npm - yeknal - Versions diffs - 1.0.5 → 1.0.8 - Mend

yeknal 1.0.5 → 1.0.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,79 +1,96 @@
-# yeknal
-A CLI tool to instantly fetch project guideline templates (Security, Design, SEO) into any repository.
-## Installation
-No installation needed — just use `npx`:
-```bash
-npx yeknal <category>
-```
-## Usage
-Run any of the following commands from the root of your project:
-### Security
-Fetches the **Security-Master.md** guideline and automatically runs a security audit on your project, saving the results to `security-audit.log`.
-```bash
-npx yeknal security
-```
-**Output files:**
-- `Security-Master.md` — Security best practices and policies
-- `security-audit.log` — Automated audit results for your project
----
-### Design
-Fetches the **Design.md** guideline with UI/UX design principles and standards.
-```bash
-npx yeknal design
-```
-**Output files:**
-- `Design.md` — Design system guidelines
----
-### SEO
-Fetches the **SEO-Prompt.md** guideline with SEO improvement strategies.
-```bash
-npx yeknal seo
-```
-**Output files:**
-- `SEO-Prompt.md` — SEO checklist and improvement prompts
-## Examples
-```bash
-# Navigate to any project
-cd my-project
-# Pull security guidelines + run audit
-npx yeknal security
-# Pull design guidelines
-npx yeknal design
-# Pull SEO guidelines
-npx yeknal seo
-```
-## How It Works
-1. The CLI fetches the requested markdown file from a remote GitHub repository.
-2. The file is saved directly into your current working directory.
-3. For `security`, it additionally runs `npx secure-repo audit` and logs the results.
-## License
-ISC
+# yeknal
+A CLI tool to fetch project guideline templates and sync skill folders for AI coding agents.
+## Installation
+No installation needed; use `npx`:
+```bash
+npx yeknal <command>
+```
+## Usage
+Run commands from your project root:
+### Security
+Fetches `Security-Master.md` and runs a security audit.
+```bash
+npx yeknal security
+```
+Output:
+- `Security-Master.md`
+- `security-audit.log`
+### Design
+Fetches `Design.md`.
+```bash
+npx yeknal design
+```
+Output:
+- `Design.md`
+### SEO
+Fetches `SEO-Prompt.md`.
+```bash
+npx yeknal seo
+```
+Output:
+- `SEO-Prompt.md`
+### Skills
+Syncs skill folders from the GitHub repository into detected local agent folders.
+```bash
+npx yeknal skills
+```
+Behavior:
+- Source mode is GitHub download.
+- Uses GitHub API + raw file download by default.
+- If GitHub API rate limit is hit, it automatically falls back to `git clone` (Git must be installed).
+- Top-level folders are included only if they contain `SKILL.md`.
+- Excludes `Design`, `Security`, `Security_Raw`, and `SEO`.
+- Sync targets (if parent folder exists):
+- Gemini: `~/.gemini/antigravity` or `~/.antigravity`
+- Codex: `~/.codex`
+- Claude: `~/.claude`
+- For each detected target, creates `<parent>/skills` if missing.
+- Overwrites destination skill folders to keep targets in sync.
+Optional environment variable overrides:
+- `YEKNAL_GEMINI_PARENT`
+- `YEKNAL_CODEX_PARENT`
+- `YEKNAL_CLAUDE_PARENT`
+- `YEKNAL_GITHUB_TOKEN` (or `GITHUB_TOKEN`) for higher GitHub API rate limits (optional)
+## Examples
+```bash
+# Pull security guidelines + run audit
+npx yeknal security
+# Pull design guidelines
+npx yeknal design
+# Pull SEO guidelines
+npx yeknal seo
+# Sync skill folders for Gemini/Codex/Claude
+npx yeknal skills
+```
+## License
+ISC

package/bin/yeknal.js CHANGED Viewed

@@ -1,236 +1,588 @@
-#!/usr/bin/env node
-/**
- * yeknal CLI
- * Fetches Markdown files from a GitHub repository to the current working directory.
