npm - @atlashub/smartstack-cli - Versions diffs - 3.10.0 → 3.13.0 - Mend

@atlashub/smartstack-cli 3.10.0 → 3.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (35) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@atlashub/smartstack-cli",
-  "version": "3.10.0",
+  "version": "3.13.0",
   "description": "SmartStack Claude Code automation toolkit - GitFlow, EF Core migrations, prompts and more",
   "author": {
     "name": "SmartStack",
@@ -80,7 +80,7 @@
     "test:all": "npm run test:mcp && npm run test:ba"
   },
   "dependencies": {
-    "@atlashub/smartstack-cli": "file:../02-Develop",
+    "@atlashub/smartstack-cli": "file:",
     "@modelcontextprotocol/sdk": "^1.0.0",
     "axios": "^1.7.0",
     "bcryptjs": "^2.4.3",

package/templates/agents/db-reader.md ADDED Viewed

@@ -0,0 +1,149 @@
+---
+name: db-reader
+description: Read-only database inspector for debugging - verifies data state, relationships, and integrity without any modification.
+color: cyan
+model: haiku
+tools: Read, Glob, Grep, Bash
+---
+You are a **read-only database inspector**. Your mission is to verify data state in the database to help diagnose bugs. You MUST NEVER modify any data.
+## ABSOLUTE RESTRICTIONS
+**YOU MUST NEVER EXECUTE:**
+- `INSERT`, `UPDATE`, `DELETE`, `MERGE`, `TRUNCATE`
+- `DROP`, `ALTER`, `CREATE`, `RENAME`
+- `EXEC`, `EXECUTE` (stored procedures that could modify data)
+- `GRANT`, `REVOKE`, `DENY`
+- `BACKUP`, `RESTORE`
+- `dotnet ef database update`, `dotnet ef database drop`
+- `dotnet ef migrations` (any subcommand)
+- Any command that writes, modifies, or deletes data or schema
+**YOU MAY ONLY EXECUTE:**
+- `SELECT` queries (read-only)
+- `sp_help`, `sp_helptext`, `sp_columns` (metadata inspection)
+- `INFORMATION_SCHEMA` queries (schema inspection)
+- `sys.*` catalog views (read-only system views)
+- `dotnet ef dbcontext info` (read-only context info)
+- `dotnet ef dbcontext list` (list contexts)
+**BEFORE EVERY BASH COMMAND**: Re-read this restrictions section. If the command could modify data in ANY way, DO NOT execute it.
+## Connection Discovery
+1. Search for connection strings in the project:
+   - `appsettings.json`, `appsettings.Development.json`
+   - `.env` files, `launchSettings.json`
+   - User secrets (check for `UserSecretsId` in `.csproj`)
+2. Identify the database provider (SQL Server, PostgreSQL, SQLite)
+3. Use the appropriate CLI tool:
+   - **SQL Server**: `sqlcmd` or `Invoke-Sqlcmd`
+   - **PostgreSQL**: `psql`
+   - **SQLite**: `sqlite3`
+## Verification Operations
+### Data State Verification
+```sql
+-- Check if records exist
+SELECT COUNT(*) FROM [Table] WHERE [condition];
+-- Inspect specific records
+SELECT * FROM [Table] WHERE [Id] = @id;
+-- Check for NULL/empty fields
+SELECT Id, [Field] FROM [Table] WHERE [Field] IS NULL;
+```
+### Relationship Integrity
+```sql
+-- Check foreign key references
+SELECT t1.Id, t1.ForeignKeyId
+FROM [Table1] t1
+LEFT JOIN [Table2] t2 ON t1.ForeignKeyId = t2.Id
+WHERE t2.Id IS NULL;
+-- Check orphaned records
+SELECT COUNT(*) FROM [ChildTable] c
+WHERE NOT EXISTS (SELECT 1 FROM [ParentTable] p WHERE p.Id = c.ParentId);
+```
+### Multi-Tenant Isolation
+```sql
+-- Verify tenant isolation
+SELECT TenantId, COUNT(*) as RecordCount
+FROM [Table]
+GROUP BY TenantId;
+-- Check for records without TenantId
+SELECT * FROM [Table] WHERE TenantId IS NULL;
+```
+### Schema Inspection
+```sql
+-- List tables
+SELECT TABLE_NAME FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_TYPE = 'BASE TABLE';
+-- Check column definitions
+SELECT COLUMN_NAME, DATA_TYPE, IS_NULLABLE, COLUMN_DEFAULT
+FROM INFORMATION_SCHEMA.COLUMNS
+WHERE TABLE_NAME = '[TableName]';
+-- Check constraints
+SELECT * FROM INFORMATION_SCHEMA.TABLE_CONSTRAINTS
+WHERE TABLE_NAME = '[TableName]';
+-- Check indexes
+SELECT name, type_desc, is_unique
+FROM sys.indexes
+WHERE object_id = OBJECT_ID('[TableName]');
+```
+### Audit & Soft Delete
+```sql
+-- Check soft-deleted records
+SELECT Id, IsDeleted, DeletedAt FROM [Table] WHERE IsDeleted = 1;
+-- Check audit fields
+SELECT Id, CreatedAt, CreatedBy, UpdatedAt, UpdatedBy
+FROM [Table] WHERE Id = @id;
+```
+## Output Format
+Report findings in a structured format:
+```markdown
+## Database Verification Report
+### Connection
+- **Provider:** SQL Server
+- **Database:** SmartStack_Dev
+- **Context:** ApplicationDbContext
+### Findings
+| Check | Table | Result | Details |
+|-------|-------|--------|---------|
+| Record exists | Users | PASS | Found 1 record with Id=X |
+| FK integrity | Orders→Users | FAIL | 3 orphaned orders found |
+| Tenant isolation | Products | PASS | All records have TenantId |
+| Soft delete | Invoices | WARN | 12 soft-deleted without DeletedBy |
+### Data Snapshot
+{Relevant SELECT results formatted as tables}
+### Issues Found
+1. **[CRITICAL]** Orphaned records in Orders table (Ids: 45, 67, 89)
+2. **[WARNING]** Missing audit trail on soft-deleted Invoices
+```
+## Rules
+- **NEVER** suggest or execute data modifications, even if asked
+- If a data fix is needed, report the issue and suggest the fix as text — do NOT execute it
+- Always use parameterized queries or proper escaping to avoid SQL injection
+- Limit result sets with `TOP` or `LIMIT` to avoid overwhelming output
+- Mask sensitive data (passwords, tokens, PII) in output
+- If you cannot determine the connection string, ask for help — do NOT guess

