feat: failproofai audit — count past stupid agent behavior

[NiveditJain]

Summary

Adds a new failproofai audit CLI command (beta) that scans past agent transcripts on the user's machine (Claude / Codex / Copilot / Cursor / OpenCode / Pi / Gemini — all 7 supported CLIs) and reports how often the agent did things failproofai is built to stop. The output is a quantified retrospective: "in the last 30 days, your agent ran env 428 times, force-pushed 12 times, and cat src/foo.ts'd 207 times instead of using Read."

Each tool-use event is run through two parallel detection paths:

1. Replay through the existing 39 builtin policies via evaluatePolicies() — so the audit always reflects what today's policy engine would catch, even on sessions from before failproofai was installed.
2. 8 new audit-only detectors for "stupid behavior" patterns not (yet) enforced in real time: redundant-cd-cwd, prefer-edit-over-read-cat, prefer-edit-over-sed-awk, prefer-write-over-heredoc, sleep-polling-loop, find-from-root, git-commit-no-verify, reread-after-edit.

GTM-oriented report (latest commits)

The report renderer was rewritten so the first run feels like a "moment of truth" instead of a developer table:

• Headline call-out box: "Your agent did N wasteful or risky things in the last X days. M of those would've been caught if more policies were on."
• Two sections, not a flat list: ✓ ALREADY PROTECTED (builtins you have enabled that fired) vs ○ SLIPPING THROUGH (unenabled builtins + audit-only detectors). Each row is a human-readable title ("Tried to read files outside your project"), a one-line impact ("Stops the agent from peeking at neighboring repos or your home directory."), a relative timestamp ("Last seen 2h ago · 6 projects"), and a per-row install CTA.
• Bottom NEXT block prints one copy-pasteable failproofai policies --install ... covering every unenabled builtin, plus the shareable report path and a star link.
• Markdown report now opens with a TL;DR block readable to someone who's never heard of failproofai — so when users paste it into Slack/PRs, their teammates know what they're looking at. Includes a one-command "install everything" code block and an Examples appendix grouped by issue.
• Honors NO_COLOR / FORCE_COLOR=0.

To support this, BuiltinPolicyDefinition (src/hooks/policy-types.ts) and Detector (src/audit/types.ts) gained optional displayTitle ("Tried to push to main branch") and impact ("Direct pushes to a protected branch bypass review.") fields. All 39 builtins and all 8 detectors had copy authored in-place — single source of truth, the dashboard can use the same copy later.

Beta marker

Marked across all surfaces:

• docs/cli/audit.mdx title: "Audit past sessions (beta)" + Mintlify <Note> callout
• bin/failproofai.mjs: audit (beta) in the top-level help; audit --help page leads with a NOTE block
• Report renderer: [beta] tag on every run; markdown report intro line names it as beta

PostHog telemetry (per the GTM ask)

src/audit/telemetry.ts wires four new events into the existing trackHookEvent surface:

Event	Fires	Purpose
audit_started	Top of runAudit()	Volume / opt-in funnel start
audit_pattern_detected	Per AuditCount aggregated	Per-pattern hits, enabled_in_config boolean = the key conversion signal
audit_install_cta_shown	When there are unenabled builtins	Counts unenabled patterns by name (slugs only)
audit_completed	End of runAudit()	Duration, total hits, enabled_builtin_hits vs unenabled_builtin_hits vs audit_detector_hits — the GTM funnel signal

Strict privacy contract: never send transcript paths, decoded project folder names, cwds, example commands, file paths, sessionIds, or tool inputs. Only slugs (public), counts, booleans, bucketed ages, and CLI tags. Honors FAILPROOFAI_TELEMETRY_DISABLED=1 via the inherited contract.

What's in the diff

• src/audit/ — types, orchestrator, replay engine, cache, report renderers (text/markdown/json), new telemetry module.
• src/audit/cli-adapters/ — 7 per-CLI adapters + shared LogEntry[] → NormalizedToolEvent[] converter. Each delegates discovery to the existing lib/<cli>-projects.ts + lib/<cli>-sessions.ts helpers.
• src/audit/detectors/ — 8 detectors, one file each, each with authored displayTitle + impact.
• src/hooks/tool-name-canonicalize.ts — extracted from src/hooks/handler.ts so the audit replay and the live handler share one canonicalization implementation. Pure refactor.
• src/hooks/builtin-policies.ts + src/hooks/policy-types.ts — displayTitle + impact added to all 39 builtin policy definitions.
• lib/claude-sessions.ts — new transcript-discovery helper for Claude.
• bin/failproofai.mjs — "audit" registered in SUBCOMMANDS, full dispatch with flag parsing + help + beta marker.
• docs/cli/audit.mdx + nav entry in docs/docs.json + beta callout. Translations follow [auto] update translations #371's workflow.
• CHANGELOG.md — Features entry under 0.0.11-beta.2 (with (beta) annotation + PR number).
• __tests__/audit/ — 36 tests across detectors, replay, and end-to-end orchestrator.