- */
-const fs = require("fs");
-const path = require("path");
-const https = require("https");
-const { exec } = require("child_process");
-// ==========================================
-// USER CONFIGURATION (UPDATE THESE VALUES)
-// ==========================================
-const GITHUB_USERNAME = "tryraisins"; // e.g., 'your-github-username'
-const GITHUB_REPO = "MD_Files"; // e.g., 'your-repo-name'
-const BRANCH = "main"; // e.g., 'main' or 'master'
-// ==========================================
-// Base URL for GitHub raw content
-const BASE_URL = `https://raw.githubusercontent.com/${GITHUB_USERNAME}/${GITHUB_REPO}/${BRANCH}`;
-// Map commands to specific file paths in the GitHub repository
-const configs = {
-  security: {
-    remotePath: "Security/Security-Master.md", // Path in your repo
-    localName: "Security-Master.md", // Name saved locally
-  },
-  design: {
-    remotePath: "Design/SKILL.md",
-    localName: "Design.md",
-  },
-  seo: {
-    remotePath: "SEO/seo-improvement-prompt.md",
-    localName: "SEO-Prompt.md",
-  },
-};
-const args = process.argv.slice(2);
-const category = args[0] ? args[0].toLowerCase() : null;
-if (!category || !configs[category]) {
-  console.error("❌ Error: Invalid or missing category.");
-  console.log("\nUsage:");
-  console.log("  npx yeknal security");
-  console.log("  npx yeknal design");
-  console.log("  npx yeknal seo\n");
-  process.exit(1);
-}
-const config = configs[category];
-const fileUrl = `${BASE_URL}/${config.remotePath}`;
-const localDest = path.join(process.cwd(), config.localName);
-console.log(`\n⏳ Fetching ${category} guidelines...`);
-https
-  .get(fileUrl, (res) => {
-    if (res.statusCode !== 200) {
-      console.error(
-        `\n❌ Failed to download file. (HTTP Status: ${res.statusCode})`,
-      );
-      console.error(`Please verify that the file exists at:\n👉 ${fileUrl}\n`);
-      console.error(
-        `If the repository is private, this script needs a Personal Access Token.`,
-      );
-      process.exit(1);
-    }
-    const fileStream = fs.createWriteStream(localDest);
-    res.pipe(fileStream);
-    fileStream.on("finish", () => {
-      fileStream.close();
-      console.log(`✅ Successfully saved to: ${localDest}\n`);
-      if (category === "security") {
-        console.log(`🔍 Running security audit (this may take a moment)...`);
-        exec("npx secure-repo audit", (error, stdout, stderr) => {
-          const logPath = path.join(process.cwd(), "security-audit.log");
-          // Parse stdout to remove Policy files and recalculate scores
-          const outputLines = stdout.split("\n");
-          const finalLines = [];
-          let inPolicySection = false;
-          let policyPasses = 0;
-          let policyWarnings = 0;
-          let policyIssues = 0;
-          let policyPoints = 0;
-          for (let i = 0; i < outputLines.length; i++) {
-            const line = outputLines[i];
-            if (line.match(/^\s*Policy files:/)) {
-              inPolicySection = true;
-              continue;
-            }
-            if (inPolicySection) {
-              if (
-                line.match(/^\s*Environment files:/) ||
-                line.match(/^\s*Secret scanning:/) ||
-                line.match(/^\s*Configuration:/)
-              ) {
-                inPolicySection = false;
-              } else {
-                if (line.includes("[FAIL]")) policyIssues++;
-                if (line.includes("[warn]")) policyWarnings++;
-                if (line.includes("[pass]")) {
-                  policyPasses++;
-                  if (
-                    line.includes("SECURITY.md") ||
-                    line.includes("AUTH.md") ||
-                    line.includes("API.md") ||
-                    line.includes("ENV_VARIABLES.md")
-                  ) {
-                    policyPoints += 10;
-                  } else {
-                    policyPoints += 5;
-                  }
-                }
-                continue;
-              }
-            }
-            if (line.match(/^\s*Security Score:\s*\d+\s*\/\s*\d+/)) {
-              const match = line.match(/^\s*Security Score:\s*(\d+)/);
-              if (match) {
