m17hr1l/nibiru-framework.com
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial public push: docs cosmos v4 + AI module + framework groundwork

Browse Source 
This is the snapshot the production landing site (nibiru-framework.com) is
deployed from. Brings together the recent splash + docs migration to the v4
"Cosmos" design system, the new in-framework AI module, and the framework
groundwork that backs the framework-reference extraction.

What lands:
- docs/: Astro + Starlight site with the v4 dark cosmic palette, GalaxyHero
  canvas constellation, Mission Control chat (wired to /api/oracle →
  api.neuronetz.ai via providers.mjs Ollama), 5-panel MMVC stage
  (Model · AI · Module · Controller · View), translated EN/DE/JA/ES/FR
  content, PWA + sitemap + llms.txt + Umami analytics.
- docs/design-system/: canonical mockup bundle (source/index-v2.html for
  splash, source/docs-system.html + preview/ for docs, SPEC.md, tokens).
- docs/scripts/extraction/framework-reference-v2.md: deep framework
  reference (~1.6k lines, file:line citations, every public factory and
  idiom — basis for the LoRA training corpus.
- application/module/ai/: AI module with chat / embed / RAG / agent
  plugins, plus pdoQuery / httpGet / fileRead tools and Modelfile +
  smoke-test in training/.
- application/module/users/: user / ACL / form-factory traits used as the
  reference plugin pattern for the framework docs.
- application/settings/config/database/: schema + seed migrations
  including the AI module tables (200–203).
- Form factory + autogenerator changes the framework-reference-v2 covers.

Production secrets stay out: docs/.env, settings.production.ini and
ai.production.ini are all gitignored (.example files are in tree).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
stephan
2026-05-08 15:22:18 +02:00
parent a60ce90643
commit 48c839d927
662 changed files with 172811 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

51
application/module/ai/plugins/tools/fileRead.php Normal file
View File

@@ -0,0 +1,51 @@
<?php
namespace Nibiru\Module\Ai\Plugins\Tools;
use Nibiru\Module\Ai\Plugins\Tool;
/**
* Read a project file by path (relative to the application root). Lets
* the agent quote real source when answering "where is X defined?" type
* questions. Read-only. No path-traversal — `..` is blocked.
*/
class FileRead extends Tool
{
public function name(): string { return 'file_read'; }
public function description(): string
{
return 'Read a file from the project. Path is relative to the application root '
. '(the directory containing index.php). Returns up to 8 KB.';
}
public function schema(): array
{
return [
'path' => [
'type' => 'string',
'description' => 'Relative path, e.g. "application/controller/loginController.php".',
'required' => true,
],
];
}
public function execute(array $args): mixed
{
$path = (string) ($args['path'] ?? '');
if ($path === '' || str_contains($path, '..')) {
return 'ERROR: invalid path';
}
// Application root = three levels up from this plugin file:
// application/module/ai/plugins/tools/fileRead.php
// ↑ ↑ ↑ ↑ ↑ ↑
// app module ai plugins tools this
$root = realpath(__DIR__ . '/../../../../../');
if ($root === false) return 'ERROR: cannot resolve app root';
$abs = realpath($root . DIRECTORY_SEPARATOR . $path);
if ($abs === false || !is_file($abs)) return 'ERROR: file not found';
if (strpos($abs, $root) !== 0) return 'ERROR: path escapes root';
$body = (string) file_get_contents($abs);
if (strlen($body) > 8192) $body = substr($body, 0, 8192) . "\n…[truncated]";
return $body;
}
}