Design notes

• Cache. Per-transcript at ~/.failproofai/cache/audit/<sha1>.json, keyed by (mtime, size, engineVersion, detectorVersion). engineVersion is a sha1 of every builtin policy's name + function source, so changing one regex invalidates cache automatically. Created with mode: 0o600 at file-creation time.
• No mutation. warn-repeated-tool-calls is the one builtin that writes to disk; replay skips it so audits don't pollute user data.
• Workflow policies skipped naturally. require-*-before-stop policies match only Stop events and execSync against live git, so they never fire on replayed PreToolUse/PostToolUse events.
• PostToolUse synthesis. When a transcript captured a tool_result, the replay emits a second synthetic event with tool_response (truncated to a fixed UTF-8-aware byte budget) so sanitize-* policies register hits.

CodeRabbit fixes (commit 218c02d)

Addressed 10 of 11 review comments from the initial PR push:

• Reject bare --cli / --project / --policy (was silently widening scope) and validate --limit is a positive integer.
• Condensed the CHANGELOG entry to one line + PR number per CLAUDE.md convention.
• Atomic mode: 0o600 at cache-file creation.
• Truncate tool_response text by UTF-8 BYTE length (was UTF-16 code units).
• Heredoc detector accepts lowercase delimiters.
• sleep-polling-loop uses parseFloat so sleep 0.5m (= 30s) counts.
• Orchestrator now correctly counts stream-read failures in the errors stat.
• Markdown table cells escape |/\\/CR/LF so a policy name with | doesn't break the table.
• canonicalizeToolInput no longer flattens array inputs into a numeric-keyed object.

The 11th suggestion (pre-register <locale>/cli/audit in 13 language nav sections) was reverted in commit db05635 — Mintlify's validate step rejects nav refs to non-existent pages, and the project's translation workflow lands translated pages and nav entries together (per #371).

Test plan

• bun run lint clean (0 errors; 1 pre-existing warning unrelated)
• bunx tsc --noEmit clean
• bun install (which triggers the Next.js prepare build) succeeds
• bunx vitest run — 1685 tests pass (1623 pre-existing + 36 audit + 26 from rebased upstream)
• Live smoke test: 28 Claude transcripts scanned in 0.3–0.6s, both builtin policies AND audit detectors firing, new GTM report layout rendering correctly, markdown report written
• Negative-path smoke tests: bare --cli and --limit 0 both reject with clear errors
• CI green on the latest two commits (waiting)
• Manual: run failproofai audit --since 30d on a real install and visually verify the table + report

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Added beta failproofai audit: scans local agent transcripts across supported CLIs, runs builtin policies + audit-only detectors, outputs ANSI table/JSON/markdown report, and uses per‑transcript caching.
  • Added telemetry and CLI flags for scoping, filtering, limits, examples, and report control.
  • Added env var to skip first-run prompt: FAILPROOFAI_NO_FIRST_RUN=1

• Tests

  • Added unit and end-to-end tests covering detectors, replay behavior, and audit flow.

• Documentation

  • Updated CLI and environment-variable docs and localized guides to document audit and first-run options.

---

Release-prep status (commit e92815e):

• Merged origin/main into the branch (resolves a CHANGELOG.md conflict with PRs Expand PostHog telemetry to close audited coverage gaps #376 and feat: first-run install prompt on bare failproofai #378 that landed on main while this PR was in review).
• Local verification on the merged state: bun install build passes, bunx tsc --noEmit clean, bun run lint 0 errors, 1685 tests pass.
• PR mergeability: MERGEABLE, awaiting CI on the new merge commit.
• Version bump intentionally NOT done here — per the project CHANGELOG / version policy, bumps happen on a separate luv-cut-* branch (block-version-bumps enforces this on feature branches). The audit Features entry is already correctly placed under ## 0.0.11-beta.2 — 2026-05-21 matching the current package.json.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR implements the beta failproofai audit command end-to-end: transcript discovery for seven CLIs, normalization adapters, eight audit-only detectors, policy replay engine, per-transcript caching, three output formatters, CLI subcommand wiring, telemetry, tests, and documentation/localizations.

