aion-evolve 0.2.1__tar.gz

aion_evolve-0.2.1/.aion.yaml

@@ -0,0 +1,4 @@
+provider: openai
+model: gpt-4.1
+ignore_paths:
+  - tests/*

aion_evolve-0.2.1/.github/dependabot.yml

@@ -0,0 +1,19 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    groups:
+      github-actions:
+        patterns:
+          - "*"
+
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    groups:
+      pip:
+        patterns:
+          - "*"

aion_evolve-0.2.1/.github/workflows/ci.yml

@@ -0,0 +1,54 @@
+name: CI
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  test:
+    name: Unit tests (Python ${{ matrix.python-version }})
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        python-version: ["3.11", "3.12", "3.13", "3.14"]
+
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405  # v6.2.0
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Install uv
+        run: python -m pip install uv
+
+      - name: Install dependencies
+        run: uv sync --group dev
+
+      - name: Run unit tests
+        run: uv run pytest tests/unit
+
+  build:
+    name: Build package
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405  # v6.2.0
+        with:
+          python-version: "3.11"
+
+      - name: Install build tooling
+        run: python -m pip install build
+
+      - name: Build sdist and wheel
+        run: python -m build
+

aion_evolve-0.2.1/.github/workflows/docs.yml

@@ -0,0 +1,32 @@
+name: Deploy Documentation
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - "docs/**"
+      - "mkdocs.yml"
+      - ".github/workflows/docs.yml"
+  workflow_dispatch:
+
+permissions:
+  contents: write
+
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405  # v6.2.0
+        with:
+          python-version: "3.12"
+
+      - name: Install MkDocs
+        run: pip install mkdocs==1.6.1 mkdocs-material==9.7.6 pymdown-extensions==10.16.1
+
+      - name: Build and deploy
+        run: mkdocs gh-deploy --force

aion_evolve-0.2.1/.github/workflows/publish.yml

@@ -0,0 +1,54 @@
+name: Publish to PyPI
+
+on:
+  push:
+    tags:
+      - "v*"
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+jobs:
+  build:
+    name: Build distribution
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405  # v6.2.0
+        with:
+          python-version: "3.11"
+
+      - name: Install build
+        run: python -m pip install build
+
+      - name: Build sdist and wheel
+        run: python -m build
+
+      - name: Upload build artifacts
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f  # v7.0.0
+        with:
+          name: dist
+          path: dist/
+
+  publish:
+    name: Publish to PyPI
+    needs: build
+    runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/project/aion/
+    permissions:
+      id-token: write
+    steps:
+      - name: Download build artifacts
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c  # v8.0.1
+        with:
+          name: dist
+          path: dist/
+
+      - name: Publish to PyPI
+        uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e  # release/v1 @ 2025-03-25

aion_evolve-0.2.1/.github/workflows/release-drafter.yml

@@ -0,0 +1,19 @@
+name: Release Drafter
+
+on:
+  push:
+    branches:
+      - main
+  workflow_dispatch:
+
+permissions:
+  contents: write
+  pull-requests: read
+
+jobs:
+  update_release_draft:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: release-drafter/release-drafter@139054aeaa9adc52ab36ddf67437541f039b88e2  # v7.1.1
+        with:
+          config-name: github:shenxianpeng/.github:/.github/release-drafter.yml

aion_evolve-0.2.1/.gitignore

@@ -0,0 +1,12 @@
+__pycache__/
+.pytest_cache/
+.aicodeaudit-context.json
+.aion-context.json
+.coverage
+*.pyc
+
+src/aicodeaudit.egg-info/
+src/aion.egg-info/
+src/aion_evolve.egg-info/
+dist/
+site/

aion_evolve-0.2.1/.python-version

@@ -0,0 +1 @@
+3.11

aion_evolve-0.2.1/CLAUDE.md

@@ -0,0 +1,18 @@
+
+## Skill routing
+
+When the user's request matches an available skill, ALWAYS invoke it using the Skill
+tool as your FIRST action. Do NOT answer directly, do NOT use other tools first.
+The skill has specialized workflows that produce better results than ad-hoc answers.
+
+Key routing rules:
+- Product ideas, "is this worth building", brainstorming → invoke office-hours
+- Bugs, errors, "why is this broken", 500 errors → invoke investigate
+- Ship, deploy, push, create PR → invoke ship
+- QA, test the site, find bugs → invoke qa
+- Code review, check my diff → invoke review
+- Update docs after shipping → invoke document-release
+- Weekly retro → invoke retro
+- Design system, brand → invoke design-consultation
+- Visual audit, design polish → invoke design-review
+- Architecture review → invoke plan-eng-review

