moesniper 0.7.4__tar.gz

moesniper-0.7.4/.github/CODEOWNERS

@@ -0,0 +1 @@
+* @moeshawky

moesniper-0.7.4/.github/ISSUE_TEMPLATE/01_BUG_REPORT.md

@@ -0,0 +1,31 @@
+# Bug Report
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Screenshots**
+If applicable, add screenshots to help explain your problem.
+
+**Desktop (please complete the following information):**
+ - OS: [e.g. iOS]
+ - Browser [e.g. chrome, safari]
+ - Version [e.g. 22]
+
+**Smartphone (please complete the following information):**
+ - Device: [e.g. iPhone6]
+ - OS: [e.g. iOS8.1]
+ - Browser [e.g. stock browser, safari]
+ - Version [e.g. 22]
+
+**Additional context**
+Add any other context about the problem here.

moesniper-0.7.4/.github/ISSUE_TEMPLATE/02_FEATURE_REQUEST.md

@@ -0,0 +1,13 @@
+# Feature Request
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.

moesniper-0.7.4/.github/ISSUE_TEMPLATE/03_CODEBASE_IMPROVEMENT.md

@@ -0,0 +1,13 @@
+# Codebase Improvement
+
+**Target Area**
+Which part of the codebase is this improvement for?
+
+**Description**
+A clear and concise description of the improvement.
+
+**Rationale**
+Why is this improvement necessary? (Performance, readability, maintainability, etc.)
+
+**Additional Context**
+Any other information or examples.

moesniper-0.7.4/.github/ISSUE_TEMPLATE/04_SUPPORT_QUESTION.md

@@ -0,0 +1,10 @@
+# Support Question
+
+**What are you trying to do?**
+A clear and concise description of your goal.
+
+**What have you tried?**
+A list of things you've tried so far.
+
+**Specific Question**
+What exactly are you stuck on?

moesniper-0.7.4/.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,5 @@
+blank_issues_enabled: false
+contact_links:
+  - name: GitHub Discussions
+    url: https://github.com/moeshawky/moesniper/discussions
+    about: Please ask questions and share ideas here.

moesniper-0.7.4/.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,22 @@
+## Description
+Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context.
+
+Fixes # (issue)
+
+## Type of change
+- [ ] Bug fix (non-breaking change which fixes an issue)
+- [ ] New feature (non-breaking change which adds functionality)
+- [ ] Breaking change (fix or feature that would cause existing functionality to not work as expected)
+- [ ] This change requires a documentation update
+
+## How Has This Been Tested?
+Please describe the tests that you ran to verify your changes.
+
+## Checklist:
+- [ ] My code follows the style guidelines of this project
+- [ ] I have performed a self-review of my own code
+- [ ] I have commented my code, particularly in hard-to-understand areas
+- [ ] I have made corresponding changes to the documentation
+- [ ] My changes generate no new warnings
+- [ ] I have added tests that prove my fix is effective or that my feature works
+- [ ] New and existing unit tests pass locally with my changes

moesniper-0.7.4/.github/workflows/build.yml

@@ -0,0 +1,20 @@
+name: Rust Build
+
+on:
+  push:
+    branches: [ "master" ]
+  pull_request:
+    branches: [ "master" ]
+
+env:
+  CARGO_TERM_COLOR: always
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    - name: Build
+      run: cargo build --verbose
+    - name: Run tests
+      run: cargo test --verbose

moesniper-0.7.4/.github/workflows/lint.yml

@@ -0,0 +1,15 @@
+name: Lint
+
+on:
+  push:
+    branches: [ "master" ]
+  pull_request:
+    branches: [ "master" ]
+
+jobs:
+  clippy:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    - name: Run clippy
+      run: cargo clippy -- -D warnings

