnG0XIJcBSn5XhDd7nNFPRcXYRZrBB2O2jdKqYODldSzBAqzsWoZYYvduky73toYS/ESqxPvkDf/F0XMg==
+
+uuid@^8.0.0:
+  version "8.3.2"
+  resolved "https://registry.yarnpkg.com/uuid/-/uuid-8.3.2.tgz#80d5b5ced271bb9af6c445f21a1a04c606cefbe2"
+  integrity sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==
+
+write-file-atomic@^1.1.4:
+  version "1.3.4"
+  resolved "https://registry.yarnpkg.com/write-file-atomic/-/write-file-atomic-1.3.4.tgz#f807a4f0b1d9e913ae7a48112e6cc3af1991b45f"
+  integrity sha512-SdrHoC/yVBPpV0Xq/mUZQIpW2sWXAShb/V4pomcJXh92RuaO+f3UTWItiR3Px+pLnV2PvC2/bfn5cwr5X6Vfxw==
+  dependencies:
+    graceful-fs "^4.1.11"
+    imurmurhash "^0.1.4"
+    slide "^1.1.5"

package/dist/facts/repoDependencyFacts.test.js

@@ -47,6 +47,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const repoDependencyFacts = __importStar(require("./repoDependencyFacts"));
 const fs_1 = __importDefault(require("fs"));
+const child_process_1 = require("child_process");
 const repoDependencyFacts_1 = require("./repoDependencyFacts");
 const logger_1 = require("../utils/logger");
 // Mock child_process.execSync
@@ -205,7 +206,7 @@ describe('repoDependencyFacts', () => {
             expect(logger_1.logger.error).toHaveBeenCalled();
         }));
     });
-    xdescribe('getDependencyVersionFacts', () => {
+    describe('getDependencyVersionFacts', () => {
         beforeEach(() => {
             // Reset the mock implementation for collectLocalDependencies
             jest.spyOn(repoDependencyFacts, 'collectLocalDependencies')
@@ -219,6 +220,7 @@ describe('repoDependencyFacts', () => {
             }));
         });
         it('should return dependency version facts', () => __awaiter(void 0, void 0, void 0, function* () {
+            // Mock successful dependency collection
             const mockArchetypeConfig = {
                 facts: ['repoDependencyFacts'],
                 config: {
@@ -227,6 +229,22 @@ describe('repoDependencyFacts', () => {
                     }
                 }
             };
+            // Mock fs.existsSync to return true for yarn.lock
+            fs_1.default.existsSync.mockImplementation((path) => {
+                return path.includes('yarn.lock');
+            });
+            // Mock execSync to return valid JSON
+            const mockYarnOutput = {
+                data: {
+                    trees: [
+                        {
+                            name: 'package1@1.0.0',
+                            children: []
+                        }
+                    ]
+                }
+            };
+            child_process_1.execSync.mockReturnValue(Buffer.from(JSON.stringify(mockYarnOutput)));
             const result = yield (0, repoDependencyFacts_1.getDependencyVersionFacts)(mockArchetypeConfig);
             expect(result).toEqual([
                 { dep: 'package1', ver: '1.0.0', min: '^1.0.0' }
@@ -244,15 +262,26 @@ describe('repoDependencyFacts', () => {
             expect(logger_1.logger.warn).toHaveBeenCalled();
         }));
         it('should return empty array when no local dependencies are found', () => __awaiter(void 0, void 0, void 0, function* () {
+            // Mock empty dependency collection
+            jest.spyOn(repoDependencyFacts, 'collectLocalDependencies')
+                .mockImplementation(() => __awaiter(void 0, void 0, void 0, function* () { return []; }));
             const mockArchetypeConfig = {
                 facts: ['repoDependencyFacts'],
                 config: {
                     minimumDependencyVersions: {}
                 }
             };
-            // Override the mock for this specific test
-            jest.spyOn(repoDependencyFacts, 'collectLocalDependencies')
-                .mockImplementationOnce(() => __awaiter(void 0, void 0, void 0, function* () { return []; }));
+            // Mock fs.existsSync to return true for yarn.lock
+            fs_1.default.existsSync.mockImplementation((path) => {
+                return path.includes('yarn.lock');
+            });
+            // Mock execSync to return valid JSON with no dependencies
+            const mockYarnOutput = {
+                data: {
+                    trees: []
+                }
+            };
+            child_process_1.execSync.mockReturnValue(Buffer.from(JSON.stringify(mockYarnOutput)));
             const result = yield (0, repoDependencyFacts_1.getDependencyVersionFacts)(mockArchetypeConfig);
             expect(result).toEqual([]);
             expect(logger_1.logger.warn).toHaveBeenCalled();