package/templates/skills/business-analyse/references/cadrage-vibe-coding.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # Cadrage: Vibe Coding Flow
-> Reference for step-01-cadrage.md — accelerated 3-lot questionnaire for vibe coding mode.
+> Reference for step-01-cadrage.md — accelerated 2-lot questionnaire (always active).
 ## Lot 1: Problem & Scope
@@ -31,26 +31,16 @@ options:
 **Store:** `problem_type` (from Q1), `must_have_features[]` (from Q2)
-## Lot 2: Users & Permissions
+## Users & Permissions (auto-set — no question)
-```
-question: "Qui va utiliser cette application ?"
-header: "Utilisateurs"
-options:
-  - label: "Moi seul"
-    description: "Application mono-utilisateur, je suis l'unique admin"
-  - label: "Quelques utilisateurs (2-10)"
-    description: "Petite equipe avec des roles differents"
-  - label: "Organisation (10+)"
-    description: "Deploiement a l'echelle d'une equipe ou entreprise"
-```
+> **Always optimize for high traffic.** No question needed — assume production-grade deployment.
-**Auto-set rules:**
-- "Moi seul" → 1 admin role, 1 stakeholder, SKIP role question
-- "Quelques utilisateurs" → standard 4-tier roles, ask confirmation, 2 stakeholders (Admin + User)
-- "Organisation" → standard 4-tier roles, ask confirmation, 3 stakeholders (Admin + Manager + User)
+**Auto-set (always):**
+- Standard 4-tier roles: Admin, Manager, Contributor, Viewer
+- 3 stakeholders: Admin + Manager + User
+- 500+ concurrent users assumed (this is a non-negotiable baseline, not an optimization target)
-## Lot 3: Technical Challenges
+## Lot 2: Technical Challenges
 ```
 question: "Quels defis techniques anticipez-vous ?"
@@ -94,4 +84,4 @@ cadrage.globalScope:
   outOfScope: []
 ```
-After Lot 3: Go directly to **section 9 (Coverage Matrix)**.
+After Lot 2: Go directly to **section 9 (Coverage Matrix)**.

package/templates/skills/business-analyse/references/consolidation-structural-checks.md CHANGED Viewed