Changes

Audit Command Implementation

Layer / File(s)	Summary
Audit type system src/audit/types.ts	Defines NormalizedToolEvent, TranscriptMetadata, detector contracts (Detector, DetectorFn, DetectorHit), aggregation shapes (AuditCount, TranscriptAuditResult, AuditResult), CLI options (RunAuditOptions), and size/truncation constants.
Eight audit detectors and registry src/audit/detectors/*, src/audit/detectors/index.ts, __tests__/audit/detectors.test.ts	Adds detectors (redundant-cd-cwd, reread-after-edit with session state/countdown, sleep-polling-loop, find-from-root, git-commit-no-verify, prefer-edit-over-read-cat, prefer-edit-over-sed-awk, prefer-write-over-heredoc), an ordered AUDIT_DETECTORS registry and name lookup, plus unit tests covering matches and negative cases.
Transcript discovery and CLI adapters lib/claude-sessions.ts, src/audit/cli-adapters/*, src/audit/cli-adapters/index.ts, src/audit/cli-adapters/shared.ts	Claude project/transcript discovery with subagent fallback, shared logEntriesToEvents converter (UTF-8-aware truncation), and adapters for Claude, Codex, Copilot, Cursor, Gemini, OpenCode, Pi, plus a centralized adapter registry.
Policy replay engine & tests src/audit/replay.ts, __tests__/audit/replay.test.ts	Replay-mode initialization (skips warn-repeated-tool-calls), replayEvent building PreToolUse/PostToolUse evaluations, ReplayHit shape, and tests asserting expected policy firings and PostToolUse synthesis.
Per-transcript caching src/audit/cache.ts	Per-transcript cache under ~/.failproofai/cache/audit/ keyed by transcript path SHA1, engine/detector version fingerprints, read/write with strict mtime/size/version checks and best-effort permission handling, plus test helpers.
Audit orchestration src/audit/index.ts, __tests__/audit/index.test.ts	runAudit entry point: adapter discovery, optional --since parsing, bounded parallel transcript scanning with detector-first then policy replay, cache-aware reads/writes, aggregation by policy/detector name with example capping, optional filtering by requested policies, telemetry hooks, and end-to-end tests.
Output formatting src/audit/report.ts	Three renderers: formatText (ANSI table/box with optional examples), formatJson (pretty JSON), formatMarkdown (shareable markdown report with tables and examples).
Tool canonicalization refactor src/hooks/tool-name-canonicalize.ts, src/hooks/handler.ts	Extracts canonicalization helpers into tool-name-canonicalize.ts; handler.ts now imports those helpers and removes in-file canonicalization code.
CLI integration bin/failproofai.mjs	Adds audit subcommand with flag parsing (--cli, --project, --since, --policy, --limit, --show-examples, --report/--no-report, --json, --no-cache), validation, runs runAudit, prints formatted output, and optionally writes Markdown reports.
Telemetry src/audit/telemetry.ts	Non-blocking telemetry helpers for audit lifecycle events (started, pattern_detected, install_cta_shown, completed) with a privacy contract restricting sent fields.
Documentation & localization CHANGELOG.md, docs/cli/audit.mdx, docs/introduction.mdx, docs/*/cli/environment-variables.mdx, docs/*/introduction.mdx, docs/i18n/README.*.md	CHANGELOG entry, full CLI audit docs (options, detectors, outputs, schema, examples, cache notes), added FAILPROOFAI_NO_FIRST_RUN docs, and many localized introduction/environment-variable updates across languages.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

" > 🐰
A command to audit, detectors to find,
Caching transcript wisdom, peace of mind,
Seven CLIs speak their truths aligned,
Policies replay what once occurred—
All patterns caught, no risk deferred!"

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

[coderabbitai]

Actionable comments posted: 11

🧹 Nitpick comments (1)

__tests__/audit/detectors.test.ts (1)

85-97: ⚡ Quick win

Add a lowercase heredoc delimiter case for coverage.

Please add a case like cat <<'eof' > out.md so this detector behavior is locked by tests.

As per coding guidelines, "Always add unit tests for new behaviour. Place tests in tests/."