aion_evolve-0.2.1/PKG-INFO

@@ -0,0 +1,89 @@
+Metadata-Version: 2.4
+Name: aion-evolve
+Version: 0.2.1
+Summary: AION: The Self-Evolving Code Engine. Code Once, Live Forever.
+Project-URL: Homepage, https://github.com/shenxianpeng/aion
+Project-URL: Documentation, https://shenxianpeng.github.io/aion/
+Project-URL: Bug Tracker, https://github.com/shenxianpeng/aion/issues
+Requires-Python: >=3.11
+Description-Content-Type: text/markdown
+Requires-Dist: anthropic>=0.86.0
+Requires-Dist: instructor>=1.14.5
+Requires-Dist: openai>=2.30.0
+Requires-Dist: pydantic>=2.11.0
+Requires-Dist: rich>=14.3.3
+Requires-Dist: semgrep>=1.156.0
+Requires-Dist: typer>=0.23.1
+
+# AION
+
+[![Docs](https://img.shields.io/badge/docs-github%20pages-blue)](https://shenxianpeng.github.io/aion/)
+
+> **Code Once, Live Forever.**
+
+`AION` is The Self-Evolving Code Engine — designed to end technical debt and keep your codebase in a perpetual state of health.
+
+AI scans your code continuously, automatically rewrites outdated syntax and risky logic, and delivers an evolved codebase every day. Instead of treating every file in isolation, it builds a lightweight profile of the existing repository, runs `semgrep` as a fast first pass, and only asks the LLM to investigate files that have concrete risk signals or meaningful context gaps. The main differentiator is context-gap reporting, for example: "this file uses `sqlite3`, but the rest of the project uses `sqlalchemy` sessions."
+
+## Current MVP
+
+- Python-only scanning
+- Project context extraction via `ast`
+- `semgrep --config p/python` integration
+- Anthropic-backed structured findings
+- Anthropic and OpenAI providers
+- AI-generated file detection via file markers, git history, or explicit `--ai-generated`
+- Rich terminal output and JSON output
+
+## Install
+
+```bash
+uv sync
+```
+
+## Usage
+
+```bash
+export ANTHROPIC_API_KEY=your_key
+uv run aion scan ./path/to/project
+uv run aion scan ./path/to/project --ai-generated ./path/to/project/generated_file.py
+uv run aion scan ./path/to/project --output json
+export OPENAI_API_KEY=your_key
+uv run aion scan ./path/to/project --provider openai
+```
+
+## Config File
+
+Create `.aion.yaml` in the project root:
+
+```yaml
+provider: openai
+model: gpt-4.1
+ignore_paths:
+  - tests/*
+  - scripts/generated_*.py
+```
+
+CLI flags still override config values.
+
+## Notes
+
+- If `semgrep` is unavailable, the tool degrades to LLM-only mode and prints a warning.
+- If no AI-generated markers are found, the tool scans all Python files and prints a warning.
+- Context extraction cache is stored at `~/.aion-context.json`.
+- Provider-specific defaults: Anthropic uses `claude-3-5-sonnet-latest`; OpenAI uses `gpt-4.1` unless `--model` is set.
+
+## Tests
+
+```bash
+uv run pytest tests/unit
+uv run pytest -m eval tests/eval
+```
+
+## Documentation
+
+Full documentation is published with GitHub Pages:
+
+- English: `docs/en/`
+- 中文: `docs/zh/`
+- Site URL: `https://shenxianpeng.github.io/aion/`