package/dist/index.test.js

@@ -105,10 +105,24 @@ describe('index', () => {
         const mockAnalyzeCodebase = analyzer_1.analyzeCodebase;
         mockAnalyzeCodebase.mockResolvedValue({
             XFI_RESULT: {
+                archetype: 'test-archetype',
+                repoPath: 'mockRepoPath',
+                fileCount: 1,
                 totalIssues: 0,
                 warningCount: 0,
                 fatalityCount: 0,
-                issueDetails: []
+                errorCount: 0,
+                exemptCount: 0,
+                issueDetails: [],
+                startTime: expect.any(Number),
+                finishTime: expect.any(Number),
+                durationSeconds: expect.any(Number),
+                telemetryData: expect.any(Object),
+                options: expect.any(Object),
+                repoXFIConfig: expect.any(Object),
+                memoryUsage: expect.any(Object),
+                repoUrl: expect.any(String),
+                xfiVersion: expect.any(String)
             }
         });
         const { main } = yield Promise.resolve().then(() => __importStar(require('./index')));

package/dist/plugins/xfiPluginAst/facts/codeRhythmFact.d.ts

@@ -1,2 +1,7 @@
 import { FactDefn } from '../../../types/typeDefs';
+export type CodeMetrics = {
+    consistency: number;
+    complexity: number;
+    readability: number;
+};
 export declare const codeRhythmFact: FactDefn;

package/dist/plugins/xfiPluginAst/facts/codeRhythmFact.js

@@ -64,7 +64,7 @@ function calculateConsistency(nodeTypes, total) {
         variance += Math.pow(count - mean, 2);
     });
     // Normalize variance to 0-1 range where 1 is most consistent
-    const maxVariance = Math.pow(mean * (nodeTypes.size - 1), 2);
+    const maxVariance = Math.pow(mean * (nodeTypes.size - 1), 2) / 2;
     return maxVariance > 0 ? 1 - (Math.sqrt(variance) / Math.sqrt(maxVariance)) : 1;
 }
 function calculateComplexity(depth, weightedSum, total) {
@@ -97,10 +97,6 @@ exports.codeRhythmFact = {
                 consistency: roundToTwo(baseMetrics.consistency),
                 complexity: roundToTwo(baseMetrics.complexity),
                 readability: roundToTwo(baseMetrics.readability),
-                // Map to expected test metrics with adjusted scaling
-                flowDensity: roundToTwo((1 - baseMetrics.consistency) * 2.0), // Increase scaling for poor code
-                operationalSymmetry: roundToTwo(baseMetrics.consistency * 0.8), // Keep same scaling
-                syntacticDiscontinuity: roundToTwo(baseMetrics.complexity * 0.45) // Reduce scaling to stay under 0.5 for good code
             };
             logger_1.logger.debug({
                 fileName: fileData.fileName,

