Files
2026-07-13 12:20:01 +08:00

419 lines
15 KiB
Python

#!/usr/bin/env python3
"""Shared repo-grounding project-profile cache: deterministic get/put.
This helper owns the *deterministic* cache I/O for the question-agnostic
project profile that repo-grounding skills reuse. The non-deterministic
derivation (reading manifests, summarizing conventions) is done by the
`repo-profiler` persona only on a miss — never here.
Usage:
python3 repo-profile-cache.py get
python3 repo-profile-cache.py put <profile-json-file>
`get` prints exactly one of:
HIT\\n<profile-json> a valid entry exists for the current repo state;
the profile JSON follows on subsequent lines
MISS\\n<write-path> git repo, no valid entry — caller derives the
profile and calls `put <write-path-or-any-file>`
NO-CACHE no git repo or no writable cache — caller derives
the profile fresh and skips `put`
`put <file>` reads the profile JSON from <file>, wraps it with a validity
stamp, and writes it atomically to the computed cache path. Prints the path
on success, `NO-CACHE` when the repo/cache is unavailable.
Cache path:
/tmp/compound-engineering/repo-profile/<root-sha>/<head-sha>.json
root-sha = lexicographically-first `git rev-list --max-parents=0 HEAD`
(deterministic even for multi-root histories) — the repo identity,
shared across worktrees and clones.
head-sha = `git rev-parse HEAD` — the working state.
Validity (HIT) requires ALL of:
- the cache file exists and parses as JSON,
- stored `head_sha` == current HEAD,
- stored `profile_schema_version` == PROFILE_SCHEMA_VERSION,
- no profile-input path is dirty or newly-added per `git status --porcelain`
(the schema-derived superset in `is_profile_input`, which also catches
untracked `??` files — a newly-added manifest or AGENTS.md must invalidate).
Cardinal rule: this cache is an optimization, never a correctness dependency.
Every failure mode (not a git repo, unreadable/malformed cache, no writable
/tmp, git errors) degrades to NO-CACHE/MISS and exits 0 — it never raises and
never serves a profile it cannot prove fresh.
Pure stdlib. No third-party dependencies.
"""
import json
import os
import subprocess
import sys
import tempfile
from datetime import datetime, timezone
# Bump when the profile schema changes so a newer reader never reuses an
# entry written under an older (narrower) schema.
PROFILE_SCHEMA_VERSION = "1"
CACHE_ROOT = "/tmp/compound-engineering/repo-profile"
