SuperagenticAI
diff --git a/‎.github/workflows/deploy-docs.yml‎
Lines changed: 2 additions & 3 deletions b/‎.github/workflows/deploy-docs.yml‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎.gitignore‎
Lines changed: 0 additions & 4 deletions b/‎.gitignore‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎docs/about/changelog.md‎
Lines changed: 140 additions & 0 deletions b/‎docs/about/changelog.md‎
Lines changed: 140 additions & 0 deletions
diff --git a/‎docs/about/contributing.md‎
Lines changed: 184 additions & 0 deletions b/‎docs/about/contributing.md‎
Lines changed: 184 additions & 0 deletions
@@ -3,7 +3,7 @@ name: Deploy Documentation
 on:
   push:
     branches:
-      - gh-pages
+      - main
     paths:
       - 'docs/**'
       - 'mkdocs.yml'
@@ -19,11 +19,10 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - name: Checkout gh-pages branch
+      - name: Checkout main branch
         uses: actions/checkout@v4
         with:
           fetch-depth: 0
-          ref: gh-pages
 
       - name: Set up Python
         uses: actions/setup-python@v5
 
@@ -194,7 +194,3 @@ $RECYCLE.BIN/
 
 # Linux
 .directory
-
-# Docs
-# docs/
-# mkdocs.yml
@@ -0,0 +1,140 @@
+# Changelog
+
+All notable changes to DSPy Code will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+---
+
+## [0.1.0] - 2025-11-21
+
+### Added
+
+- Initial release of DSPy Code (formerly DSPy CLI)
+- Interactive mode with natural language interface
+- Slash commands for all operations
+- Code generation for Signatures, Modules, and complete programs
+- Model connection support (Ollama, OpenAI, Anthropic, Gemini)
+- Built-in MCP client integration
+- Real GEPA optimization support
+- Codebase RAG for project understanding
+- Code validation and sandboxed execution
+- Project initialization (fresh and existing projects)
+- Session management with auto-save
+- Export/import functionality
+- Comprehensive documentation with MkDocs
+
+### Changed
+
+- Renamed from "DSPy CLI" to "DSPy Code" with tagline "Claude Code for DSPy"
+- Updated branding to Superagentic AI
+- Made all commands interactive-only (slash commands)
+- Moved codebase indexing to `/init` command
+- Enhanced error handling and user feedback
+
+### Fixed
+
+- Context sharing between interactive session and slash commands
+- Codebase indexing to use installed packages instead of reference directory
+- Permission handling for restricted environments
+- Model connection error messages
+
+---
+
+## [Unreleased]
+
+### 🎯 MAJOR CHANGE: Everything in CWD (2024-11-24)
+
+**BREAKING CHANGE**: All dspy-code data now stored in current working directory for better isolation and portability.
+
+#### What Changed
+- **Cache location**: Moved from `~/.dspy_cli/cache/` to `.dspy_code/cache/` in CWD
+- **Session data**: Moved from `~/.dspy_cli/sessions/` to `.dspy_code/sessions/` in CWD
+- **Optimization workflows**: Moved from `~/.dspy_cli/optimization/` to `.dspy_code/optimization/` in CWD
+- **Export history**: Moved from `~/.dspy_cli/exports/` to `.dspy_code/exports/` in CWD
+- **Command history**: Moved from `~/.dspy_code_history` to `.dspy_code/history.txt` in CWD
+
+#### Why This Matters
+✅ **True CWD-only operation**: Everything (code, cache, packages) stays in your project directory  
+✅ **Enhanced security**: No home directory access at all  
+✅ **Perfect isolation**: Each project is completely self-contained  
+✅ **Easy cleanup**: Delete project folder to remove everything  
+✅ **Portability**: Zip entire project directory to share or backup  
+✅ **Simplicity**: One directory = one project with all its data  
+
+#### Recommended Setup
+**CRITICAL**: Always create virtual environment INSIDE your project:
+
+```bash
+mkdir my-dspy-project
+cd my-dspy-project
+python -m venv .venv          # Creates .venv IN project
+source .venv/bin/activate
+pip install dspy-code dspy
+dspy-code                      # Everything stays in my-dspy-project/
+```
+
+#### Migration
+Your old data in `~/.dspy_cli/` will not be automatically migrated. This is intentional - each project now has its own isolated cache and sessions.
+
+### 🚨 SECURITY FIXES (2024-11-24)
+
+#### File System Access Protection
+- **CRITICAL**: Fixed RAG indexer recursively scanning entire file system including personal directories
+- **CRITICAL**: Added safety checks to prevent accessing iCloud Photos, Documents, Downloads, and other user directories
+- **CRITICAL**: Implemented strict path boundary validation to limit operations to current working directory only
+
+#### Security Measures Added
+1. **Directory Safety Validation**
+   - Blocks scanning of home directory (`~/`)
+   - Blocks scanning of system directories (`/System`, `/Library`, `/usr`, `/private`)
+   - Blocks scanning of user directories (Desktop, Documents, Downloads, Pictures, Photos, Music, Movies)
+   - Blocks scanning of immediate home subdirectories
+
+2. **Path Boundary Protection**
+   - All file operations validated to stay within project directory
+   - Symlink attack prevention - verifies files are actually within project
+   - Maximum depth limiting (10 levels) to prevent infinite recursion
+   - Explicit permission checks before accessing any file
+
+3. **Startup Safety Checks**
+   - Critical warning displayed if running from home directory
+   - Warning displayed if running from user directories
+   - Error and exit if running from system directories
+   - Recommendations to use dedicated project directories with virtual environments
+
+4. **Limited Scanning Scope**
+   - RAG indexer only scans:
