6ac9e7d811
Implemented dependency injection and boundary enforcement architecture: NEW FILE: dss-claude-plugin/core/runtime.py (395 lines) - DSSRuntime class with boundary validation - Dependency injection pattern for all external API access - Capability provider pattern (get_figma_client, get_browser, get_http_client) - Boundary violation logging and enforcement modes (strict/warn/disabled) - Singleton pattern with get_runtime() helper - Session-based temp directory management - Audit trail for all access and violations UPDATED: dss-claude-plugin/servers/dss-mcp-server.py - Integrated DSSRuntime initialization in main() - Updated version to 2.0.0 - Added runtime availability checking - Logs enforcement mode on startup - Changed branding: 'Design System Swarm' → 'Design System Server' BOUNDARY ENFORCEMENT FEATURES: - Blocks direct external API access (Figma, Browser, HTTP) - Validates operations against .dss-boundaries.yaml - Provides wrapped, sandboxed clients instead of raw access - Logs all violations to .dss/logs/boundary-violations.jsonl - Logs all access to .dss/logs/runtime-access.jsonl Next: Phase 3 (Terminology Cleanup) - 67 files to update
104 KiB
104 KiB