UNPKG

@blundergoat/goat-flow

Version:

AI coding agent harness and local dashboard for Claude Code, OpenAI Codex, Google Antigravity, and GitHub Copilot - setup audits, guardrails, structured skills, deny hooks, and persistent learning loops.

github.com/blundergoat/goat-flow

blundergoat/goat-flow

130 lines (116 loc) 4.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
#!/usr/bin/env node /** * Verifies that README-relative links resolve to files included by `npm pack`. * This catches package documentation links that work in the repo but break for * consumers after the package `files` whitelist is applied. */ import { execFileSync } from "node:child_process"; import { readFileSync } from "node:fs"; import { posix } from "node:path"; /** Return true when a Markdown href does not need a packed-file check. */ function isIgnoredHref(href) { return ( href.length === 0 || href.startsWith("#") || href.startsWith("//") || /^[a-z][a-z0-9+.-]*:/i.test(href) ); } /** Strip fragment/query/title syntax down to a package-relative path. */ function normalizeMarkdownHref(rawHref) { const trimmed = rawHref.trim(); const href = trimmed.startsWith("<") ? trimmed.replace(/^<|>$/g, "") : (trimmed.match(/^\S+/)?.[0] ?? ""); if (isIgnoredHref(href)) return null; const withoutFragment = href.split("#", 1)[0] ?? ""; const withoutQuery = withoutFragment.split("?", 1)[0] ?? ""; if (withoutQuery.length === 0) return null; const normalized = posix.normalize(withoutQuery).replace(/^\.\//, ""); if (normalized === "." || normalized.startsWith("../")) return null; return normalized; } /** * Extract package-local Markdown link/image targets from README content. * Returned paths are unique and sorted so validation output is deterministic. * * @param readmeText - Markdown README content to scan */ export function extractPackageLocalReadmeLinks(readmeText) { const links = []; const inlineLinkPattern = /!?\[[^\]]*]\(([^)]+)\)/g; for (const match of readmeText.matchAll(inlineLinkPattern)) { const rawHref = match[1]; if (rawHref === undefined) continue; const target = normalizeMarkdownHref(rawHref); if (target !== null) links.push(target); } return [...new Set(links)].sort(); } /** * Validate README package-local links against npm pack output paths. * * @param readmeText - Markdown README content to scan * @param packedPaths - package-relative paths emitted by npm pack */ export function validatePackageReadmeLinks(readmeText, packedPaths) { const packed = new Set(packedPaths); const links = extractPackageLocalReadmeLinks(readmeText); const missing = links.filter((target) => !packed.has(target)); return { links, missing }; } /** * Parse the `npm pack --dry-run --json` payload into package paths. * Throws when npm changes the JSON schema because missing `files` means the * link check cannot prove package contents. * * @param packJson - raw stdout from `npm pack --dry-run --json` */ export function parsePackFileList(packJson) { const parsed = JSON.parse(packJson); const first = Array.isArray(parsed) ? parsed[0] : parsed; if (!first || !Array.isArray(first.files)) { throw new Error("npm pack JSON did not include a files array"); } return first.files .map((entry) => entry?.path) .filter((path) => typeof path === "string") .sort(); } /** Spawns npm pack as a process side effect and return the dry-run package paths. */ function readPackFileList() { const output = execFileSync( "npm", ["pack", "--dry-run", "--json", "--ignore-scripts"], { encoding: "utf-8", env: { ...process.env, npm_config_cache: process.env.npm_config_cache ?? "/tmp/goat-flow-npm-cache", }, }, ); return parsePackFileList(output); } /** CLI entry point; exits non-zero when README links target unpacked paths. */ function main() { const packedPaths = readPackFileList(); const readmeText = readFileSync("README.md", "utf-8"); const result = validatePackageReadmeLinks(readmeText, packedPaths); if (result.missing.length > 0) { console.error("Package README link check: FAIL"); for (const target of result.missing) { console.error( ` - README.md references unpacked package path: ${target}`, ); } process.exit(1); } console.log( `Package README link check: PASS (${result.links.length} relative links checked against ${packedPaths.length} packed files)`, ); } if (import.meta.url === `file://${process.argv[1]}`) { main(); }