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@__tests__/audit/detectors.test.ts` around lines 85 - 97, Add a unit test to
cover lowercase heredoc delimiters: inside the "prefer-write-over-heredoc" suite
(in __tests__/audit/detectors.test.ts) add an it case that calls
preferWriteOverHeredoc.detect with bash("cat <<'eof' > out.md\nhello\neof") and
expects a non-null result; use the same test style/helpers
(preferWriteOverHeredoc.detect and bash) as the existing tests so the detector
behavior for lowercase delimiters is asserted.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@bin/failproofai.mjs`:
- Around line 467-484: The collectMulti function currently allows flags like
--cli/--project/--policy with zero following values; modify collectMulti (which
iterates subArgs and returns { values, consumed }) to validate that at least one
value was collected for the given flag and fail fast if not: after populating
out and consumed, if out.length === 0 throw an Error (or return a clear failure)
with a message including the flag (e.g. `Flag ${flag} requires at least one
value`) so callers cannot proceed with an empty filter.
- Line 533: The current ternary sets limit using parseInt(limitRes.value, 10)
which can produce NaN, 0, or negatives; change this to explicitly parse and
validate a positive integer: take limitRes.value, parse it to an integer, check
Number.isInteger(parsed) and parsed > 0, and only then assign to the limit field
(otherwise print a clear validation error and exit or set limit to undefined
depending on desired behavior). Update the logic around the limit assignment
(referencing limitRes and the limit property) so invalid values are rejected
with a helpful message instead of passing NaN/0/negative through to the audit.

In `@CHANGELOG.md`:
- Around line 5-6: The CHANGELOG entry is too verbose and missing the PR number;
replace the multi-line paragraph with a single concise one-line entry that
includes the PR number and a short description referencing the new command and
key changes (e.g. "Add `failproofai audit` command with 8 audit-only detectors
and shared tool-name canonicalization via tool-name-canonicalize (PR
#<your-PR-number>)"); ensure you mention "failproofai audit", the new audit-only
detectors (e.g. redundant-cd-cwd, prefer-edit-over-read-cat, etc.) only if
needed for clarity but keep the line short and include the actual PR number for
this change.

In `@docs/docs.json`:
- Line 45: The CLI "audit" nav entry ("cli/audit") is only present in the
English section and must be added to every other language's CLI pages array to
keep navigation consistent; edit docs.json and insert "cli/audit" into each
non-English language CLI group (zh, ja, ko, es, pt-BR, de, fr, ru, hi, tr, vi,
it, ar, he) at the same position as in English (after "list-policies" and before
"hook"), using the same path ("cli/audit") if localized files don't yet exist so
the structure mirrors English for future translations.

In `@src/audit/cache.ts`:
- Around line 98-99: The cache file is created with writeFileSync(cachePath,
JSON.stringify(entry), "utf-8") then tightened with chmodSync(cachePath, 0o600),
which leaves a window where the file can have looser permissions; change
creation to atomically set secure mode at creation (e.g., pass a mode option or
use open/write with mode 0o600) so the file is created with 0o600 from the
start, keep the try/catch around chmodSync as a best-effort fallback, and update
references to cachePath, writeFileSync, and chmodSync in src/audit/cache.ts
accordingly.

In `@src/audit/cli-adapters/shared.ts`:
- Around line 52-56: The current truncation uses String.length and slice, which
counts UTF-16 code units and can exceed the intended UTF-8 byte cap; update the
truncation logic where toolResultText is assigned (the block checking
block.result?.content and assigning toolResultText) to measure UTF-8 bytes using
Buffer.byteLength(..., "utf8") (or TextEncoder) and truncate the string so its
UTF-8 byte length does not exceed AUDIT_TOOL_RESULT_MAX_BYTES, e.g.
iterate/backtrack on characters until Buffer.byteLength(candidate, "utf8") <=
AUDIT_TOOL_RESULT_MAX_BYTES and then assign that truncated candidate to
toolResultText.

In `@src/audit/detectors/prefer-write-over-heredoc.ts`:
- Around line 21-24: The heredoc regex in the if-statement currently only
matches uppercase delimiters (/[A-Z_]+/) so lowercase delimiters like <<'eof'
are missed; update the regex used in the detector (the if(...) test) to accept
lowercase letters and digits (e.g. use /<<-?\s*['"]?[A-Za-z0-9_]+['"]?\s*>\s*\S/
or simply add the case-insensitive flag like
/<<-?\s*['"]?[A-Z_]+['"]?\s*>\s*\S/i) so all valid heredoc delimiters are
detected, then keep the existing summary extraction
(cmd.replace(...).slice(...)) unchanged.