-                const oldScore = parseInt(match[1], 10);
-                const newScore = oldScore - policyPoints;
-                finalLines.push(`  Security Score: ${newScore} / 45`);
-              } else {
-                finalLines.push(line);
-              }
-              continue;
-            }
-            if (
-              line.match(
-                /^\s*Results:\s*\d+\s*passed,\s*\d+\s*warnings,\s*\d+\s*issues/,
-              )
-            ) {
-              const match = line.match(
-                /Results:\s*(\d+)\s*passed,\s*(\d+)\s*warnings,\s*(\d+)\s*issues/,
-              );
-              if (match) {
-                const newPassed = parseInt(match[1], 10) - policyPasses;
-                const newWarnings = parseInt(match[2], 10) - policyWarnings;
-                const newIssues = parseInt(match[3], 10) - policyIssues;
-                finalLines.push(
-                  `  Results: ${newPassed} passed, ${newWarnings} warnings, ${newIssues} issues`,
-                );
-              } else {
-                finalLines.push(line);
-              }
-              continue;
-            }
-            if (line.match(/^\s*\d+\s*issue\(s\)\s*found/)) {
-              const match = line.match(/^\s*(\d+)\s*issue\(s\)/);
-              if (match) {
-                const newIssues = parseInt(match[1], 10) - policyIssues;
-                finalLines.push(
-                  `  ${newIssues} issue(s) found. Fix these before shipping.`,
-                );
-              } else {
-                finalLines.push(line);
-              }
-              continue;
-            }
-            if (
-              line.includes("Run: npx secure-repo init") &&
-              line.includes("adds missing policy files")
-            ) {
-              continue;
-            }
-            if (line.includes("Want deeper coverage? The pro pack adds")) {
-              i += 2; // skip this and next 2 lines
-              continue;
-            }
-            if (line.includes("────────────────────────────────────")) {
-              // there are multiple of these, we drop the one used for the pro upsell if the previous lines were the pro upsell
-              // To be safe we'll leave it, the upsell message is dropped.
-              // Actually, the previous line is "Run: npx secure-repo init", then "────────────────────────────────────", then "Want deeper coverage?"
-              // So if we see "────────────────────────────────────" and the NEXT line is "Want deeper coverage?", we skip both.
-              if (
-                i + 1 < outputLines.length &&
-                outputLines[i + 1].includes(
-                  "Want deeper coverage? The pro pack adds",
-                )
-              ) {
-                i += 3;
-                continue;
-              }
-            }
-            finalLines.push(line);
-          }
-          const modifiedStdout = finalLines.join("\n");
-          const output = `--- Security Audit Log ---\nDate: ${new Date().toISOString()}\n\n${modifiedStdout}\n${stderr ? "Errors/Warnings:\n" + stderr : ""}`;
-          fs.writeFileSync(logPath, output);
-          // We adjust the error logging checking new issues count
-          const totalNewIssuesRegex = /^\s*(\d+)\s*issue\(s\)\s*found/m;
-          const matchNewIssues = modifiedStdout.match(totalNewIssuesRegex);
-          let hasIssues = error !== null;
-          if (matchNewIssues) {
-            hasIssues = parseInt(matchNewIssues[1], 10) > 0;
-          }
-          if (hasIssues) {
-            console.log(
-              `⚠️ Security audit found issues (or returned an error code).`,
-            );
-            console.log(`👉 See ${logPath} for details.\n`);
-          } else {
-            console.log(
-              `✅ Security audit clean. Results saved to: ${logPath}\n`,
-            );
-          }
-        });
-      }
-    });
-  })
-  .on("error", (err) => {
-    console.error("\n❌ Network error fetching file:", err.message);
-    process.exit(1);
-  });
+#!/usr/bin/env node
+/**
+ * yeknal CLI
+ * - Fetches markdown templates (security, design, seo).
+ * - Syncs skill folders into local AI agent directories (skills command).