# --- Profile-input set (the schema-derived superset, per the plan's R3) -------
# Any change to one of these — including a NEW untracked file — must invalidate
# the cached profile. Conservative by design: over-invalidating costs a
# re-derive; under-invalidating serves a stale profile (a cardinal-rule break).
# Dependency manifests + lockfiles. Matched by basename at ANY depth so a
# monorepo workspace's manifest also invalidates. The profiler derives
# stack/deps for ANY language, so this list must span ecosystems, not just JS —
# an omitted manifest means a dirty dep bump at unchanged HEAD serves a stale
# profile (a cardinal-rule break).
_MANIFEST_LOCKFILE = {
# JavaScript / TypeScript / Deno
"package.json", "package-lock.json", "yarn.lock", "pnpm-lock.yaml",
"pnpm-workspace.yaml", "bun.lock", "bun.lockb", "npm-shrinkwrap.json",
"deno.json", "deno.jsonc", "deno.lock",
# Monorepo / workspace orchestrators
"nx.json", "lerna.json", "turbo.json", "rush.json",
# Go (incl. workspaces)
"go.mod", "go.sum", "go.work", "go.work.sum",
# Rust
"Cargo.toml", "Cargo.lock",
# Ruby
"Gemfile", "Gemfile.lock", "gems.rb", "gems.locked",
# Python
"pyproject.toml", "poetry.lock", "Pipfile", "Pipfile.lock",
"requirements.txt", "setup.py", "setup.cfg",
"uv.lock", "pdm.lock", "environment.yml", "environment.yaml",
# PHP
"composer.json", "composer.lock",
# JVM (Maven / Gradle incl. version catalogs)
"pom.xml", "build.gradle", "build.gradle.kts", "settings.gradle",
"settings.gradle.kts", "libs.versions.toml", "build.sbt",
# Elixir / Dart
"mix.exs", "mix.lock", "pubspec.yaml", "pubspec.lock",
# Swift / iOS (a live target for this project)
"Package.swift", "Package.resolved", "Podfile", "Podfile.lock",
"Cartfile", "Cartfile.resolved",
# .NET
"packages.config", "Directory.Packages.props", "Directory.Build.props",
"paket.dependencies", "paket.lock",
# C / C++
"CMakeLists.txt", "conanfile.txt", "conanfile.py", "vcpkg.json",
# Haskell
"stack.yaml", "stack.yaml.lock", "cabal.project",
}
# Project-file extensions whose presence or version edit changes the stack
# profile. Suffix-matched at any depth (e.g. Foo.csproj, App.sln).
_PROJECT_FILE_SUFFIXES = (
".csproj", ".fsproj", ".vbproj", ".sln", ".cabal", ".tf", ".tfvars",
)
_LICENSE = {"LICENSE", "LICENSE.md", "LICENSE.txt", "LICENCE", "COPYING"}
# Topology / deployment sources. Basename match at any depth — these determine
# the derived deployment model (monolith / multi-service / serverless).
_TOPOLOGY = {
"Dockerfile", "Containerfile",
"docker-compose.yml", "docker-compose.yaml",
"vercel.json", "netlify.toml", "fly.toml", "render.yaml",
"serverless.yml", "serverless.yaml", "app.yaml", "Procfile",
# IaC descriptors that define the deployment topology.
"Pulumi.yaml", "Pulumi.yml", "Chart.yaml",
# CI descriptors outside .github/workflows/ (that prefix is handled below).
".gitlab-ci.yml", "Jenkinsfile", "azure-pipelines.yml",
}
# Path prefixes whose contents shape the profile (conventions / CI / deploy).
_INPUT_PREFIXES = (
".cursor/", ".github/workflows/", ".circleci/",
"terraform/", "k8s/", "kubernetes/",
)
# Root-level instruction/doc files cached in the profile. Matched ONLY at the
# repo root — subdirectory-scoped instruction files (e.g. nested CLAUDE.md /
# AGENTS.md) are NOT cached; consumers re-glob those fresh, so a subdir change
# must not invalidate the root profile.
_ROOT_DOCS = {
"AGENTS.md", "CLAUDE.md", "GEMINI.md",
"CONCEPTS.md", "STRATEGY.md",
"ARCHITECTURE.md", "README.md", "CONTRIBUTING.md",
".cursorrules", # legacy root-level Cursor rules (the profiler reads it)
}
# Runtime / tool version selectors that pin a language or tool version OUTSIDE
# the manifests (the profiler reads these for stack versions). Basename match.
_VERSION_SELECTORS = {
".nvmrc", ".node-version", ".python-version", ".ruby-version",
".java-version", ".go-version", ".terraform-version",
".tool-versions", "mise.toml", ".mise.toml", ".sdkmanrc",
}
def is_profile_input(path: str) -> bool:
"""True when a changed path is one the cached profile derives from.
Deliberately a conservative superset: anything plausibly feeding the
stack/deps/topology/conventions profile invalidates. Over-matching costs a
re-derive; under-matching serves a stale profile (a cardinal-rule break).
"""
base = os.path.basename(path)
if (
base in _MANIFEST_LOCKFILE
or base in _LICENSE
or base in _TOPOLOGY
or base in _VERSION_SELECTORS
):
return True
if base.endswith(_PROJECT_FILE_SUFFIXES):
return True
if "/" not in path and base in _ROOT_DOCS:
return True
if path.startswith(_INPUT_PREFIXES):
return True
return False
def git(*args: str) -> "str | None":
"""Run a git command; return stripped stdout, or None on any failure."""
try:
result = subprocess.run(
["git", *args], capture_output=True, text=True, check=False
)
except OSError:
return None
if result.returncode != 0:
return None
return result.stdout.strip()
def root_sha() -> "str | None":
out = git("rev-list", "--max-parents=0", "HEAD")
if not out:
return None
# Multi-root histories print several SHAs; pick a deterministic one.
return sorted(out.split("\n"))[0]
def changed_paths() -> "list[str] | None":
"""Paths from `git status --porcelain`, or None if it could not run.
Includes untracked (`??`) entries so a newly-added profile input is seen.
None signals "could not determine cleanliness" — the caller treats that
conservatively as a miss rather than serving an unverified profile.
"""
# --untracked-files=all lists individual untracked files; without it git
# collapses a fully-untracked new directory to a single `?? dir/` entry,
# which would hide a newly-added manifest inside it.
#
# Call subprocess directly rather than via git(): porcelain's status
# columns include a significant LEADING space (e.g. " M path"), and
# git()'s .strip() would eat it and shift the path slice.
try:
result = subprocess.run(
["git", "status", "--porcelain", "--untracked-files=all"],
capture_output=True,
text=True,
check=False,
)
except OSError:
return None
if result.returncode != 0:
return None
def clean(token: str) -> str:
token = token.strip()
# git quotes paths containing special characters.
if len(token) >= 2 and token[0] == '"' and token[-1] == '"':
token = token[1:-1]
return token
paths: list[str] = []
for line in result.stdout.split("\n"):
if not line.strip():
continue
rest = line[3:]
# Rename/copy entries are "old -> new"; BOTH endpoints changed. A
# profile input renamed *away* (e.g. `package.json -> pkg.json`) must
# still invalidate, so keep the source path, not just the destination.
if " -> " in rest:
for token in rest.split(" -> ", 1):
p = clean(token)
if p:
paths.append(p)
continue
p = clean(rest)
if p:
paths.append(p)
return paths
def cache_path(root: str, head: str) -> str:
return os.path.join(CACHE_ROOT, root, f"{head}.json")
def resolve_keys() -> "tuple[str, str] | None":
"""The (root-sha, head-sha) cache key, or None if not a usable git repo."""
