ktg-plugin-marketplace

open/ktg-plugin-marketplace

Fork 0

Commit graph

Author	SHA1	Message	Date
Kjell Tore Guttormsen	db80854830	feat(llm-security): playground v7.6.2-dev — render-report CLI + wire 4 skills (scan, audit, posture, deep-scan) [skip-docs] - New scripts/render-report.mjs CLI: stdin/file/stdout modes, ESM import from ./lib/report-renderers.mjs, kebab→camel renderer-name lookup so any of the 18 PARSERS works - Standalone HTML wrap: inlines 6 DS stylesheets (tokens, base, components, tier2, tier3, tier3-supplement) + local .report-table CSS. Skips fonts.css → system-ui fallback via tokens.css (~137 KB self-contained vs ~1 MB with woff2 bundled) - 4 skill files wired: commands/{scan,audit,posture,deep-scan}.md — new step instructs Claude to Write the markdown report to a temp file, invoke the CLI, and print a markdown-formatted file:// link - Absolute file:// paths in stdout for Ghostty cmd-click compatibility - Default output: reports/<command>-<YYYYMMDD-HHmmss>.html relative to CWD - Smoke-tested: stdin→stdout, file→file roundtrip, all 4 commands produce valid HTML with DS-aligned page-shell (page__title, verdict-pill-lg, risk-meter, key-stats, findings__item, recommendation-card) - Tests 1820/1820 green (same baseline; pre-compact-scan perf-flake from NEXT-SESSION-PROMPT did not fire on retry) - Playground untouched (2 scripts, 0 parse failures), report-renderers.mjs untouched (74 exports, 18 PARSERS, 18 RENDERERS) Sesjon 4 av 5. v7.7.0 release + 9 remaining skill wirings = sesjon 5. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-18 12:56:03 +02:00
Kjell Tore Guttormsen	fa5fb48a33	refactor(llm-security): playground v7.6.2-dev — extract 18 renderers til scripts/lib/report-renderers.mjs [skip-docs] Ny scripts/lib/report-renderers.mjs ESM-modul (3042 linjer, 74 named exports + PARSERS/RENDERERS routing-maps + KEY_STATS_CONFIG): - 18 main renderers (renderScan, renderDeepScan, renderPluginAudit, renderMcpAudit, renderIdeScan, renderPosture, renderAudit, renderDashboard, renderHarden, renderRedTeam, renderMcpInspect, renderSupplyCheck, renderPreDeploy, renderDiff, renderWatch, renderRegistry, renderClean, renderThreatModel) - 12 renderer helpers (renderEmptyState, renderFindingsBlock, renderRecommendationsList, mapSeverityToCardLevel, renderRiskMeter, renderSmallMultiples, renderRadarSvg, renderToxicFlow, renderMatLadder, renderSuppressedGroup, renderCodepointReveal, renderTopRisks) - 3 page-shell helpers (renderPageShell, renderVerdictPill, renderKeyStatsGrid) - 18 parsers + 15 parser helpers (parseTableRow, parseTable, parseSections, extractField, parseRiskDashboard, parseFindingsTables, etc.) - Verdict + key-stats inference (normalizeVerdict, inferVerdict, KEY_STATS_CONFIG, inferKeyStats) - escapeHtml / escapeAttr Canonical source for sesjon 4 CLI (scripts/render-report.mjs). playground/llm-security-playground.html beholdes UENDRET (Fallback 2 fra brief): file:// + ESM import er blokkert i Chrome/Firefox uten flags, så playground beholder inline-kopi for single-file file:// distribusjon. Sync-invariant dokumentert i modul-header. Bit-identisk verifisering: alle 18 renderer-bodies character-for-character identiske mellom .mjs og playground inline (extract → dedent 4-space → diff). Smoke-test: parseScan + renderScan/renderPosture/renderAudit produserer forventet DS-aligned HTML. Tester: 1819/1820 grønne (samme baseline som sesjon 2; kjent pre-existing flaky pre-compact-scan perf-test). JS-parse av playground: 0 failures.	2026-05-18 12:42:28 +02:00
Kjell Tore Guttormsen	f93d6abdae	feat: initial open marketplace with llm-security, config-audit, ultraplan-local	2026-04-06 18:47:49 +02:00