In `@src/audit/detectors/sleep-polling-loop.ts`:
- Around line 21-25: The detector currently drops fractional sleep durations
because the regex only captures the integer part and the code uses parseInt;
update the regex in sleep-polling-loop.ts so the numeric capture includes
decimals (e.g., change (\d+)(?:\.\d+)? to capture the full number like
(\d+(?:\.\d+)?)) and replace parseInt(match[1], 10) with parseFloat(match[1]) so
fractional values like 0.5 are preserved, then compute seconds using that float
when applying the unit multipliers (the match variable, numeric capture, and the
seconds calculation should all use the float value).

In `@src/audit/index.ts`:
- Around line 81-85: The catch that calls ADAPTERS[meta.cli].streamEvents(meta)
is swallowing failures (returning empty) so the audit errors counter never
increments; update that catch to increment the shared errors counter (errors++)
and then rethrow the caught error (throw err) instead of silently returning
empty; apply the same change to the other similar catch block later (the one
around the second streamEvents call) so all transcript stream failures are
accounted for and propagated.

In `@src/audit/report.ts`:
- Around line 146-148: The markdown table cells are interpolated raw in the
out.push call, so values like r.name (and r.source/firstSeen/lastSeen) can break
the table if they contain |, backticks, or newlines; create/use a small
sanitizer (e.g., escapeMarkdownCell) and apply it to each cell before
interpolation in the out.push line (escape pipe characters to \|, backticks to
\`, and collapse or replace newlines) so the table row generated by out.push(`|
\`${...}\` | ${...} | ... |`) remains well-formed.

In `@src/hooks/tool-name-canonicalize.ts`:
- Around line 50-57: The function canonicalizeToolInput currently treats any
object-like rawInput (including arrays) as a Record and remaps keys; update the
guard so it returns rawInput unchanged if it's an array (e.g., check
Array.isArray(rawInput)) and only proceeds when rawInput is a plain record
object; keep the existing logic that picks perToolMap from
OPENCODE_TOOL_INPUT_MAP or PI_TOOL_INPUT_MAP using toolName and then maps keys
using perToolMap[k] inside the loop.

---

Nitpick comments:
In `@__tests__/audit/detectors.test.ts`:
- Around line 85-97: Add a unit test to cover lowercase heredoc delimiters:
inside the "prefer-write-over-heredoc" suite (in
__tests__/audit/detectors.test.ts) add an it case that calls
preferWriteOverHeredoc.detect with bash("cat <<'eof' > out.md\nhello\neof") and
expects a non-null result; use the same test style/helpers
(preferWriteOverHeredoc.detect and bash) as the existing tests so the detector
behavior for lowercase delimiters is asserted.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 5f691585-8cb1-4a7d-a7d5-58d59a820e24

📥 Commits

Reviewing files that changed from the base of the PR and between ef306f0 and 328cf95.

📒 Files selected for processing (33)

• CHANGELOG.md
• __tests__/audit/detectors.test.ts
• __tests__/audit/index.test.ts
• __tests__/audit/replay.test.ts
• bin/failproofai.mjs
• docs/cli/audit.mdx
• docs/docs.json
• lib/claude-sessions.ts
• src/audit/cache.ts
• src/audit/cli-adapters/claude.ts
• src/audit/cli-adapters/codex.ts
• src/audit/cli-adapters/copilot.ts
• src/audit/cli-adapters/cursor.ts
• src/audit/cli-adapters/gemini.ts
• src/audit/cli-adapters/index.ts
• src/audit/cli-adapters/opencode.ts
• src/audit/cli-adapters/pi.ts
• src/audit/cli-adapters/shared.ts
• src/audit/detectors/find-from-root.ts
• src/audit/detectors/git-commit-no-verify.ts
• src/audit/detectors/index.ts
• src/audit/detectors/prefer-edit-over-read-cat.ts
• src/audit/detectors/prefer-edit-over-sed-awk.ts
• src/audit/detectors/prefer-write-over-heredoc.ts
• src/audit/detectors/redundant-cd-cwd.ts
• src/audit/detectors/reread-after-edit.ts
• src/audit/detectors/sleep-polling-loop.ts
• src/audit/index.ts
• src/audit/replay.ts
• src/audit/report.ts
• src/audit/types.ts
• src/hooks/handler.ts
• src/hooks/tool-name-canonicalize.ts

[coderabbitai]

Actionable comments posted: 9

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

src/audit/report.ts (1)

152-159: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Escape backticks in subsection header and consider escaping example metadata.