@@ -19,7 +19,8 @@
 | `specification.sections[]` | YES | Must have >=1 section with resources |
 | `specification.uiWireframes[]` | YES | Must have >=1 wireframe with `layout` object |
 | `specification.lifeCycles[]` | IF entities have status | States must be objects (NOT strings) |
-| `specification.seedDataCore` | YES | Must have 5 arrays: navigationModules, navigationTranslations, permissions, rolePermissions, permissionConstants |
+| `specification.seedDataCore` | YES | Must have 7 arrays: navigationModules, navigationSections, navigationResources, navigationTranslations, permissions, rolePermissions, permissionConstants |
+| `specification.seedDataBusiness` | YES | Must define reference/lookup seed data for testing (types, categories, statuses) |
 | `specification.gherkinScenarios` | YES | Must be `{feature, scenarios[]}` (NOT flat array) |
 | `specification.navigation` | YES | Must have entries[] |
 | `specification.i18nKeys[]` | YES | Must have >=1 key with fr, en, nl, de |
@@ -35,7 +36,7 @@
 | `functionalRequirements[]` | `name`, `description`, `linkedUCs`, `linkedBRs` | `statement`, `linkedUseCases`, `linkedRules` |
 | `permissionMatrix` | flat array with `resource`/`roles` | `{permissions[], roleAssignments[]}` |
 | `lifeCycles[].states[]` | string values like `"Active"` | objects with `{id, displayName, color, isTerminal}` |
-| `seedDataCore` | flat object, string values | 5 typed arrays |
+| `seedDataCore` | flat object, string values | 7 typed arrays |
 | `gherkinScenarios` | flat scenario array | `{feature, scenarios[]}` nested |
 ## C. ID Pattern Conformity
@@ -74,6 +75,15 @@ FOR each navigationModules[].code:
     IF NOT EXISTS navigationTranslations[] with moduleCode AND language -> ERROR
 ```
+## G. API Endpoint Coverage
+```
+FOR each entity in analysis.entities[]:
+  endpoints = specification.apiEndpoints[].filter(e => e.path.includes(entity.name.toLowerCase()))
+  IF endpoints.length < 5 -> WARNING: "Entity {entity.name} has <5 endpoints (expected: GET list, GET id, POST, PUT, DELETE)"
+  IF endpoints.length === 0 -> ERROR: "Entity {entity.name} has NO endpoints — missing controller"
+```
 ## Result Aggregation
 ```json

package/templates/skills/business-analyse/references/deploy-data-build.md CHANGED Viewed

@@ -75,40 +75,51 @@ const FEATURE_DATA = {
 ## EMBEDDED_ARTIFACTS Object
+> **CRITICAL:** The wireframes object is keyed by moduleCode (NOT a flat array).
+> Field names MUST be renamed from feature.json: `mockupFormat` → `format`, `mockup` → `content`.
+> The HTML renderer reads `wf.format` and `wf.content` — using feature.json names will produce EMPTY mockups.
 ```javascript
 const EMBEDDED_ARTIFACTS = {
-  wireframes: [
-    // Extract from each module's specification.uiWireframes
-    {
-      moduleCode: "{moduleCode}",
-      screen: wireframe.screen,
-      description: wireframe.description,
-      layout: wireframe.layout || "responsive",
-      components: wireframe.components || []
-    }
-  ],
-  e2eFlows: [
-    // Extract from master consolidation.e2eFlows
-    {
-      flowName: flow.name,
-      description: flow.description,
-      sequence: flow.sequence || [],
-      modules: flow.modules || []
-    }
-  ],
+  wireframes: {
+    // PER-MODULE keyed object (NOT a flat array)
+    // FOR EACH module: extract from specification.uiWireframes[]
+    [moduleCode]: moduleFeature.specification.uiWireframes.map(wf => ({
+      screen: wf.screen,                          // e.g. "employees-list"
+      section: wf.section,                         // e.g. "list"
+      format: wf.mockupFormat || "ascii",          // RENAME: mockupFormat → format
+      content: wf.mockup,                          // RENAME: mockup → content (ASCII art string)
+      description: wf.description || "",
+      elements: wf.elements || [],                 // ["DataGrid", "FilterBar", ...]
+      actions: wf.actions || [],                   // ["filter", "sort", "create", ...]
+      componentMapping: wf.componentMapping || [],  // [{ wireframeElement, reactComponent }]
+      layout: wf.layout || null,                   // { type, regions: [...] }
+      permissionsRequired: wf.permissionsRequired || []
+    }))
+  },
+  e2eFlows: (master.consolidation?.e2eFlows || []).map(flow => ({
+    name: flow.name,
+    diagram: flow.steps.map(s => `${s.action}(${s.module})`).join(" ──→ "),
+    steps: flow.steps || [],
+    actors: [...new Set(flow.steps.map(s => s.permission?.split(".")[0]).filter(Boolean))].join(", "),
+    modules: [...new Set(flow.steps.map(s => s.module))].join(" → ")
+  })),
   dependencyGraph: {
-    // From master consolidation.dependencyGraph
-    nodes: master.consolidation.dependencyGraph?.nodes || [],
-    edges: master.consolidation.dependencyGraph?.edges || []
+    nodes: (master.modules || []).map(m => ({
+      id: m.code, label: m.code, type: m.featureType || "data-centric"
+    })),
+    edges: (master.dependencyGraph?.edges || []).map(e => ({
+      from: e.from, to: e.to, description: e.description || ""
+    }))
   }
 };
 ```
 ### Artifact Gathering
-1. Read each module's `specification.uiWireframes[]` and add to wireframes array
-2. Read master's `consolidation.e2eFlows[]` and add to e2eFlows array
-3. Read master's `consolidation.dependencyGraph` and include as-is
+1. For EACH module: read `specification.uiWireframes[]`, **rename fields** (`mockupFormat`→`format`, `mockup`→`content`), store under `wireframes[moduleCode]`
+2. Read master's `consolidation.e2eFlows[]` and build e2eFlows array with diagram generation
+3. Read master's `dependencyGraph` and build nodes/edges
 4. Serialize as JSON with 2-space indentation
 ## Placeholder Replacement