heal-cli 0.4.0

Hook-driven Evaluation & Autonomous Loop — code-health harness CLI for AI coding agents
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378

//! `heal hook <commit|edit|stop>` — single entrypoint invoked by git
//! hooks and Claude Code's `settings.json` hook commands.
//!
//! - `commit` runs every observer, classifies the result against the
//!   project's calibration, and emits a one-line nudge. No event-log
//!   write — `latest.json` (refreshed on every `heal status`) is the
//!   live state of record.
//! - `edit` / `stop` are no-ops kept for back-compat with any
//!   `settings.json` registrations that survived an upgrade.
//!   `heal skills install` actively sweeps such entries.
//!
//! ## Post-commit nudge
//!
//! `run_commit` writes one compact line to stdout: a "recorded" marker,
//! the current Critical/High count, and a `heal status` pointer when
//! those counts aren't zero. Stays silent on uncalibrated projects so
//! a fresh `heal init` flow doesn't pollute the commit output.

use std::io::{IsTerminal, Write};
use std::path::Path;
use std::process::{Command, Stdio};

use crate::core::accepted::{decorate_findings, read_accepted};
use crate::core::calibration::Calibration;
use crate::core::config::{load_from_project, Config};
use crate::core::finding::Finding;
use crate::core::severity::Severity;
use crate::core::term::{ansi_wrap, ANSI_CYAN, ANSI_GREEN, ANSI_RED, ANSI_YELLOW};
use crate::core::HealPaths;
use crate::observers::{classify, run_all, ObserverReports};
use anyhow::Result;

use crate::cli::HookEvent;

pub fn run(project: &Path, event: HookEvent) -> Result<()> {
    // The hook may be invoked from settings.json on any project Claude
    // Code happens to be in — including ones that never ran `heal init`.
    // Skip silently so we don't materialise `.heal/` on a project the
    // user never opted into.
    let paths = HealPaths::new(project);
    if !paths.root().exists() {
        return Ok(());
    }
    match event {
        HookEvent::Commit => run_commit(project, &paths)?,
        HookEvent::Edit | HookEvent::Stop => {}
    }
    Ok(())
}

fn run_commit(project: &Path, paths: &HealPaths) -> Result<()> {
    // ConfigMissing means `heal init` was never run; the hook is no-op
    // in that case so an unopted project doesn't suddenly show banners.
    let cfg = match load_from_project(project) {
        Ok(c) => c,
        Err(crate::core::Error::ConfigMissing(_)) => return Ok(()),
        Err(e) => return Err(e.into()),
    };

    let reports = run_all(project, &cfg, None, None);
    let (calibration, mut findings) = classify_with_calibration(paths, &cfg, &reports);
    // Filter the nudge through accepted findings so the per-commit
    // Critical / High counts match `heal status` instead of shaming
    // the team about findings they explicitly accepted as intrinsic.
    let accepted_map = read_accepted(&paths.findings_accepted()).unwrap_or_default();
    if !accepted_map.is_empty() {
        decorate_findings(&mut findings, &accepted_map);
    }
    // Best-effort nudge — don't fail the hook on rendering issues.
    write_nudge(
        calibration.as_ref(),
        &cfg,
        &findings,
        &mut std::io::stdout(),
    )
    .ok();
    let _ = spawn_coverage_refresh(project, &cfg);
    Ok(())
}

/// Detach the configured `[features.test.coverage].post_commit_refresh`
/// command so the user's commit flow returns immediately. Output is
/// discarded; if the user wants logs they can wrap their command with
/// shell redirection. A missing command, disabled coverage, or spawn
/// failure are all silent — a broken HEAL install must never disturb
/// the user's commit. Returns `true` when a child was spawned (so
/// tests can assert on the gate without racing the OS).
fn spawn_coverage_refresh(project: &Path, cfg: &Config) -> bool {
    if !(cfg.features.test.enabled && cfg.features.test.coverage.enabled) {
        return false;
    }
    let Some(cmd) = cfg.features.test.coverage.post_commit_refresh.as_deref() else {
        return false;
    };
    if cmd.trim().is_empty() {
        return false;
    }
    Command::new("sh")
        .arg("-c")
        .arg(cmd)
        .current_dir(project)
        .stdin(Stdio::null())
        .stdout(Stdio::null())
        .stderr(Stdio::null())
        .spawn()
        .is_ok()
}