+ */
+const fs = require("fs");
+const os = require("os");
+const path = require("path");
+const https = require("https");
+const { exec } = require("child_process");
+const fsp = fs.promises;
+// ==========================================
+// USER CONFIGURATION
+// ==========================================
+const GITHUB_USERNAME = "tryraisins";
+const GITHUB_REPO = "MD_Files";
+const BRANCH = "main";
+// ==========================================
+const RAW_BASE_URL = `https://raw.githubusercontent.com/${GITHUB_USERNAME}/${GITHUB_REPO}/${BRANCH}`;
+const API_BASE = `https://api.github.com/repos/${GITHUB_USERNAME}/${GITHUB_REPO}`;
+const GITHUB_TOKEN = process.env.YEKNAL_GITHUB_TOKEN || process.env.GITHUB_TOKEN || "";
+const EXCLUDED_SKILL_FOLDERS = new Set(["Design", "Security", "Security_Raw", "SEO"]);
+const singleFileConfigs = {
+  security: {
+    remotePath: "Security/Security-Master.md",
+    localName: "Security-Master.md",
+  },
+  design: {
+    remotePath: "Design/SKILL.md",
+    localName: "Design.md",
+  },
+  seo: {
+    remotePath: "SEO/seo-improvement-prompt.md",
+    localName: "SEO-Prompt.md",
+  },
+};
+function usage() {
+  console.log("\nUsage:");
+  console.log("  npx yeknal security");
+  console.log("  npx yeknal design");
+  console.log("  npx yeknal seo");
+  console.log("  npx yeknal skills\n");
+}
+function isHttpSuccess(statusCode) {
+  return typeof statusCode === "number" && statusCode >= 200 && statusCode < 300;
+}
+function getRequestHeaders(url) {
+  const isApiRequest = url.includes("api.github.com");
+  const headers = {
+    "User-Agent": "yeknal-cli",
+    Accept: isApiRequest ? "application/vnd.github+json" : "*/*",
+  };
+  if (GITHUB_TOKEN) {
+    headers.Authorization = `Bearer ${GITHUB_TOKEN}`;
+  }
+  return headers;
+}
+function requestBuffer(url, redirectsRemaining = 5) {
+  return new Promise((resolve, reject) => {
+    const req = https.get(
+      url,
+      {
+        headers: getRequestHeaders(url),
+      },
+      (res) => {
+        const statusCode = res.statusCode || 0;
+        if ([301, 302, 303, 307, 308].includes(statusCode) && res.headers.location) {
+          if (redirectsRemaining <= 0) {
+            reject(new Error(`Too many redirects requesting ${url}`));
+            return;
+          }
+          res.resume();
+          const nextUrl = new URL(res.headers.location, url).toString();
+          requestBuffer(nextUrl, redirectsRemaining - 1).then(resolve).catch(reject);
+          return;
+        }
+        const chunks = [];
+        res.on("data", (chunk) => chunks.push(chunk));
+        res.on("end", () => {
+          resolve({
+            statusCode,
+            body: Buffer.concat(chunks),
+          });
+        });
+      },
+    );
+    req.on("error", reject);
+  });
+}
+async function fetchJson(url) {
+  const response = await requestBuffer(url);
+  if (!isHttpSuccess(response.statusCode)) {
+    const bodyText = response.body.toString("utf8");
+    if (response.statusCode === 403 && bodyText.includes("API rate limit exceeded")) {
+      throw new Error(
+        `GitHub API rate limit exceeded.\n` +
+          `Set an auth token to increase limits:\n` +
+          `  PowerShell: $env:YEKNAL_GITHUB_TOKEN=\"<your_token>\"\n` +
+          `  Bash/zsh:  export YEKNAL_GITHUB_TOKEN=\"<your_token>\"\n` +
+          `Then rerun: npx yeknal skills`,
+      );
+    }
+    throw new Error(`GitHub API request failed (${response.statusCode}): ${url}\n${bodyText}`);
+  }
+  return JSON.parse(response.body.toString("utf8"));
+}
+async function downloadUrlToFile(url, localPath) {
+  const response = await requestBuffer(url);
+  if (!isHttpSuccess(response.statusCode)) {