At line 154, r.name is used directly inside backticks without escaping. If a policy name contains backticks, the markdown heading will be malformed. Additionally, e.cwd and e.timestamp at line 157 could contain characters that interfere with the italic markdown.

Suggested fix

       if (r.examples.length === 0) continue;
-      out.push(`### \`${r.name}\` — examples`);
+      out.push(`### \`${escapeBackticks(r.name)}\` — examples`);
       out.push("");
       for (const e of r.examples) {
-        out.push(`- \`${escapeBackticks(e.example)}\` _(${e.cwd || "?"}, ${e.timestamp})_`);
+        const safeCwd = (e.cwd || "?").replace(/_/g, "\\_");
+        const safeTs = e.timestamp.replace(/_/g, "\\_");
+        out.push(`- \`${escapeBackticks(e.example)}\` _(${safeCwd}, ${safeTs})_`);
       }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/audit/report.ts` around lines 152 - 159, The subsection header uses
r.name inside backticks unescaped and example metadata e.cwd/e.timestamp are
inserted raw; update the out.push that builds the header and the out.push that
builds each example to run r.name, e.cwd, and e.timestamp through the existing
escapeBackticks (or a small escape function for markdown/italic safety) so any
backticks or characters that would break the ``` `...` ``` or italic markup are
escaped; locate the loop over rows (for (const r of rows)), the header
construction using r.name, and the example line building using e.cwd/e.timestamp
and apply the escaping there (reuse escapeBackticks or add a new escapeMarkdown
helper and apply it to r.name, e.cwd, and e.timestamp).

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@docs/he/cli/environment-variables.mdx`:
- Around line 2-40: The Hebrew locale file currently contains Arabic content
(e.g., frontmatter title "متغيرات البيئة" and section headings like "## لوحة
المعلومات", "## تسجيل السجلات", "## التحليلات", "## موجه التشغيل الأول", "##
نموذج اللغة (لتقييم السياسة)"); replace those Arabic strings with the correct
Hebrew translations while preserving all environment variable keys,
descriptions, table structures, and default values (e.g., keep `PORT`,
`CLAUDE_PROJECTS_PATH`, `FAILPROOFAI_LOG_LEVEL=info|warn|error`,
`FAILPROOFAI_LLM_BASE_URL`, etc.), and ensure the file remains valid
MDX/frontmatter so the Hebrew copy delivers the same semantic content as the
original English source.

In `@docs/i18n/README.ar.md`:
- Line 96: The Arabic README contains an outdated policy count string ("30 سياسة
مدمجة تصبح نشطة فورًا."); update that text to reflect the new total (change "30"
to "39") so it matches the rest of the PR/docs and the referenced built-in
policies count.

In `@docs/i18n/README.de.md`:
- Line 94: Update the outdated policy count in the German README by replacing
the phrase "30 integrierte Richtlinien" with "39 integrierte Richtlinien" so the
text "30 integrierte Richtlinien werden sofort aktiviert." accurately reads "39
integrierte Richtlinien werden sofort aktiviert."; locate the occurrence by
searching for the exact string "30 integrierte Richtlinien" in README.de.md and
adjust any other nearby references if present.

In `@docs/i18n/README.it.md`:
- Line 102: The table entry for the policy key `block-push-master` mistranslates
the git action; replace the phrase "Pressioni dirette su `main` / `master`" with
a clearer technical term such as "Push diretti su `main` / `master`" (or
equivalent) so the blocked git action is unambiguous.

In `@docs/i18n/README.tr.md`:
- Line 146: Fix the typo in the Turkish README sentence by replacing
“engellendığını” with “engellendiğini” in the docs/i18n/README.tr.md file (the
dashboard visibility sentence on the shown diff) so the phrase reads correctly.

In `@docs/it/introduction.mdx`:
- Line 25: Update the Italian article agreement in the sentence "Scrivi le tue
regole in JavaScript con un semplice API allow / deny / instruct." by replacing
"un semplice API" with "una semplice API" so the line reads "Scrivi le tue
regole in JavaScript con una semplice API allow / deny / instruct."; locate and
edit that exact string in docs/it/introduction.mdx.