aion_evolve-0.2.1/README.md

@@ -0,0 +1,72 @@
+# AION
+
+[![Docs](https://img.shields.io/badge/docs-github%20pages-blue)](https://shenxianpeng.github.io/aion/)
+
+> **Code Once, Live Forever.**
+
+`AION` is The Self-Evolving Code Engine — designed to end technical debt and keep your codebase in a perpetual state of health.
+
+AI scans your code continuously, automatically rewrites outdated syntax and risky logic, and delivers an evolved codebase every day. Instead of treating every file in isolation, it builds a lightweight profile of the existing repository, runs `semgrep` as a fast first pass, and only asks the LLM to investigate files that have concrete risk signals or meaningful context gaps. The main differentiator is context-gap reporting, for example: "this file uses `sqlite3`, but the rest of the project uses `sqlalchemy` sessions."
+
+## Current MVP
+
+- Python-only scanning
+- Project context extraction via `ast`
+- `semgrep --config p/python` integration
+- Anthropic-backed structured findings
+- Anthropic and OpenAI providers
+- AI-generated file detection via file markers, git history, or explicit `--ai-generated`
+- Rich terminal output and JSON output
+
+## Install
+
+```bash
+uv sync
+```
+
+## Usage
+
+```bash
+export ANTHROPIC_API_KEY=your_key
+uv run aion scan ./path/to/project
+uv run aion scan ./path/to/project --ai-generated ./path/to/project/generated_file.py
+uv run aion scan ./path/to/project --output json
+export OPENAI_API_KEY=your_key
+uv run aion scan ./path/to/project --provider openai
+```
+
+## Config File
+
+Create `.aion.yaml` in the project root:
+
+```yaml
+provider: openai
+model: gpt-4.1
+ignore_paths:
+  - tests/*
+  - scripts/generated_*.py
+```
+
+CLI flags still override config values.
+
+## Notes
+
+- If `semgrep` is unavailable, the tool degrades to LLM-only mode and prints a warning.
+- If no AI-generated markers are found, the tool scans all Python files and prints a warning.
+- Context extraction cache is stored at `~/.aion-context.json`.
+- Provider-specific defaults: Anthropic uses `claude-3-5-sonnet-latest`; OpenAI uses `gpt-4.1` unless `--model` is set.
+
+## Tests
+
+```bash
+uv run pytest tests/unit
+uv run pytest -m eval tests/eval
+```
+
+## Documentation
+
+Full documentation is published with GitHub Pages:
+
+- English: `docs/en/`
+- 中文: `docs/zh/`
+- Site URL: `https://shenxianpeng.github.io/aion/`

aion_evolve-0.2.1/docs/en/configuration.md

@@ -0,0 +1,33 @@
+# Configuration
+
+Place a `.aion.yaml` file in the target repository root.
+
+## Example
+
+```yaml
+provider: openai
+model: gpt-4.1
+ignore_paths:
+  - tests/*
+  - scripts/generated_*.py
+```
+
+## Fields
+
+| Field | Type | Description |
+|-------|------|-------------|
+| `provider` | string | `anthropic` or `openai` |
+| `model` | string | Explicit model name |
+| `ignore_paths` | list | Glob patterns to skip during scanning |
+
+## Override order
+
+CLI flags take precedence over `.aion.yaml`.
+
+## Cache
+
+Context extraction results are cached at:
+
+```text
+~/.aion-context.json
+```

aion_evolve-0.2.1/docs/en/how-it-works.md

@@ -0,0 +1,55 @@
+# How It Works
+
+AION is built as a staged pipeline.
+
+## 1. Identify target files
+
+The CLI resolves Python files from the input path and excludes common directories such
+as `.git`, `.venv`, `node_modules`, and `__pycache__`.
+
+It then narrows the scan to likely AI-generated files using:
+
+- file markers such as `Generated by`
+- Git history hints such as Copilot or Cursor signatures
+- explicit `--ai-generated` targets
+
+If no marker is found, it warns and scans all Python files.
+
+## 2. Extract repository context
+
+The context extractor samples the repository and builds a lightweight profile:
+
+- imports
+- auth decorators
+- database access patterns
+- function names
+- likely ORM and HTTP client usage
+
+That repository profile is what makes context-gap reporting possible.
+
+## 3. Run Semgrep first
+
+If `semgrep` is installed, AION runs it as a fast initial pass and collects
+structured findings from `p/python`.
+
+## 4. Escalate to LLM analysis only when needed
+
+The LLM is used when:
+
+- `semgrep` found something
+- there are repository-specific fallback signals
+- `semgrep` is unavailable
+
+This keeps analysis more targeted than sending every file to the model.
+
+## 5. Report findings
+
+Each finding includes:
+
+- issue summary
+- severity
+- line number
+- context gap
+- suggested fix
+
+Output is available in rich terminal format or JSON.