root = root_sha()
head = git("rev-parse", "HEAD")
if not root or not head:
return None
return root, head
_PROFILE_KEYS = ("stack", "dependencies", "topology", "conventions", "vocabulary")
def is_valid_profile(profile: object) -> bool:
"""A profile must be an object carrying every expected top-level key. This
rejects a profiler failure that still returned JSON — a wrapper/error object
or a partial result — which would otherwise be cached and served as a HIT,
leaving consumers to skip fresh derivation and read missing fields from a
broken object."""
return isinstance(profile, dict) and all(k in profile for k in _PROFILE_KEYS)
def do_get() -> int:
keys = resolve_keys()
if keys is None:
print("NO-CACHE")
return 0
root, head = keys
path = cache_path(root, head)
def miss() -> int:
print("MISS")
print(path)
return 0
# A missing file raises FileNotFoundError (an OSError) and degrades to the
# same MISS, so no separate existence check is needed.
try:
with open(path) as f:
# /tmp is world-shared, so reject a cache file not owned by us: a
# co-tenant could plant an entry that passes the gates below and
# feed attacker-controlled text into the agent as the "profile"
# (indirect prompt injection). Skip where geteuid is unavailable
# (non-POSIX), where this shared-tmp threat does not apply.
geteuid = getattr(os, "geteuid", None)
if geteuid is not None and os.fstat(f.fileno()).st_uid != geteuid():
return miss()
doc = json.load(f)
except (OSError, ValueError):
return miss()
profile = doc.get("profile") if isinstance(doc, dict) else None
if (
not isinstance(doc, dict)
or doc.get("head_sha") != head
or doc.get("profile_schema_version") != PROFILE_SCHEMA_VERSION
or not is_valid_profile(profile)
):
return miss()
changed = changed_paths()
# Could not determine cleanliness, or a profile input changed/was added.
if changed is None or any(is_profile_input(p) for p in changed):
return miss()
print("HIT")
print(json.dumps(profile))
return 0
def do_put(profile_file: str) -> int:
keys = resolve_keys()
if keys is None:
print("NO-CACHE")
return 0
root, head = keys
try:
with open(profile_file) as f:
profile = json.load(f)
except (OSError, ValueError) as exc:
sys.stderr.write(f"repo-profile-cache: cannot read profile: {exc}\n")
print("NO-CACHE") # nothing persisted; keep the stdout contract
return 0 # degrade — never block the caller
# Shape guard: the profile must be an object carrying the expected top-level
# keys. A misbehaving profiler that returns garbage JSON (`{}`, `"oops"`,
# `[]`, `42`) or a partial/error object must not be cached and then served
# to every skill as the agnostic profile. Reject it (the caller already has
# its own derived profile for this run; the next run re-derives).
if not is_valid_profile(profile):
sys.stderr.write(
"repo-profile-cache: profile is not a valid profile object; not caching\n"
)
print("NO-CACHE")
return 0
# Do not cache a profile derived from a DIRTY tree: it reflects uncommitted
# edits to profile inputs, yet it would be stored under the clean HEAD key
# and served as a HIT after those edits are reverted (same HEAD, clean tree)
# — stale. Only persist a profile that matches the committed HEAD.
changed = changed_paths()
if changed is None or any(is_profile_input(p) for p in changed):
sys.stderr.write(
"repo-profile-cache: profile inputs are dirty; not caching\n"
)
print("NO-CACHE")
return 0
doc = {
"profile_schema_version": PROFILE_SCHEMA_VERSION,
"root_sha": root,
"head_sha": head,
"built_at": datetime.now(timezone.utc).isoformat(),
"profile": profile,
}
path = cache_path(root, head)
try:
os.makedirs(os.path.dirname(path), exist_ok=True)
# Atomic write: temp file in the same dir + os.replace (atomic on
# POSIX) so a concurrent reader never sees a torn JSON.
fd, tmp = tempfile.mkstemp(
dir=os.path.dirname(path), prefix=".tmp-", suffix=".json"
)
try:
with os.fdopen(fd, "w") as f:
json.dump(doc, f)
os.replace(tmp, path)
except BaseException:
try:
os.unlink(tmp)
except OSError:
pass
raise
except Exception as exc: # never block the caller, whatever the failure
sys.stderr.write(f"repo-profile-cache: cannot write cache: {exc}\n")
print("NO-CACHE")
return 0
print(path)
return 0
def usage() -> int:
sys.stderr.write(
"usage: repo-profile-cache.py get | put <profile-json-file>\n"
)
return 2
def main(argv: "list[str]") -> int:
if len(argv) < 2:
return usage()
cmd = argv[1]
if cmd == "get":
return do_get()
if cmd == "put":
if len(argv) != 3:
return usage()
return do_put(argv[2])
return usage()
if __name__ == "__main__":
sys.exit(main(sys.argv))