npm - @codedrifters/configulator - Versions diffs - 0.0.166 → 0.0.168 - Mend

@codedrifters/configulator 0.0.166 → 0.0.168

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/lib/index.mjs CHANGED Viewed

@@ -628,6 +628,17 @@ var baseBundle = {
         "| `release:` | Release preparation, version bumps |",
         "| `hotfix:` | Urgent production fixes |",
         "",
+        "## GitHub Issue Type",
+        "",
+        "When creating issues, always assign the appropriate **GitHub issue type** based on the title prefix:",
+        "",
+        "| Prefix | GitHub Issue Type |",
+        "|--------|------------------|",
+        "| `epic:` | Epic |",
+        "| `feat:` | Feature |",
+        "| `fix:` | Bug |",
+        "| `chore:`, `docs:`, `refactor:`, `release:`, `hotfix:` | Task |",
+        "",
         "## Prerequisite Issues",
         "",
         "Include any prerequisite (blocking) issues in the issue body when they exist.",
@@ -656,18 +667,20 @@ var githubWorkflowBundle = {
         "",
         "When the user says **work on issue X** (or similar), follow these steps exactly:",
         "",
-        "1. **Fetch issue details** \u2014 use `gh issue view <number>` to get the title, body, and labels",
-        "2. **Determine branch type** from the issue title prefix:",
+        "1. **Ensure you have the latest code** \u2014 switch to the default branch and pull:",
+        "   - `git checkout {{repository.defaultBranch}} && git pull origin {{repository.defaultBranch}}`",
+        "2. **Fetch issue details** \u2014 use `gh issue view <number>` to get the title, body, and labels",
+        "3. **Determine branch type** from the issue title prefix:",
         "   - `feat:` / `feature:` \u2192 `feat/`",
         "   - `fix:` / `bug:` \u2192 `fix/`",
         "   - `docs:` \u2192 `docs/`",
         "   - `chore:` / `refactor:` \u2192 `chore/`",
         "   - `test:` \u2192 `test/`",
         "   - No prefix \u2192 `feat/`",
-        "3. **Create a branch** following the naming convention: `<type>/<short-slug>-<issue-number>` (e.g., `feat/add-login-42`)",
-        "4. **Checkout the branch** locally",
-        "5. **Link the branch to the issue** by posting a comment: `gh issue comment <number> --body 'Branch: \\`<branch-name>\\`'`",
-        "6. **Stop and wait** for user instructions \u2014 do **NOT** start implementing",
+        "4. **Create a branch** following the naming convention: `<type>/<short-slug>-<issue-number>` (e.g., `feat/add-login-42`)",
+        "5. **Checkout the branch** locally",
+        "6. **Link the branch to the issue** by posting a comment: `gh issue comment <number> --body 'Branch: \\`<branch-name>\\`'`",
+        "7. **Stop and wait** for user instructions \u2014 do **NOT** start implementing",
         "",
         "### Important",
         "",
@@ -784,13 +797,16 @@ var jestBundle = {
       ].join("\n"),
       tags: ["testing"]
     }
-  ]
+  ],
+  claudePermissions: {
+    allow: ["Bash(npx jest:*)"]
+  }
 };
 // src/pnpm/pnpm-workspace.ts
 import { relative } from "path";
 import { Component, YamlFile } from "projen";
-var MIMIMUM_RELEASE_AGE = {
+var MINIMUM_RELEASE_AGE = {
   ZERO_DAYS: 0,
   ONE_HOUR: 60,
   SIX_HOURS: 360,
@@ -819,7 +835,7 @@ var PnpmWorkspace = class _PnpmWorkspace extends Component {
     super(project);
     project.tryFindObjectFile("package.json")?.addDeletionOverride("pnpm");
     this.fileName = options.fileName ?? "pnpm-workspace.yaml";
-    this.minimumReleaseAge = options.minimumReleaseAge ?? MIMIMUM_RELEASE_AGE.ONE_DAY;
+    this.minimumReleaseAge = options.minimumReleaseAge ?? MINIMUM_RELEASE_AGE.ONE_DAY;