In `@docs/ja/introduction.mdx`:
- Around line 53-54: The inline comments after the shell commands are in English
on a Japanese page; replace the English comments in the two lines containing
"failproofai policies --install   # enable policies (or skip — `failproofai`
will offer to set them up on first run)" and "failproofai                      #
launch the dashboard" with concise Japanese translations (e.g.,
「ポリシーを有効にする（スキップ可 — 初回起動時に設定を案内します）」 and 「ダッシュボードを起動」) so the page is fully
localized.

In `@docs/tr/cli/environment-variables.mdx`:
- Around line 28-32: Change the awkward noun form in the first-run prompt
section: rename the header "İlk çalıştırma istemesi" to "İlk çalıştırma istemi"
and update the table description text "İlk `failproofai` çağrısında politikaları
yüklemeyi teklif eden istememi atlayın" to use the matching noun form "istemi"
(e.g., "İlk `failproofai` çağrısında politikaları yüklemeyi teklif eden istemi
atlayın") so the wording is consistent and natural; ensure the
`FAILPROOFAI_NO_FIRST_RUN=1` variable line remains unchanged except for the
wording swap.

In `@src/audit/detectors/sleep-polling-loop.ts`:
- Around line 21-25: The detector's regex and number parsing miss explicit "s"
and leading-dot fractions; update the regex to capture fractional seconds and
the "s" unit (e.g. use /\bsleep\s+(\d*\.?\d+)(s|m|h|d)?\b/i) so match[1] will
include decimals like ".5" or "30.5" and match[2] can be "s"; keep using
parseFloat(match[1]) to get n, keep the existing unit-to-seconds logic (unit ===
"m" ? n*60 : unit === "h" ? n*3600 : unit === "d" ? n*86400 : n) and ensure
variable names match (match, n, unit, seconds) in sleep-polling-loop.ts.

---

Outside diff comments:
In `@src/audit/report.ts`:
- Around line 152-159: The subsection header uses r.name inside backticks
unescaped and example metadata e.cwd/e.timestamp are inserted raw; update the
out.push that builds the header and the out.push that builds each example to run
r.name, e.cwd, and e.timestamp through the existing escapeBackticks (or a small
escape function for markdown/italic safety) so any backticks or characters that
would break the ``` `...` ``` or italic markup are escaped; locate the loop over
rows (for (const r of rows)), the header construction using r.name, and the
example line building using e.cwd/e.timestamp and apply the escaping there
(reuse escapeBackticks or add a new escapeMarkdown helper and apply it to
r.name, e.cwd, and e.timestamp).

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: a6263605-fb2e-4f2c-9220-1ee326b12f61

📥 Commits

Reviewing files that changed from the base of the PR and between 328cf95 and 199c377.

📒 Files selected for processing (53)

• CHANGELOG.md
• bin/failproofai.mjs
• docs/ar/cli/environment-variables.mdx
• docs/ar/introduction.mdx
• docs/cli/environment-variables.mdx
• docs/de/cli/environment-variables.mdx
• docs/de/introduction.mdx
• docs/es/cli/environment-variables.mdx
• docs/es/introduction.mdx
• docs/fr/cli/environment-variables.mdx
• docs/fr/introduction.mdx
• docs/he/cli/environment-variables.mdx
• docs/he/introduction.mdx
• docs/hi/cli/environment-variables.mdx
• docs/hi/introduction.mdx
• docs/i18n/README.ar.md
• docs/i18n/README.de.md
• docs/i18n/README.es.md
• docs/i18n/README.fr.md
• docs/i18n/README.he.md
• docs/i18n/README.hi.md
• docs/i18n/README.it.md
• docs/i18n/README.ja.md
• docs/i18n/README.ko.md
• docs/i18n/README.pt-br.md
• docs/i18n/README.ru.md
• docs/i18n/README.tr.md
• docs/i18n/README.vi.md
• docs/i18n/README.zh.md
• docs/introduction.mdx
• docs/it/cli/environment-variables.mdx
• docs/it/introduction.mdx
• docs/ja/cli/environment-variables.mdx
• docs/ja/introduction.mdx
• docs/ko/cli/environment-variables.mdx
• docs/ko/introduction.mdx
• docs/pt-br/cli/environment-variables.mdx
• docs/pt-br/introduction.mdx
• docs/ru/cli/environment-variables.mdx
• docs/ru/introduction.mdx
• docs/tr/cli/environment-variables.mdx
• docs/tr/introduction.mdx
• docs/vi/cli/environment-variables.mdx
• docs/vi/introduction.mdx
• docs/zh/cli/environment-variables.mdx
• docs/zh/introduction.mdx
• src/audit/cache.ts
• src/audit/cli-adapters/shared.ts
• src/audit/detectors/prefer-write-over-heredoc.ts
• src/audit/detectors/sleep-polling-loop.ts
• src/audit/index.ts
• src/audit/report.ts
• src/hooks/tool-name-canonicalize.ts