/// Classify `reports` against the calibration on disk (if any),
/// returning both the loaded calibration and the resulting Findings.
/// `None` calibration means `heal init`/`heal calibrate` hasn't run
/// yet — the hook stays silent in that case.
pub(crate) fn classify_with_calibration(
    paths: &HealPaths,
    cfg: &Config,
    reports: &ObserverReports,
) -> (Option<Calibration>, Vec<Finding>) {
    let calibration = Calibration::load(&paths.calibration())
        .ok()
        .map(|c| c.with_overrides(cfg));
    let findings = calibration
        .as_ref()
        .map(|c| classify(reports, c, cfg))
        .unwrap_or_default();
    (calibration, findings)
}

/// Emit the one-line post-commit summary. When
/// `[features.test.coverage]` is enabled and any High/Critical
/// `coverage_pct` finding sits on a hotspot file, a second line names
/// the count so the user knows where the next test should go.
fn write_nudge(
    calibration: Option<&Calibration>,
    cfg: &Config,
    findings: &[Finding],
    out: &mut impl Write,
) -> Result<()> {
    if calibration.is_none() {
        return Ok(());
    }
    let critical = findings
        .iter()
        .filter(|f| !f.accepted && matches!(f.severity, Severity::Critical))
        .count();
    let high = findings
        .iter()
        .filter(|f| !f.accepted && matches!(f.severity, Severity::High))
        .count();
    let colorize = std::io::stdout().is_terminal();

    if critical == 0 && high == 0 {
        writeln!(
            out,
            "heal: recorded · {}",
            ansi_wrap(ANSI_GREEN, "clean", colorize),
        )?;
        return Ok(());
    }

    let mut counts: Vec<String> = Vec::with_capacity(2);
    if critical > 0 {
        counts.push(ansi_wrap(
            ANSI_RED,
            &format!("{critical} critical"),
            colorize,
        ));
    }
    if high > 0 {
        counts.push(ansi_wrap(ANSI_YELLOW, &format!("{high} high"), colorize));
    }
    writeln!(
        out,
        "heal: recorded · {} · {}",
        counts.join(", "),
        ansi_wrap(ANSI_CYAN, "heal status", colorize),
    )?;
    if cfg.features.test.enabled && cfg.features.test.coverage.enabled {
        let uncovered_hotspots = findings
            .iter()
            .filter(|f| {
                !f.accepted
                    && f.metric == Finding::METRIC_COVERAGE_PCT
                    && f.hotspot
                    && matches!(f.severity, Severity::High | Severity::Critical)
            })
            .count();
        if uncovered_hotspots > 0 {
            writeln!(
                out,
                "         · {}",
                ansi_wrap(
                    ANSI_YELLOW,
                    &format!("{uncovered_hotspots} uncovered hotspot"),
                    colorize,
                ),
            )?;
        }
    }
    Ok(())
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::core::config::Config;
    use crate::test_support::init_project_with_config;
    use tempfile::TempDir;

    /// Run the full nudge harness against an already-initialized project
    /// and return the captured `write_nudge` output. Centralised because
    /// every nudge test runs the same `run_all → classify → write_nudge`
    /// pipeline; only the calibration step and assertions vary.
    fn nudge_output(dir: &Path, paths: &HealPaths, cfg: &Config) -> String {
        let reports = run_all(dir, cfg, None, None);
        let (calibration, findings) = classify_with_calibration(paths, cfg, &reports);
        let mut buf: Vec<u8> = Vec::new();
        write_nudge(calibration.as_ref(), cfg, &findings, &mut buf).unwrap();
        String::from_utf8(buf).unwrap()
    }

    #[test]
    fn commit_runs_observers_without_writing_snapshots() {
        let dir = TempDir::new().unwrap();
        let paths = init_project_with_config(dir.path(), "fn ok() {}\n");
        // Commit hook needs `.heal/config.toml` to drive observers;
        // overwrite the default-saved config with an empty file to
        // exercise the empty-config branch in isolation.
        std::fs::write(paths.config(), "").unwrap();

        run(dir.path(), HookEvent::Commit).unwrap();
    }

    #[test]
    fn edit_is_noop() {
        let dir = TempDir::new().unwrap();
        let paths = HealPaths::new(dir.path());
        paths.ensure().unwrap();
        run(dir.path(), HookEvent::Edit).unwrap();
    }

    #[test]
    fn stop_is_noop() {
        let dir = TempDir::new().unwrap();
        let paths = HealPaths::new(dir.path());
        paths.ensure().unwrap();
        run(dir.path(), HookEvent::Stop).unwrap();
    }