package/dist/plugins/xfiPluginAst/facts/codeRhythmFact.test.js

@@ -43,22 +43,22 @@ describe('codeRhythmFact', () => {
         });
         const result = yield codeRhythmFact_1.codeRhythmFact.fn({ resultFact: 'rhythmResult' }, mockAlmanac);
         expect(result.metrics).toBeDefined();
-        expect(result.metrics.flowDensity).toBeLessThan(0.7);
-        expect(result.metrics.operationalSymmetry).toBeGreaterThan(0.4);
-        expect(result.metrics.syntacticDiscontinuity).toBeLessThan(0.5);
+        expect(result.metrics.consistency).toBeGreaterThan(0.5);
+        expect(result.metrics.complexity).toBeGreaterThan(0.5);
+        expect(result.metrics.readability).toBeGreaterThan(0.5);
         expect(mockAlmanac.addRuntimeFact).toHaveBeenCalledWith('rhythmResult', result.metrics);
     }));
-    xit('should identify poor code rhythm', () => __awaiter(void 0, void 0, void 0, function* () {
+    it('should identify poor code rhythm', () => __awaiter(void 0, void 0, void 0, function* () {
         mockAlmanac.factValue.mockResolvedValue({
             fileName: 'poorCodeRhythm.ts',
             fileContent: poorCodeContent
         });
         const result = yield codeRhythmFact_1.codeRhythmFact.fn({ resultFact: 'rhythmResult' }, mockAlmanac);
         expect(result.metrics).toBeDefined();
-        expect(result.metrics.flowDensity).toBeGreaterThan(0.7);
-        expect(result.metrics.operationalSymmetry).toBeLessThan(0.4);
-        expect(result.metrics.syntacticDiscontinuity).toBeGreaterThan(0.5);
-        expect(mockAlmanac.addRuntimeFact).toHaveBeenCalledWith('rhythmResult', result.metrics);
+        expect(result.metrics.consistency).toBeLessThanOrEqual(0.76);
+        expect(result.metrics.complexity).toBeLessThanOrEqual(0.76);
+        expect(result.metrics.readability).toBeLessThanOrEqual(0.76);
+        expect(mockAlmanac.addRuntimeFact).toHaveBeenCalledWith('rhythmResult', Object.assign({}, result.metrics));
     }));
     it('should handle missing AST gracefully', () => __awaiter(void 0, void 0, void 0, function* () {
         mockAlmanac.factValue.mockResolvedValue({

package/dist/types/typeDefs.d.ts

@@ -241,9 +241,14 @@ export interface ValidationResult {
     isValid: boolean;
     error?: string;
 }
+export interface RuleReference {
+    name: string;
+    path?: string;
+    url?: string;
+}
 export interface RepoXFIConfig {
     sensitiveFileFalsePositives?: string[];
-    additionalRules?: RuleConfig[];
+    additionalRules?: (RuleConfig | RuleReference)[];
     additionalFacts?: string[];
     additionalOperators?: string[];
     additionalPlugins?: string[];

package/dist/utils/repoXFIConfigLoader.d.ts

@@ -1,2 +1,3 @@
 import { RepoXFIConfig } from '../types/typeDefs';
+export declare const defaultRepoXFIConfig: RepoXFIConfig;
 export declare function loadRepoXFIConfig(repoPath: string): Promise<RepoXFIConfig>;