moesniper-0.7.4/.github/workflows/stale.yml

@@ -0,0 +1,16 @@
+name: "Close stale issues"
+
+on:
+  schedule:
+  - cron: "30 1 * * *"
+
+jobs:
+  stale:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/stale@v4
+      with:
+        stale-issue-message: "This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days."
+        stale-pr-message: "This PR is stale because it has been open 45 days with no activity. Remove stale label or comment or this will be closed in 10 days."
+        days-before-stale: 30
+        days-before-close: 5

moesniper-0.7.4/.gitignore

@@ -0,0 +1,63 @@
+# ── Build artifacts ───────────────────────────────────────────────────────────
+target/
+*.pdb
+
+# ── Dependencies ──────────────────────────────────────────────────────────────
+# Cargo.lock is committed for binary crates per Rust convention
+# (ensures reproducible builds for published binaries).
+
+# ── Rustfmt backups ───────────────────────────────────────────────────────────
+**/*.rs.bk
+
+# ── Agentic Dev Artifacts ──────────────────────────────────────────────────────
+AGENTS.md
+.agents/
+references/
+.cursor/
+.claude/
+.ad-*.md
+.cam-*.md
+.cbp-*.md
+.clippy-fixes.md
+extract.md
+
+# ── IDE / Editor ──────────────────────────────────────────────────────────────
+.idea/
+.vscode/
+*.swp
+*.swo
+*~
+*.sublime-workspace
+*.sublime-project
+
+# ── OS ────────────────────────────────────────────────────────────────────────
+.DS_Store
+Thumbs.db
+desktop.ini
+
+# ── Project runtime ───────────────────────────────────────────────────────────
+.ix/
+.sniper/
+
+# ── Proptest regressions ──────────────────────────────────────────────────────
+# Keep these in repo for reproducibility.
+# proptest-regressions/
+
+# ── Secrets / environment ─────────────────────────────────────────────────────
+.env
+.env.*
+*.key
+*.pem
+credentials.json
+
+# ── Temporary / ephemeral ─────────────────────────────────────────────────────
+*.tmp
+*.bak
+*.log
+__pycache__/
+*.py[cod]
+*.egg-info/
+*.egg
+
+# ── Python native extensions (PyO3) ─────────────────────────────────────────
+*.so