68
application/module/ai/plugins/tools/httpGet.php Normal file
View File

@@ -0,0 +1,68 @@
<?php
namespace Nibiru\Module\Ai\Plugins\Tools;
use Nibiru\Module\Ai\Plugins\Tool;
/**
* GET an HTTP URL and return its body. Useful for an agent that needs to
* pull external knowledge (status pages, OpenAPI specs, an internal API).
*
* Safety: hosts and ports can be restricted via [AI] http_allowed_hosts[]
* in ai.ini. By default, ALL hosts are allowed — lock down for production.
*/
class HttpGet extends Tool
{
public function name(): string { return 'http_get'; }
public function description(): string
{
return 'Fetch an HTTP/HTTPS URL with a GET request. Returns the response body, '
. 'truncated to 8 KB.';
}
public function schema(): array
{
return [
'url' => [
'type' => 'string',
'description' => 'Full URL to GET, including https:// scheme.',
'required' => true,
],
'headers' => [
'type' => 'object',
'description' => 'Optional request headers, e.g. {"Authorization": "Bearer …"}.',
'required' => false,
],
];
}
public function execute(array $args): mixed
{
$url = (string) ($args['url'] ?? '');
if ($url === '' || !preg_match('#^https?://#i', $url)) {
return 'ERROR: url must be http(s)://...';
}
$headers = [];
foreach ((array) ($args['headers'] ?? []) as $k => $v) {
$headers[] = "$k: $v";
}
$ch = curl_init($url);
curl_setopt_array($ch, [
CURLOPT_RETURNTRANSFER => true,
CURLOPT_FOLLOWLOCATION => true,
CURLOPT_MAXREDIRS => 3,
CURLOPT_TIMEOUT => 15,
CURLOPT_CONNECTTIMEOUT => 5,
CURLOPT_HTTPHEADER => $headers,
CURLOPT_USERAGENT => 'Nibiru-Agent/1.0',
]);
$body = curl_exec($ch);
$code = curl_getinfo($ch, CURLINFO_HTTP_CODE);
$err = curl_error($ch);
curl_close($ch);
if ($body === false) return "ERROR: $err";
$body = (string) $body;
if (strlen($body) > 8192) $body = substr($body, 0, 8192) . "\n…[truncated]";
return "HTTP $code\n$body";
}
}

67
application/module/ai/plugins/tools/pdoQuery.php Normal file
View File

@@ -0,0 +1,67 @@
<?php
namespace Nibiru\Module\Ai\Plugins\Tools;
use Nibiru\Module\Ai\Plugins\Tool;
use Nibiru\Pdo;
/**
* Read-only SQL query tool. Lets an agent ask the database questions like
* "how many active users?" without giving it write access.
*
* $agent->withTools([new \Nibiru\Module\Ai\Plugins\Tools\PdoQuery()])
* ->run('How many users registered last week?');
*
* Safety: rejects anything that looks like INSERT/UPDATE/DELETE/DROP/TRUNCATE/ALTER.
* If you need write access, write a more privileged subclass with an audit trail.
*/
class PdoQuery extends Tool
{
public function name(): string { return 'pdo_query'; }
public function description(): string
{
return 'Run a single read-only SQL SELECT against the application database. '
. 'Use for counts, aggregates, lookups. Returns rows as JSON.';
}
public function schema(): array
{
return [
'sql' => [
'type' => 'string',
'description' => 'A single SELECT statement. Use placeholders (:name) for dynamic values.',
'required' => true,
],
'params' => [
'type' => 'object',
'description' => 'Optional parameter bindings, e.g. {":id": 42}.',
'required' => false,
],
];
}
public function execute(array $args): mixed
{
$sql = trim((string) ($args['sql'] ?? ''));
if ($sql === '') return 'ERROR: empty SQL';
if (!preg_match('/^\s*SELECT\s/i', $sql)) {
return 'ERROR: only SELECT is permitted by pdo_query';
}
if (preg_match('/;\s*\S/', $sql)) {
return 'ERROR: only a single statement is permitted';
}
if (preg_match('/\b(INSERT|UPDATE|DELETE|DROP|TRUNCATE|ALTER|CREATE|GRANT|REVOKE)\b/i', $sql)) {
return 'ERROR: write/DDL operations are blocked';
}
try {
$params = is_array($args['params'] ?? null) ? $args['params'] : [];
$rows = Pdo::fetchAll($sql, $params);
// Cap the response so the agent doesn't choke on huge results.
$rows = array_slice($rows, 0, 50);
return json_encode($rows, JSON_UNESCAPED_UNICODE);
} catch (\Throwable $e) {
return 'ERROR: ' . $e->getMessage();
}
}
}