CalvinBackup/gstack
1
0
Fork 0
mirror of https://github.com/garrytan/gstack.git synced 2026-06-29 05:00:01 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge origin/main (v1.52.1.0) into spec-pii-redaction-guard

Browse Source 
Resolve bin/gstack-config (keep both redact_* and brain_* config keys).
Regenerate all SKILL.md from merged templates + resolvers (redact-doc resolver
now coexists with main's brain-aware-planning resolvers). Refresh ship goldens.
Move the redaction taxonomy reference in /cso and /spec to a pointer at
lib/redact-patterns.ts (single source of truth) so neither skill inlines the
full catalog — keeps both under the size budget after the merge.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This commit is contained in:
Garry Tan
2026-05-29 18:08:38 -07:00
parent 02f848dde4 7f7e9d8652
commit 887210bfd1
145 changed files with 14101 additions and 412 deletions
Download Patch File Download Diff File Expand all files Collapse all files
test/cso-spec-taxonomy-alignment.test.ts
+18 -12
View File
@@ -1,7 +1,10 @@
/**
* Cross-skill taxonomy alignment. /cso renders the full generated taxonomy table;
* /spec references it without inlining. Both derive from lib/redact-patterns via
* the shared resolver, so a manual edit to the wrong place is caught here.
* Cross-skill taxonomy alignment. The canonical taxonomy lives in
* lib/redact-patterns.ts (single source of truth). /spec and /cso both reference
* it by pointer rather than inlining the full catalog (size discipline). This
* test guards that the recognizable HIGH-tier prefixes stay present in /cso's
* archaeology prose and that the resolver-generated table stays derived from the
* lib (no drift between the generator and the pattern source).
*/
import { describe, test, expect } from "bun:test";
import * as fs from "fs";
@@ -15,17 +18,20 @@ const CSO = fs.readFileSync(path.join(ROOT, "cso", "SKILL.md"), "utf-8");
const ctx = { skillName: "cso", tmplPath: "", host: "claude" as const, paths: HOST_PATHS["claude"] };
describe("cso/spec taxonomy alignment", () => {
test("cso renders the full generated taxonomy table verbatim", () => {
const table = generateRedactTaxonomyTable(ctx);
// A couple of representative lines from the generated table must appear in /cso.
const line = table.split("\n").find((l) => l.includes("`aws.access_key`"));
expect(line).toBeTruthy();
expect(CSO).toContain(line!);
test("cso archaeology names the recognizable HIGH-tier prefixes", () => {
for (const s of ["AKIA", "ghp_", "sk-ant-", "BEGIN"]) {
expect(CSO).toContain(s);
}
});
test("cso lists every HIGH-tier credential id (the archaeology contract, no drift)", () => {
for (const p of PATTERNS.filter((x) => x.tier === "HIGH")) {
expect(CSO).toContain(`\`${p.id}\``);
test("cso points to lib/redact-patterns.ts as the single source of truth", () => {
expect(CSO).toContain("lib/redact-patterns.ts");
});
test("the generated taxonomy table is derived from lib (every pattern id present)", () => {
const table = generateRedactTaxonomyTable(ctx);
for (const p of PATTERNS) {
expect(table).toContain(`\`${p.id}\``);
}
});