Author

SHA1

Message

Date

Kjell Tore Guttormsen

db80854830

feat(llm-security): playground v7.6.2-dev — render-report CLI + wire 4 skills (scan, audit, posture, deep-scan) [skip-docs]

- New scripts/render-report.mjs CLI: stdin/file/stdout modes, ESM import
  from ./lib/report-renderers.mjs, kebab→camel renderer-name lookup so
  any of the 18 PARSERS works
- Standalone HTML wrap: inlines 6 DS stylesheets (tokens, base, components,
  tier2, tier3, tier3-supplement) + local .report-table CSS. Skips fonts.css
  → system-ui fallback via tokens.css (~137 KB self-contained vs ~1 MB
  with woff2 bundled)
- 4 skill files wired: commands/{scan,audit,posture,deep-scan}.md — new
  step instructs Claude to Write the markdown report to a temp file,
  invoke the CLI, and print a markdown-formatted file:// link
- Absolute file:// paths in stdout for Ghostty cmd-click compatibility
- Default output: reports/<command>-<YYYYMMDD-HHmmss>.html relative to CWD
- Smoke-tested: stdin→stdout, file→file roundtrip, all 4 commands produce
  valid HTML with DS-aligned page-shell (page__title, verdict-pill-lg,
  risk-meter, key-stats, findings__item, recommendation-card)
- Tests 1820/1820 green (same baseline; pre-compact-scan perf-flake from
  NEXT-SESSION-PROMPT did not fire on retry)
- Playground untouched (2 scripts, 0 parse failures), report-renderers.mjs
  untouched (74 exports, 18 PARSERS, 18 RENDERERS)

Sesjon 4 av 5. v7.7.0 release + 9 remaining skill wirings = sesjon 5.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-18 12:56:03 +02:00

Kjell Tore Guttormsen

fa5fb48a33

refactor(llm-security): playground v7.6.2-dev — extract 18 renderers til scripts/lib/report-renderers.mjs [skip-docs]

Ny scripts/lib/report-renderers.mjs ESM-modul (3042 linjer, 74 named
exports + PARSERS/RENDERERS routing-maps + KEY_STATS_CONFIG):

- 18 main renderers (renderScan, renderDeepScan, renderPluginAudit,
  renderMcpAudit, renderIdeScan, renderPosture, renderAudit,
  renderDashboard, renderHarden, renderRedTeam, renderMcpInspect,
  renderSupplyCheck, renderPreDeploy, renderDiff, renderWatch,
  renderRegistry, renderClean, renderThreatModel)
- 12 renderer helpers (renderEmptyState, renderFindingsBlock,
  renderRecommendationsList, mapSeverityToCardLevel, renderRiskMeter,
  renderSmallMultiples, renderRadarSvg, renderToxicFlow, renderMatLadder,
  renderSuppressedGroup, renderCodepointReveal, renderTopRisks)
- 3 page-shell helpers (renderPageShell, renderVerdictPill,
  renderKeyStatsGrid)
- 18 parsers + 15 parser helpers (parseTableRow, parseTable, parseSections,
  extractField, parseRiskDashboard, parseFindingsTables, etc.)
- Verdict + key-stats inference (normalizeVerdict, inferVerdict,
  KEY_STATS_CONFIG, inferKeyStats)
- escapeHtml / escapeAttr

Canonical source for sesjon 4 CLI (scripts/render-report.mjs).

playground/llm-security-playground.html beholdes UENDRET (Fallback 2 fra
brief): file:// + ESM import er blokkert i Chrome/Firefox uten flags, så
playground beholder inline-kopi for single-file file:// distribusjon.
Sync-invariant dokumentert i modul-header.

Bit-identisk verifisering: alle 18 renderer-bodies character-for-character
identiske mellom .mjs og playground inline (extract → dedent 4-space →
diff). Smoke-test: parseScan + renderScan/renderPosture/renderAudit
produserer forventet DS-aligned HTML.

Tester: 1819/1820 grønne (samme baseline som sesjon 2; kjent pre-existing
flaky pre-compact-scan perf-test). JS-parse av playground: 0 failures.

2026-05-18 12:42:28 +02:00

Kjell Tore Guttormsen

f93d6abdae

feat: initial open marketplace with llm-security, config-audit, ultraplan-local

2026-04-06 18:47:49 +02:00

3 commits