✅ Files skipped from review due to trivial changes (24)

• docs/cli/environment-variables.mdx
• docs/vi/introduction.mdx
• docs/introduction.mdx
• docs/hi/introduction.mdx
• docs/ru/introduction.mdx
• docs/i18n/README.zh.md
• docs/hi/cli/environment-variables.mdx
• docs/zh/introduction.mdx
• docs/es/introduction.mdx
• docs/de/introduction.mdx
• docs/es/cli/environment-variables.mdx
• docs/i18n/README.pt-br.md
• CHANGELOG.md
• docs/it/cli/environment-variables.mdx
• docs/ko/introduction.mdx
• docs/tr/introduction.mdx
• docs/i18n/README.ja.md
• docs/i18n/README.hi.md
• docs/i18n/README.ko.md
• docs/i18n/README.vi.md
• docs/fr/introduction.mdx
• docs/pt-br/introduction.mdx
• docs/i18n/README.ru.md
• docs/ru/cli/environment-variables.mdx

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/audit/report.ts`:
- Around line 217-218: The footer is printing a hardcoded path string via the
lines.push call instead of the configured report path; update the second-to-last
lines.push (the one that currently inserts "./failproofai-audit.md") to use the
audit/report module's configured report path variable (the same variable the CLI
--report <path> populates, e.g., reportPath or reportFile) so the printed
shareable report path matches the actual output location, preserving the
ANSI.cyan and ANSI.reset wrappers and leaving the surrounding text unchanged.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 9570b90b-7772-4454-951b-c45cbc5f6f75

📥 Commits

Reviewing files that changed from the base of the PR and between 199c377 and a0da3a9.

📒 Files selected for processing (16)

• bin/failproofai.mjs
• docs/cli/audit.mdx
• src/audit/detectors/find-from-root.ts
• src/audit/detectors/git-commit-no-verify.ts
• src/audit/detectors/prefer-edit-over-read-cat.ts
• src/audit/detectors/prefer-edit-over-sed-awk.ts
• src/audit/detectors/prefer-write-over-heredoc.ts
• src/audit/detectors/redundant-cd-cwd.ts
• src/audit/detectors/reread-after-edit.ts
• src/audit/detectors/sleep-polling-loop.ts
• src/audit/index.ts
• src/audit/report.ts
• src/audit/telemetry.ts
• src/audit/types.ts
• src/hooks/builtin-policies.ts
• src/hooks/policy-types.ts

✅ Files skipped from review due to trivial changes (2)

• src/hooks/builtin-policies.ts
• docs/cli/audit.mdx

[NiveditJain]

Reopening to re-trigger CI on commits 0c70ff4 + 99a9651 (the previous push hit the old redirected remote and GitHub Actions never registered the new tip).

[NiveditJain]

CodeRabbit posted 10 findings on this push. Triage:

In-scope (this PR's code) — fixed:

• src/audit/report.ts:217 — hardcoded ./failproofai-audit.md in the footer ignored --report <path>. Fixed in commit f215748 (also suppressed entirely on --no-report).
• src/audit/detectors/sleep-polling-loop.ts:27 — fractional sleep durations. Already fixed in commit 218c02d via parseFloat; CodeRabbit's suggested Number.parseFloat is functionally identical. Marking resolved.

Out of scope — pre-existing translation issues from the upstream translation-sync commit (199c377):

• docs/he/cli/environment-variables.mdx — Hebrew file populated with Arabic content
• docs/i18n/README.{ar,de}.md — outdated policy count (says 30, actual is 39)
• docs/i18n/README.it.md — "Pressioni dirette" mistranslation of "git push"
• docs/i18n/README.tr.md — Turkish typo "engellendğini"
• docs/it/introduction.mdx — Italian article agreement "un semplice API"
• docs/ja/introduction.mdx — English comments in Japanese page
• docs/tr/cli/environment-variables.mdx — Turkish wording in first-run prompt

These files weren't touched by this PR — they landed via the auto-translation bot's most recent run on top of main. They're real issues but belong in the translation-sync workflow (per #371), not gated on this audit feature. Resolving them on this PR to avoid blocking.