moesniper-0.7.4/CHANGELOG.md

@@ -0,0 +1,196 @@
+# Changelog
+
+All notable changes to moesniper will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v0.0.0.html).
+
+## [0.7.4] - 2026-06-06
+
+### Added
+- `.agents/` directory to `.gitignore` for agentic dev artifacts
+
+### Changed
+- Version bumped for release
+
+---
+
+## [0.7.3] - 2026-06-04
+
+### Added
+- Python parity bindings and CLI `--version` flag for `moesniper`
+- `*.so` to `.gitignore` to prevent binary wheel commits
+
+### Fixed
+- PyO3 manifest safety parity across all audit findings
+
+---
+
+## [0.7.2] - 2026-06-03
+
+### Added
+- PID pacing configuration via `SNIPER_PID_BASE_MS`, `SNIPER_PID_ENTROPY_SCALE`, `SNIPER_PID_PRESSURE_SCALE` environment variables
+- Workspace configuration including `sniper-py` Python bindings crate
+- Risk telemetry and `recommended_action` now computed for both dry-run and real paths
+
+### Fixed
+- Eliminated redundant `SniperConfig::from_env()` calls in write path — config now forwarded through call chain
+- Removed redundant `ResourceGuard::auto(0.5)` in `write_atomic_impl` — caller's guard forwarded instead
+- Help text updated with missing DAL and PID environment variables
+
+---
+
+## [0.7.1] - 2026-06-01
+
+### Added
+- Insert-at-end now accepts start=end=N+1 for natural append expressions
+- Bounds validation for `cmd_manifest_impl` to prevent splice panic on out-of-range manifests
+- Insert-at-end exception for manifest bounds (parity with cmd_splice)
+- 10+ regression tests: append-at-end (1/2/4-line), handle_backtrack_error, normalize_path
+
+### Fixed
+- Append-at-end (line N+1) rejected when start equals end (documented contract violation)
+- Original file permissions lost during atomic write — now copied to temp file before rename
+- `find_latest_backup` O(N log N) memory usage reduced to O(N) O(1) via iterator max
+- Stale thread handle test ("0.5.0") corrected for llmosafe 0.6.2
+- `test_normalize_path_missing_parent` assertion corrected for intentional non-existent path behavior
+
+### Changed
+- `write_atomic_impl` now uses `BufWriter` for buffered writes
+- **llmosafe 0.6.2 → 0.7.1**: `ResourceGuard::for_testing()` available for deterministic test entropy/pressure. `PidInput` struct added (not used by sniper). `sift_observation_inner`, `GainSchedule`, `Setpoint` removed (zero impact). `DeadlineExceeded` (-7) remains a valid `KernelError` variant used in `check_blocking()` and C-ABI, but resource exhaustion now surfaces via `KernelError::ResourceExhaustion` from `ResourceGuard::check()` rather than OS-level IO error codes.
+
+## [0.7.0] - 2026-05-30
+
+### Added
+
+- **Indentation engine** (`src/indent.rs`): Statistical step detection with 80% supermajority, raw frequency scoring, round-to-nearest, whitespace stripping, and smaller-is-step tiebreaker — robust against inconsistent LLM output. 40 adversarial tests covering tabs, spaces, mixed styles, blank lines, continuation lines, and brace openers.
+- **Auto-indent** (`--auto-indent`): Detects expected indentation from surrounding context and automatically prepends missing leading whitespace.
+- **Force-indent** (`--force-indent`): Bypasses indentation validation for deliberate refactoring.
+- **PID-based file locks**: Lock content contains the process PID, enabling stale lock detection and auto-recovery via `/proc/{pid}` liveness check. Configurable timeout via `SNIPER_LOCK_TIMEOUT`.
+- **Context verification** (`--context <hash>`): Verifies SHA-256 hash (first 16 hex chars) of 3 lines before and after the edit target. Rejects edits if surrounding code changed since line numbers were computed.
+- **Manifest promotion detection**: Detects >=3 edits to the same file within the lock window and suggests batching with `--manifest` via `ai_hint` in JSON output.
+- **Line shift tracking**: `line_shift` field in `CliResult` — positive means lines moved down, negative means up. Agents can mechanically adjust subsequent line targets.
+- **Clipply configuration** (`clippy.toml`): msrv=1.87, cognitive-complexity-threshold=30. Lint policy in `Cargo.toml` denies `unreachable`, `todo`, `panic`; warns on `dbg_macro`, `cast_possible_truncation`, `cast_sign_loss`.
+- **Crate-level lint enforcement**: `deny(clippy::unwrap_used, clippy::expect_used)` in `src/lib.rs` with `#[cfg_attr(test, allow(...))]`.
+- **Secure temp files**: Nanosecond timestamp suffix (`{filepath}.sniper_tmp.{ts}`) prevents collision.