+    throw new Error(`Failed to download file (${response.statusCode}): ${url}`);
+  }
+  await fsp.mkdir(path.dirname(localPath), { recursive: true });
+  await fsp.writeFile(localPath, response.body);
+}
+function buildGitTreeApiUrl() {
+  return `${API_BASE}/git/trees/${encodeURIComponent(BRANCH)}?recursive=1`;
+}
+async function fetchRepoTree() {
+  const data = await fetchJson(buildGitTreeApiUrl());
+  if (!data || !Array.isArray(data.tree)) {
+    throw new Error("GitHub tree response was missing expected data.");
+  }
+  return data.tree;
+}
+function discoverSkillFolders(repoTree) {
+  const topLevelDirs = new Set();
+  const dirsWithSkill = new Set();
+  for (const entry of repoTree) {
+    if (entry.type === "tree" && typeof entry.path === "string" && !entry.path.includes("/")) {
+      if (!EXCLUDED_SKILL_FOLDERS.has(entry.path)) {
+        topLevelDirs.add(entry.path);
+      }
+      continue;
+    }
+    if (entry.type === "blob" && typeof entry.path === "string") {
+      const parts = entry.path.split("/");
+      if (parts.length === 2 && parts[1] === "SKILL.md" && !EXCLUDED_SKILL_FOLDERS.has(parts[0])) {
+        dirsWithSkill.add(parts[0]);
+      }
+    }
+  }
+  return Array.from(topLevelDirs)
+    .filter((dir) => dirsWithSkill.has(dir))
+    .sort((a, b) => a.localeCompare(b));
+}
+function listFilesForFolder(repoTree, folderName) {
+  const prefix = `${folderName}/`;
+  return repoTree
+    .filter((entry) => entry.type === "blob" && typeof entry.path === "string")
+    .map((entry) => entry.path)
+    .filter((repoPath) => repoPath.startsWith(prefix))
+    .sort((a, b) => a.localeCompare(b));
+}
+function buildRawFileUrl(repoFilePath) {
+  const encodedPath = repoFilePath.split("/").map((part) => encodeURIComponent(part)).join("/");
+  return `${RAW_BASE_URL}/${encodedPath}`;
+}
+async function copyDirRecursive(sourceDir, targetDir) {
+  await fsp.mkdir(targetDir, { recursive: true });
+  const entries = await fsp.readdir(sourceDir, { withFileTypes: true });
+  for (const entry of entries) {
+    const sourcePath = path.join(sourceDir, entry.name);
+    const targetPath = path.join(targetDir, entry.name);
+    if (entry.isDirectory()) {
+      await copyDirRecursive(sourcePath, targetPath);
+      continue;
+    }
+    if (entry.isFile()) {
+      await fsp.copyFile(sourcePath, targetPath);
+    }
+  }
+}
+function execCommand(command) {
+  return new Promise((resolve, reject) => {
+    exec(command, (error, stdout, stderr) => {
+      if (error) {
+        reject(new Error(stderr || error.message));
+        return;
+      }
+      resolve({ stdout, stderr });
+    });
+  });
+}
+async function isDirectory(filePath) {
+  try {
+    const stats = await fsp.stat(filePath);
+    return stats.isDirectory();
+  } catch {
+    return false;
+  }
+}
+async function discoverLocalSkillFolders(sourceRoot) {
+  const entries = await fsp.readdir(sourceRoot, { withFileTypes: true });
+  const folders = [];
+  for (const entry of entries) {
+    if (!entry.isDirectory()) {
+      continue;
+    }
+    const folderName = entry.name;
+    if (EXCLUDED_SKILL_FOLDERS.has(folderName)) {
+      continue;
+    }
+    const skillFilePath = path.join(sourceRoot, folderName, "SKILL.md");
+    if (await isDirectory(path.join(sourceRoot, folderName))) {
+      try {
+        await fsp.access(skillFilePath, fs.constants.F_OK);
+        folders.push(folderName);
+      } catch {
+        // not a skill folder
+      }
+    }
+  }
+  return folders.sort((a, b) => a.localeCompare(b));
+}
+async function downloadSkillsFromGit(tempRoot, skillFolders, repoTree) {
+  for (const folder of skillFolders) {
+    const localFolder = path.join(tempRoot, folder);