aion_evolve-0.2.1/docs/en/index.md

@@ -0,0 +1,37 @@
+# AION
+
+**Code Once, Live Forever.**
+
+AION is The Self-Evolving Code Engine — designed to end technical debt and keep your codebase in a perpetual state of health.
+
+Instead of treating every file in isolation, it builds a lightweight profile of the
+existing repository, uses `semgrep` as a fast first pass, and only asks the LLM to
+investigate files that have concrete risk signals or meaningful context gaps.
+
+## Why this exists
+
+AI-generated code often looks locally reasonable while drifting away from project
+conventions in ways that increase security risk:
+
+- Raw `sqlite3` usage in a codebase that otherwise standardizes on ORM sessions
+- Missing auth decorators in handlers that should follow an established access pattern
+- Hardcoded secrets where the rest of the repository loads credentials from the environment
+
+AION is designed to catch that mismatch between a generated file and the
+rest of the repository.
+
+## Core capabilities
+
+- Scans Python files and repositories from the command line
+- Detects AI-generated files via markers, Git history, or explicit targeting
+- Extracts repository context using static analysis
+- Runs `semgrep --config p/python` as a fast rule-based pass
+- Uses an LLM to explain security findings in repository context
+- Reports context gaps, fixes, and JSON output for automation
+
+## Read next
+
+- [Installation](installation.md)
+- [Usage](usage.md)
+- [Configuration](configuration.md)
+- [How It Works](how-it-works.md)

aion_evolve-0.2.1/docs/en/installation.md

@@ -0,0 +1,35 @@
+# Installation
+
+## Requirements
+
+- Python 3.11 or newer
+- `uv` for environment management
+- Optional: `semgrep` for the rule-based first pass
+
+## Local setup
+
+```bash
+git clone https://github.com/shenxianpeng/aion.git
+cd aion
+uv sync --dev
+```
+
+## API keys
+
+Choose at least one provider:
+
+```bash
+export ANTHROPIC_API_KEY=your_key
+```
+
+or
+
+```bash
+export OPENAI_API_KEY=your_key
+```
+
+## Verify the CLI
+
+```bash
+uv run aion --help
+```

aion_evolve-0.2.1/docs/en/usage.md

@@ -0,0 +1,42 @@
+# Usage
+
+## Scan a repository
+
+```bash
+uv run aion scan ./path/to/project
+```
+
+## Scan known AI-generated files only
+
+```bash
+uv run aion scan ./path/to/project \
+  --ai-generated ./path/to/project/generated_file.py
+```
+
+## Use OpenAI instead of Anthropic
+
+```bash
+uv run aion scan ./path/to/project --provider openai
+```
+
+## Emit JSON
+
+```bash
+uv run aion scan ./path/to/project --output json
+```
+
+## Verbose mode
+
+```bash
+uv run aion scan ./path/to/project --verbose
+```
+
+Verbose mode prints the extracted context profile, Semgrep findings, fallback reasons,
+and token estimates to stderr.
+
+## Typical workflow
+
+1. Point the tool at a repository or a generated file.
+2. Let it identify candidate Python files.
+3. Review warnings about AI-generated detection or missing `semgrep`.
+4. Inspect context-aware findings and suggested fixes.

aion_evolve-0.2.1/docs/index.md

@@ -0,0 +1,32 @@
+---
+hide:
+  - navigation
+  - toc
+---
+
+<div class="aca-hero">
+  <div class="aca-hero__eyebrow">self-evolving · end technical debt · code once, live forever</div>
+  <div class="aca-hero__headline">
+    AION
+    <span class="aca-accent">The Self-Evolving Code Engine.</span>
+  </div>
+  <p class="aca-hero__sub">
+    AI scans your code continuously, automatically rewrites outdated syntax and risky logic,
+    and delivers an evolved codebase every day — keeping your repository perpetually healthy.
+  </p>
+  <div class="aca-hero__facts">
+    <span class="aca-hero__fact">Python-first</span>
+    <span class="aca-hero__fact">Semgrep + LLM</span>
+    <span class="aca-hero__fact">Context-gap reporting</span>
+    <span class="aca-hero__fact">CLI and JSON output</span>
+  </div>
+  <div class="aca-cta-group">
+    <a class="aca-btn aca-btn-primary" href="en/">Read in English</a>
+    <a class="aca-btn aca-btn-secondary" href="zh/">阅读中文文档</a>
+  </div>
+</div>
+
+## Choose a language
+
+- [English documentation](en/index.md)
+- [中文文档](zh/index.md)