    /// `write_nudge` must stay silent on a fresh project with no
    /// calibration on disk — the post-commit hook fires before the
    /// user has run `heal init`/`heal calibrate`, and we never want to
    /// pollute the commit output with a stack trace or empty banner.
    #[test]
    fn nudge_is_silent_without_calibration() {
        let dir = TempDir::new().unwrap();
        let paths = init_project_with_config(dir.path(), "fn ok(){}\n");
        let cfg = Config::default();
        let out = nudge_output(dir.path(), &paths, &cfg);
        assert!(out.is_empty(), "no calibration → no nudge, got: {out}");
    }

    #[cfg(feature = "lang-rust")]
    #[test]
    fn nudge_summarises_critical_count_in_one_line() {
        // Synthesize a project where the only function trips the
        // calibration's floor, so write_nudge has something to surface.
        // A nest of `if`s drives CCN past the FLOOR_CCN=25 threshold.
        let mut src = String::from("fn busy(x: i32) -> i32 {\n");
        for _ in 0..30 {
            src.push_str("    if x > 0 { return x; }\n");
        }
        src.push_str("    0\n}\n");
        let dir = TempDir::new().unwrap();
        let paths = init_project_with_config(dir.path(), &src);
        let cfg = Config::default();
        crate::commands::calibrate::run(dir.path(), false, false).unwrap();

        let out = nudge_output(dir.path(), &paths, &cfg);
        assert_eq!(
            out.lines().count(),
            1,
            "post-commit summary must be a single line, got: {out}",
        );
        assert!(
            out.starts_with("heal: recorded · "),
            "unexpected prefix: {out}"
        );
        assert!(
            out.contains("critical") || out.contains("high"),
            "expected a critical/high count, got: {out}",
        );
        assert!(
            out.contains("heal status"),
            "missing nudge to heal status: {out}"
        );
    }

    #[test]
    fn coverage_refresh_spawns_when_configured_and_enabled() {
        // Happy path: assert both the spawn-attempt return value AND
        // that the child eventually wrote the sentinel. The poll
        // loop tolerates spawn → exec scheduling on slow hosts.
        let dir = TempDir::new().unwrap();
        let project = dir.path();
        let sentinel = project.join("refreshed.txt");
        let mut cfg = Config::default();
        cfg.features.test.enabled = true;
        cfg.features.test.coverage.enabled = true;
        cfg.features.test.coverage.post_commit_refresh =
            Some(format!("touch {}", sentinel.display()));

        assert!(
            spawn_coverage_refresh(project, &cfg),
            "configured + enabled must spawn",
        );
        for _ in 0..50 {
            if sentinel.exists() {
                break;
            }
            std::thread::sleep(std::time::Duration::from_millis(20));
        }
        assert!(
            sentinel.exists(),
            "post_commit_refresh command must have run",
        );
    }

    #[test]
    fn coverage_refresh_skipped_when_feature_disabled() {
        let dir = TempDir::new().unwrap();
        let mut cfg = Config::default();
        cfg.features.test.enabled = false; // family off
        cfg.features.test.coverage.enabled = true;
        cfg.features.test.coverage.post_commit_refresh = Some("touch /tmp/should-not-run".into());

        assert!(
            !spawn_coverage_refresh(dir.path(), &cfg),
            "disabled family must short-circuit before spawn",
        );
    }

    #[test]
    fn coverage_refresh_skipped_when_unset() {
        let dir = TempDir::new().unwrap();
        let mut cfg = Config::default();
        cfg.features.test.enabled = true;
        cfg.features.test.coverage.enabled = true;
        // post_commit_refresh stays None.
        assert!(
            !spawn_coverage_refresh(dir.path(), &cfg),
            "unset command must short-circuit before spawn",
        );
    }

    #[test]
    fn coverage_refresh_skipped_when_blank() {
        let dir = TempDir::new().unwrap();
        let mut cfg = Config::default();
        cfg.features.test.enabled = true;
        cfg.features.test.coverage.enabled = true;
        cfg.features.test.coverage.post_commit_refresh = Some("   ".into());
        assert!(
            !spawn_coverage_refresh(dir.path(), &cfg),
            "whitespace-only command must short-circuit before spawn",
        );
    }

    #[test]
    fn nudge_says_clean_when_no_critical_or_high() {
        let dir = TempDir::new().unwrap();
        let paths = init_project_with_config(dir.path(), "fn ok() {}\n");
        let cfg = Config::default();
        crate::commands::calibrate::run(dir.path(), false, false).unwrap();

        let out = nudge_output(dir.path(), &paths, &cfg);
        assert_eq!(out.trim_end(), "heal: recorded · clean");
    }
}