+    const folderFiles = listFilesForFolder(repoTree, folder);
+    await fsp.mkdir(localFolder, { recursive: true });
+    for (const repoPath of folderFiles) {
+      const relativePath = repoPath.slice(folder.length + 1);
+      const destinationPath = path.join(localFolder, relativePath);
+      await downloadUrlToFile(buildRawFileUrl(repoPath), destinationPath);
+    }
+  }
+}
+async function stageSkillsFromGitClone(tempRoot) {
+  const cloneRoot = await fsp.mkdtemp(path.join(os.tmpdir(), "yeknal-repo-"));
+  const repoPath = path.join(cloneRoot, "repo");
+  const cloneUrl = `https://github.com/${GITHUB_USERNAME}/${GITHUB_REPO}.git`;
+  const cloneCommand = `git clone --depth 1 --branch ${BRANCH} ${cloneUrl} "${repoPath}"`;
+  try {
+    await execCommand(cloneCommand);
+    const skillFolders = await discoverLocalSkillFolders(repoPath);
+    if (skillFolders.length === 0) {
+      throw new Error("No skill folders were discovered from the cloned repository.");
+    }
+    for (const folder of skillFolders) {
+      const sourceFolder = path.join(repoPath, folder);
+      const destinationFolder = path.join(tempRoot, folder);
+      await copyDirRecursive(sourceFolder, destinationFolder);
+    }
+    return skillFolders;
+  } finally {
+    await fsp.rm(cloneRoot, { recursive: true, force: true });
+  }
+}
+async function resolveSkillTargets() {
+  const home = os.homedir();
+  const targetSpecs = [
+    {
+      label: "Gemini Antigravity",
+      envVar: "YEKNAL_GEMINI_PARENT",
+      defaults: [path.join(home, ".gemini", "antigravity"), path.join(home, ".antigravity")],
+    },
+    {
+      label: "Codex",
+      envVar: "YEKNAL_CODEX_PARENT",
+      defaults: [path.join(home, ".codex")],
+    },
+    {
+      label: "Claude",
+      envVar: "YEKNAL_CLAUDE_PARENT",
+      defaults: [path.join(home, ".claude")],
+    },
+  ];
+  const seenParents = new Set();
+  const targets = [];
+  for (const spec of targetSpecs) {
+    const overridePath = process.env[spec.envVar];
+    const candidates = overridePath ? [path.resolve(overridePath)] : spec.defaults;
+    for (const candidateParent of candidates) {
+      if (seenParents.has(candidateParent)) {
+        continue;
+      }
+      if (await isDirectory(candidateParent)) {
+        seenParents.add(candidateParent);
+        targets.push({
+          label: spec.label,
+          parentPath: candidateParent,
+          skillsPath: path.join(candidateParent, "skills"),
+        });
+      }
+    }
+  }
+  return targets;
+}
+async function runSkillsCommand() {
+  console.log("\nFetching available skill folders from GitHub...");
+  const targets = await resolveSkillTargets();
+  if (targets.length === 0) {
+    console.log("No supported parent folders found. Nothing to sync.");
+    console.log("Expected one or more of:");
+    console.log("  ~/.gemini/antigravity or ~/.antigravity");
+    console.log("  ~/.codex");
+    console.log("  ~/.claude\n");
+    return;
+  }
+  console.log(`Detected ${targets.length} target parent folder(s):`);
+  for (const target of targets) {
+    console.log(`  - ${target.label}: ${target.parentPath}`);
+  }
+  const tempRoot = await fsp.mkdtemp(path.join(os.tmpdir(), "yeknal-skills-"));
+  try {
+    let skillFolders = [];
+    let sourceLabel = "GitHub API + raw file download";
+    try {
+      const repoTree = await fetchRepoTree();
+      skillFolders = discoverSkillFolders(repoTree);
+      if (skillFolders.length === 0) {
+        throw new Error("No skill folders were discovered from the GitHub repository.");
+      }
+      await downloadSkillsFromGit(tempRoot, skillFolders, repoTree);
+    } catch (error) {
+      const message = error && error.message ? error.message : String(error);