+     - Installed packages in current virtual environment (not system-wide)
+     - Specific project directories: `generated/`, `modules/`, `signatures/`, `programs/`, `optimizers/`, `src/`
+     - Python files in current directory (non-recursive)
+   - Excludes test files, cache directories, hidden files automatically
+
+### Added
+- Comprehensive security test suite (`tests/test_security.py`)
+- Startup directory safety checks
+- Path boundary validation in all file operations
+- Project-specific command history
+- Complete CWD isolation
+- Security documentation page
+
+### Changed
+- **BREAKING**: All dspy-code internal data now in `.dspy_code/` in CWD instead of `~/.dspy_cli/`
+- RAG indexer strictly limited to project directory
+- Project scanner respects path boundaries
+- All `rglob()` operations use safe wrappers with depth limits
+- `.gitignore` updated to include `.dspy_code/` and `.dspy_cache/`
+- Documentation updated to emphasize virtual environment in project directory
+
+### Planned
+
+- Enhanced MCP tool integration
+- Additional DSPy module templates
+- Improved optimization workflows
+- Extended evaluation capabilities
+- Performance optimizations
+
+---
+
+**For detailed development history, see [GitHub Commits](https://github.com/superagentic-ai/dspy-code/commits/main)**
@@ -0,0 +1,184 @@
+# Contributing to DSPy Code
+
+Thank you for your interest in contributing to DSPy Code! We welcome contributions from the community.
+
+**DSPy Code** is built by **[Superagentic AI](https://super-agentic.ai)** and is part of our commitment to open source leadership in the Agentic AI space.
+
+---
+
+## How to Contribute
+
+### Reporting Bugs
+
+If you find a bug, please open an issue on [GitHub](https://github.com/superagentic-ai/dspy-code/issues) with:
+
+- A clear description of the bug
+- Steps to reproduce
+- Expected vs actual behavior
+- Your environment (OS, Python version, DSPy version)
+- Any relevant error messages or logs
+
+### Suggesting Features
+
+We welcome feature suggestions! Please open an issue with:
+
+- A clear description of the feature
+- Use cases and examples
+- Why this feature would be valuable
+- Any implementation ideas (optional)
+
+### Code Contributions
+
+1. **Fork the repository**
+   ```bash
+   git clone https://github.com/superagentic-ai/dspy-code.git
+   cd dspy-code
+   ```
+
+2. **Create a branch**
+   ```bash
+   git checkout -b feature/your-feature-name
+   ```
+
+3. **Set up development environment**
+   ```bash
+   python -m venv venv
+   source venv/bin/activate  # On Windows: venv\Scripts\activate
+   pip install -e ".[dev]"
+   ```
+
+4. **Make your changes**
+   - Follow the existing code style
+   - Add tests for new features
+   - Update documentation as needed
+   - Ensure all tests pass
+
+5. **Test your changes**
+   ```bash
+   pytest tests/
+   mkdocs build  # Verify documentation builds
+   ```
+
+6. **Commit your changes**
+   ```bash
+   git commit -m "Add: Description of your changes"
+   ```
+
+7. **Push and create a Pull Request**
+   ```bash
+   git push origin feature/your-feature-name
+   ```
+
+---
+
+## Development Guidelines
+
+### Code Style
+
+- Follow PEP 8 Python style guide
+- Use type hints where appropriate
+- Write docstrings for all public functions and classes
+- Keep functions focused and single-purpose
+
+### Testing
+
+- Write tests for new features
+- Ensure existing tests still pass
+- Aim for good test coverage
+
+### Documentation
+
+- Update relevant documentation pages
+- Add examples for new features
+- Keep documentation clear and beginner-friendly
+
+### Commit Messages
+
+Use clear, descriptive commit messages:
+
+```
+Add: Feature description
+Fix: Bug description
+Update: Change description
+Refactor: Refactoring description
+Docs: Documentation update
+```
+
+---
+
+## Project Structure
+
+```
+dspy-code/
+├── dspy_code/          # Main package
+│   ├── commands/       # Slash command handlers
+│   ├── core/           # Core functionality
+│   ├── models/         # Code generation
+│   ├── optimization/   # GEPA integration
+│   ├── mcp/            # MCP client
+│   ├── rag/            # Codebase RAG
+│   └── ...
+├── docs/               # Documentation
+├── tests/              # Test suite
+├── examples/           # Example scripts
+└── pyproject.toml      # Project configuration
+```
+
+---
+
+## Areas for Contribution
+
+### High Priority
+
+- Additional DSPy module templates
+- Enhanced MCP tool integrations
+- Performance optimizations
+- Extended validation rules
+- More evaluation metrics
+
+### Documentation
+
+- Tutorial improvements
+- Code examples
+- Best practices guides
+- Video tutorials (external)
+
+### Testing
+
+- Additional test coverage
+- Integration tests
+- Performance benchmarks
+
+---
+
+## Code of Conduct
+
+We are committed to providing a welcoming and inclusive environment. Please:
+
+- Be respectful and considerate
+- Welcome newcomers and help them learn
+- Focus on constructive feedback
+- Celebrate diverse perspectives
+
+---
+
+## Questions?
+
+- **GitHub Issues**: [https://github.com/superagentic-ai/dspy-code/issues](https://github.com/superagentic-ai/dspy-code/issues)
+- **Website**: [https://super-agentic.ai](https://super-agentic.ai)
+
+---
+
+## Recognition
+
+Contributors will be recognized in:
+
+- Release notes
+- Project documentation
+- GitHub contributors page
+
+Thank you for helping make DSPy Code better! 🚀
+
+---
+
+**Built by [Superagentic AI](https://super-agentic.ai) - The Home of Agentic AI**