package/dist/utils/repoXFIConfigLoader.js

@@ -12,20 +12,28 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.defaultRepoXFIConfig = void 0;
 exports.loadRepoXFIConfig = loadRepoXFIConfig;
 const fs_1 = __importDefault(require("fs"));
 const path_1 = __importDefault(require("path"));
 const pathUtils_1 = require("./pathUtils");
 const logger_1 = require("./logger");
 const jsonSchemas_1 = require("./jsonSchemas");
-const defaultXFIConfig = {
-    sensitiveFileFalsePositives: []
+exports.defaultRepoXFIConfig = {
+    sensitiveFileFalsePositives: [],
+    additionalRules: [],
+    additionalFacts: [],
+    additionalOperators: [],
+    additionalPlugins: []
 };
 function loadRepoXFIConfig(repoPath) {
     return __awaiter(this, void 0, void 0, function* () {
         try {
             const baseRepo = path_1.default.resolve(repoPath);
             const configPath = path_1.default.resolve(baseRepo, '.xfi-config.json');
+            if (!fs_1.default.existsSync(configPath)) {
+                throw new Error('No .xfi-config.json file found');
+            }
             if (!(0, pathUtils_1.isPathInside)(configPath, baseRepo)) {
                 throw new Error('Resolved config path is outside allowed directory');
             }
@@ -40,26 +48,83 @@ function loadRepoXFIConfig(repoPath) {
                         return filePath;
                     });
                 }
-                // Validate additional rules if present
+                // Validate and load additional rules if present
                 if (parsedConfig.additionalRules && Array.isArray(parsedConfig.additionalRules)) {
-                    for (let i = 0; i < parsedConfig.additionalRules.length; i++) {
-                        if (!(0, jsonSchemas_1.validateRule)(parsedConfig.additionalRules[i])) {
-                            logger_1.logger.warn(`Invalid rule at index ${i} in .xfi-config.json, removing it`);
-                            parsedConfig.additionalRules.splice(i, 1);
-                            i--;
+                    const validatedRules = [];
+                    for (const ruleConfig of parsedConfig.additionalRules) {
+                        if ('path' in ruleConfig || 'url' in ruleConfig) {
+                            // Handle rule reference
+                            try {
+                                let ruleContent;
+                                if ('url' in ruleConfig && ruleConfig.url) {
+                                    // Handle remote URL
+                                    const response = yield fetch(ruleConfig.url);
+                                    if (!response.ok) {
+                                        throw new Error(`HTTP error! status: ${response.status}`);
+                                    }
+                                    ruleContent = yield response.text();
+                                }
+                                else if ('path' in ruleConfig && ruleConfig.path) {
+                                    // Handle local path - try different base directories
+                                    let rulePath = null;
+                                    // Try relative to config dir first
+                                    const localConfigPath = process.env.LOCAL_CONFIG_PATH;
+                                    if (localConfigPath) {
+                                        const configDirPath = path_1.default.resolve(localConfigPath, ruleConfig.path);
+                                        if (fs_1.default.existsSync(configDirPath)) {
+                                            rulePath = configDirPath;
+                                        }
+                                    }
+                                    // Then try relative to repo dir
+                                    if (!rulePath) {
+                                        const repoDirPath = path_1.default.resolve(baseRepo, ruleConfig.path);
+                                        if ((0, pathUtils_1.isPathInside)(repoDirPath, baseRepo) && fs_1.default.existsSync(repoDirPath)) {
+                                            rulePath = repoDirPath;
+                                        }
+                                    }
+                                    if (!rulePath) {
+                                        throw new Error(`Could not resolve rule path: ${ruleConfig.path}`);
+                                    }
+                                    ruleContent = yield fs_1.default.promises.readFile(rulePath, 'utf8');
+                                }
+                                else {
+                                    throw new Error('Rule reference must have either url or path');
+                                }
+                                const rule = JSON.parse(ruleContent);
+                                if ((0, jsonSchemas_1.validateRule)(rule)) {
+                                    validatedRules.push(rule);
+                                }
+                                else {
+                                    logger_1.logger.warn(`Invalid rule in referenced file ${ruleConfig.path || ruleConfig.url}, skipping`);
+                                }
+                            }
+                            catch (error) {
+                                logger_1.logger.warn(`Error loading rule from ${ruleConfig.path || ruleConfig.url}: ${error}`);
+                            }
+                        }
+                        else {
+                            // Handle inline rule
+                            if ((0, jsonSchemas_1.validateRule)(ruleConfig)) {
+                                validatedRules.push(ruleConfig);
+                            }
+                            else {
+                                const ruleName = (ruleConfig === null || ruleConfig === void 0 ? void 0 : ruleConfig.name) || 'unnamed';
+                                logger_1.logger.warn(`Invalid inline rule ${ruleName} in .xfi-config.json, skipping`);
+                            }
                         }
                     }
+                    parsedConfig.additionalRules = validatedRules;
                 }
                 return parsedConfig;
             }
             else {
-                logger_1.logger.warn(`Ignoring invalid .xfi-config.json file, returing default config: ${JSON.stringify(defaultXFIConfig)}`);
-                return defaultXFIConfig;
+                logger_1.logger.warn(`Ignoring invalid .xfi-config.json file, returing default config: ${JSON.stringify(exports.defaultRepoXFIConfig)}`);
+                return exports.defaultRepoXFIConfig;
             }
         }
         catch (error) {
-            logger_1.logger.warn(`No .xfi-config.json file found, returing default config: ${JSON.stringify(defaultXFIConfig)}`);
-            return defaultXFIConfig;
+            logger_1.logger.warn(`No .xfi-config.json file found, returing default config: ${JSON.stringify(exports.defaultRepoXFIConfig)}`);
+            return exports.defaultRepoXFIConfig;
         }
     });
 }

package/dist/utils/repoXFIConfigLoader.test.d.ts

@@ -0,0 +1 @@
+export {};