+      if (!message.includes("GitHub API rate limit exceeded")) {
+        throw error;
+      }
+      console.log("\nGitHub API rate-limited. Falling back to git clone source download...");
+      skillFolders = await stageSkillsFromGitClone(tempRoot);
+      sourceLabel = "git clone fallback";
+    }
+    console.log(`\nSkill folders to sync (${skillFolders.length}) via ${sourceLabel}:`);
+    console.log(`  ${skillFolders.join(", ")}`);
+    let hadFailure = false;
+    for (const target of targets) {
+      try {
+        await fsp.mkdir(target.skillsPath, { recursive: true });
+        let copiedCount = 0;
+        for (const folder of skillFolders) {
+          const sourceFolder = path.join(tempRoot, folder);
+          const destinationFolder = path.join(target.skillsPath, folder);
+          await fsp.rm(destinationFolder, { recursive: true, force: true });
+          await copyDirRecursive(sourceFolder, destinationFolder);
+          copiedCount += 1;
+        }
+        console.log(
+          `\n[ok] ${target.label}: synced ${copiedCount} folder(s) into ${target.skillsPath}`,
+        );
+      } catch (error) {
+        hadFailure = true;
+        console.error(`\n[error] ${target.label}: ${error.message}`);
+      }
+    }
+    if (hadFailure) {
+      process.exitCode = 1;
+      console.error("\nSync completed with errors.");
+    } else {
+      console.log("\nSkills sync completed successfully.");
+    }
+  } finally {
+    await fsp.rm(tempRoot, { recursive: true, force: true });
+  }
+}
+function runSecurityAudit() {
+  return new Promise((resolve) => {
+    console.log("Running security audit (this may take a moment)...");
+    exec("npx secure-repo audit", (error, stdout, stderr) => {
+      const logPath = path.join(process.cwd(), "security-audit.log");
+      const outputLines = stdout.split("\n");
+      const finalLines = [];
+      let inPolicySection = false;
+      let policyPasses = 0;
+      let policyWarnings = 0;
+      let policyIssues = 0;
+      let policyPoints = 0;
+      for (let i = 0; i < outputLines.length; i++) {
+        const line = outputLines[i];
+        if (line.match(/^\s*Policy files:/)) {
+          inPolicySection = true;
+          continue;
+        }
+        if (inPolicySection) {
+          if (
+            line.match(/^\s*Environment files:/) ||
+            line.match(/^\s*Secret scanning:/) ||
+            line.match(/^\s*Configuration:/)
+          ) {
+            inPolicySection = false;
+          } else {
+            if (line.includes("[FAIL]")) policyIssues += 1;
+            if (line.includes("[warn]")) policyWarnings += 1;
+            if (line.includes("[pass]")) {
+              policyPasses += 1;
+              if (
+                line.includes("SECURITY.md") ||
+                line.includes("AUTH.md") ||
+                line.includes("API.md") ||
+                line.includes("ENV_VARIABLES.md")
+              ) {
+                policyPoints += 10;
+              } else {
+                policyPoints += 5;
+              }
+            }
+            continue;
+          }
+        }
+        if (line.match(/^\s*Security Score:\s*\d+\s*\/\s*\d+/)) {
+          const match = line.match(/^\s*Security Score:\s*(\d+)/);
+          if (match) {
+            const oldScore = parseInt(match[1], 10);
+            const newScore = oldScore - policyPoints;
+            finalLines.push(`  Security Score: ${newScore} / 45`);
+          } else {
+            finalLines.push(line);
+          }
+          continue;
+        }
+        if (line.match(/^\s*Results:\s*\d+\s*passed,\s*\d+\s*warnings,\s*\d+\s*issues/)) {
+          const match = line.match(