+- **Atomic write integrity**: Trailing newline detection preserves original file format.
+- **Path validation ordering**: `normalize_path` runs before `check_file_size`, closing a TOCTOU window.
+
+### Changed
+
+- **Indentation validation now always-on**: Runs on every edit by default. Use `--force-indent` to bypass. Removed dead `--validate-indent` flag.
+- **llmosafe 0.5.0 → 0.6.2**: `ResourceGuard::auto(0.5)` replaces hardcoded memory ceiling. `ResourceGuard::check()` called before atomic rename for proper `KernelError` propagation.
+- **MSRV 1.70 → 1.87**: `is_multiple_of()` stabilized in Rust 1.87.
+- **Documentation unified**: All 5 surfaces (main.rs doc, help text, README, Cargo.toml, tests/README) tell the same story. No dead flags, no missing features, no internal methodology jargon.
+- **Help text expanded**: Added `--context`, `--force-indent`, env var reference, context-verified edit example. Encode subcommand documents all 3 modes.
+- **Dead code removed**: Removed `use_os_locking` config field, `SNIPER_USE_OS_LOCKING` env var, `libc` dependency (zero imports).
+- **Clippy clean**: 184 tests, zero warnings, zero panics.
+
+### Security
+
+- Path traversal protection (`SecurityPolicy`, `normalize_path`).
+- Symlink-safe operations (no `follow_symlinks` without validation).
+- PID-based per-file locking with stale lock auto-recovery.
+- Atomic writes with unique temp file names.
+- Symlink traversal rejection within base directory.
+
+### Fixed
+
+- **Boundary hardening**: Path validation before file ops, lock PID liveness check, temp file uniqueness, concurrent lock purge race detection.
+- **Test quality**: Removed tautological assertions, added exact-match checks, corrected weak oracle patterns.
+
+---
+
+## [0.5.1] - 2026-05-14
+
+### Added
+- Comprehensive test suite: 85+ tests (smoke, edge case, property-based, regression, security, integration).
+- Test documentation (`tests/README.md`).
+
+### Changed
+- Help text extracted to `src/help_text.rs` with improved organization.
+- Documentation improvements.
+
+---
+
+## [0.5.0] - 2026-05-14
+
+### Added
+- Enterprise-grade path security validation (`src/security.rs`).
+- Auto-indent and validate-indent flags.
+- Dry-run diff preview.
+- Configuration via environment variables: `SNIPER_LOCK_TIMEOUT`, `SNIPER_MAX_FILE_SIZE`, `SNIPER_BACKUP_RETENTION_COUNT`, `SNIPER_BACKUP_MAX_AGE_DAYS`.
+- AI hint system for verification guidance.
+- JSON output mode (`--json` flag).
+
+### Changed
+- Upgraded to llmosafe 0.5.0 with Backtrack Signal support.
+- Improved trailing newline handling (PR #8).
+- Optimized string handling with `split_inclusive`.
+- Enhanced error messages with actionable hints.
+
+### Security
+- Path traversal protection.
+- Symlink attack mitigation.
+- File locking with configurable timeout.
+- Atomic file writes.
+
+---
+
+## [0.4.0] - 2025-04-22
+
+### Added
+- Manifest batch operations.
+- Multi-step undo stack.
+- Hex encoding command (`sniper encode`).
+- Backup retention policies.
+
+### Changed
+- Improved line number parsing (1-indexed).
+- Better error handling for out-of-bounds operations.
+
+---
+
+## [0.3.0] - 2025-04-21
+
+### Added
+- Basic line splicing.
+- Hex-encoded content support.
+- Atomic file writes.
+- Backup creation on every edit.
+
+---
+
+## [0.2.0] - 2025-04-20
+
+### Added
+- Command-line interface.
+- Line-range deletion.
+- Basic error reporting.
+
+---
+
+## [0.1.0] - 2025-04-19
+
+### Added
+- Initial release.
+- Core splicing functionality.
+- Hex decode/encode.
+
+---
+
+## Version History
+
+| Version | Date | Key Feature |
+|---------|------|-------------|
+| 0.7.4 | 2026-06-06 | Release tooling, .agents/ gitignore |
+| 0.7.3 | 2026-06-04 | Python bindings parity, PyO3 safety |
+| 0.7.2 | 2026-06-03 | PID pacing, config forwarding, risk telemetry |
+| 0.7.1 | 2026-06-01 | Append-at-end fix, manifest bounds, permission preservation, perf optimization |
+| 0.7.0 | 2026-05-30 | Indent engine, PID locks, context verification, docs unification |
+| 0.5.1 | 2026-05-14 | Test suite expansion, help text refactor |
+| 0.5.0 | 2026-05-14 | Enterprise security, auto-indent, dry-run |
+| 0.4.0 | 2025-04-22 | Manifest operations, multi-step undo |
+| 0.3.0 | 2025-04-21 | Basic splicing, hex encoding |
+| 0.2.0 | 2025-04-20 | CLI, deletion support |
+| 0.1.0 | 2025-04-19 | Initial release |