+            /Results:\s*(\d+)\s*passed,\s*(\d+)\s*warnings,\s*(\d+)\s*issues/,
+          );
+          if (match) {
+            const newPassed = parseInt(match[1], 10) - policyPasses;
+            const newWarnings = parseInt(match[2], 10) - policyWarnings;
+            const newIssues = parseInt(match[3], 10) - policyIssues;
+            finalLines.push(
+              `  Results: ${newPassed} passed, ${newWarnings} warnings, ${newIssues} issues`,
+            );
+          } else {
+            finalLines.push(line);
+          }
+          continue;
+        }
+        if (line.match(/^\s*\d+\s*issue\(s\)\s*found/)) {
+          const match = line.match(/^\s*(\d+)\s*issue\(s\)/);
+          if (match) {
+            const newIssues = parseInt(match[1], 10) - policyIssues;
+            finalLines.push(`  ${newIssues} issue(s) found. Fix these before shipping.`);
+          } else {
+            finalLines.push(line);
+          }
+          continue;
+        }
+        if (line.includes("Run: npx secure-repo init") && line.includes("adds missing policy files")) {
+          continue;
+        }
+        if (line.includes("Want deeper coverage? The pro pack adds")) {
+          i += 2;
+          continue;
+        }
+        finalLines.push(line);
+      }
+      const modifiedStdout = finalLines.join("\n");
+      const output = `--- Security Audit Log ---\nDate: ${new Date().toISOString()}\n\n${modifiedStdout}\n${
+        stderr ? `Errors/Warnings:\n${stderr}` : ""
+      }`;
+      fs.writeFileSync(logPath, output);
+      const totalNewIssuesRegex = /^\s*(\d+)\s*issue\(s\)\s*found/m;
+      const matchNewIssues = modifiedStdout.match(totalNewIssuesRegex);
+      let hasIssues = error !== null;
+      if (matchNewIssues) {
+        hasIssues = parseInt(matchNewIssues[1], 10) > 0;
+      }
+      if (hasIssues) {
+        console.log("Security audit found issues (or returned an error code).");
+        console.log(`See ${logPath} for details.\n`);
+      } else {
+        console.log(`Security audit clean. Results saved to: ${logPath}\n`);
+      }
+      resolve();
+    });
+  });
+}
+async function runSingleFileTemplateCommand(category) {
+  const config = singleFileConfigs[category];
+  const fileUrl = `${RAW_BASE_URL}/${config.remotePath}`;
+  const localDest = path.join(process.cwd(), config.localName);
+  console.log(`\nFetching ${category} guidelines...`);
+  await downloadUrlToFile(fileUrl, localDest);
+  console.log(`Saved to: ${localDest}\n`);
+  if (category === "security") {
+    await runSecurityAudit();
+  }
+}
+async function main() {
+  const args = process.argv.slice(2);
+  const command = args[0] ? args[0].toLowerCase() : null;
+  if (!command) {
+    console.error("Error: Missing command.");
+    usage();
+    process.exit(1);
+  }
+  if (command === "skills") {
+    await runSkillsCommand();
+    return;
+  }
+  if (singleFileConfigs[command]) {
+    await runSingleFileTemplateCommand(command);
+    return;
+  }
+  console.error(`Error: Invalid command "${command}".`);
+  usage();
+  process.exit(1);
+}
+main().catch((error) => {
+  console.error(`\nError: ${error.message}`);
+  process.exit(1);
+});

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "yeknal",
-  "version": "1.0.5",
-  "description": "CLI to fetch MD templates for security, design, and seo",
+  "version": "1.0.8",
+  "description": "CLI to fetch markdown templates and sync AI agent skills",
   "main": "bin/yeknal.js",
   "bin": {
     "yeknal": "bin/yeknal.js"
@@ -9,7 +9,9 @@
   "keywords": [
     "cli",
     "markdown",
-    "templates"
+    "templates",
+    "skills",
+    "ai-agents"
   ],
   "author": "nubiaville",
   "license": "ISC",