     this.minimumReleaseAgeExclude = options.minimumReleaseAgeExclude ? ["@codedrifters/*", ...options.minimumReleaseAgeExclude] : ["@codedrifters/*"];
     this.onlyBuiltDependencies = options.onlyBuiltDependencies ? options.onlyBuiltDependencies : [];
     this.ignoredBuiltDependencies = options.ignoredBuiltDependencies ? options.ignoredBuiltDependencies : [];
@@ -866,6 +882,7 @@ var PnpmWorkspace = class _PnpmWorkspace extends Component {
     });
   }
 };
+var MIMIMUM_RELEASE_AGE = MINIMUM_RELEASE_AGE;
 // src/agent/bundles/pnpm.ts
 var pnpmBundle = {
@@ -1287,7 +1304,10 @@ var turborepoBundle = {
       ].join("\n"),
       tags: ["workflow"]
     }
-  ]
+  ],
+  claudePermissions: {
+    allow: ["Bash(npx turbo:*)"]
+  }
 };
 // src/agent/bundles/typescript.ts
@@ -1362,7 +1382,10 @@ var typescriptBundle = {
       ].join("\n"),
       tags: ["coding"]
     }
-  ]
+  ],
+  claudePermissions: {
+    allow: ["Bash(npx tsc:*)"]
+  }
 };
 // src/vitest/vitest-component.ts
@@ -1554,7 +1577,10 @@ var vitestBundle = {
       ].join("\n"),
       tags: ["testing"]
     }
-  ]
+  ],
+  claudePermissions: {
+    allow: ["Bash(npx vitest:*)"]
+  }
 };
 // src/agent/bundles/index.ts
@@ -2179,6 +2205,110 @@ function resolveTemplateVariables(template, metadata) {
 }
 // src/agent/agent-config.ts
+var DEFAULT_CLAUDE_ALLOW = [
+  // ── Git ──────────────────────────────────────────────────────────────
+  "Bash(git add *)",
+  "Bash(git branch *)",
+  "Bash(git checkout *)",
+  "Bash(git commit *)",
+  "Bash(git diff *)",
+  "Bash(git fetch *)",
+  "Bash(git log *)",
+  "Bash(git merge *)",
+  "Bash(git mv *)",
+  "Bash(git pull *)",
+  "Bash(git push *)",
+  "Bash(git rebase *)",
+  "Bash(git rm *)",
+  "Bash(git stash *)",
+  "Bash(git status *)",
+  "Bash(git show *)",
+  "Bash(git rev-parse *)",
+  // ── GitHub CLI ───────────────────────────────────────────────────────
+  "Bash(gh issue *)",
+  "Bash(gh pr *)",
+  "Bash(gh repo *)",
+  "Bash(gh api *)",
+  "Bash(gh label *)",
+  "Bash(gh run *)",
+  "Bash(gh search *)",
+  "Bash(gh browse *)",
+  "Bash(gh status *)",
+  // ── Package manager ──────────────────────────────────────────────────
+  "Bash(pnpm *)",
+  // ── Read-only shell utilities ────────────────────────────────────────
+  "Bash(ls *)",
+  "Bash(find *)",
+  "Bash(cat *)",
+  "Bash(head *)",
+  "Bash(tail *)",
+  "Bash(wc *)",
+  "Bash(grep *)",
+  "Bash(sort *)",
+  "Bash(uniq *)",
+  "Bash(dirname *)",
+  "Bash(basename *)",
+  "Bash(which *)",
+  "Bash(diff *)",
+  "Bash(jq *)",
+  "Bash(date *)",
+  // ── Safe output / test utilities ─────────────────────────────────────
+  "Bash(echo *)",
+  "Bash(printf *)",
+  "Bash(test *)",
+  "Bash([ *)",
+  "Bash(true *)",
+  "Bash(false *)",
+  // ── Safe directory operations ────────────────────────────────────────
+  "Bash(mkdir *)",
+  "Bash(rmdir *)",
+  // ── Built-in tools ───────────────────────────────────────────────────
+  "Read(/**)",
+  "Edit(/**)",
+  "Write(/**)",
+  "WebFetch",
+  "WebSearch"
+];
+var DEFAULT_CLAUDE_DENY = [
+  // ── Destructive git ──────────────────────────────────────────────────
+  "Bash(git push --force *)",
+  "Bash(git push -f *)",
+  "Bash(git push origin --force *)",
+  "Bash(git push origin -f *)",
+  "Bash(git reset --hard *)",
+  "Bash(git clean -f *)",
+  "Bash(git remote *)",
+  // ── Destructive file operations ──────────────────────────────────────
+  "Bash(rm -rf *)",
+  "Bash(rm -r *)",
+  "Bash(rm *)",
+  // ── Network / remote access ──────────────────────────────────────────
+  "Bash(curl *)",
+  "Bash(wget *)",
+  "Bash(ssh *)",
+  "Bash(scp *)",
+  // ── System administration ────────────────────────────────────────────
+  "Bash(sudo *)",
+  "Bash(chmod *)",
+  "Bash(chown *)",
+  "Bash(kill *)",
+  "Bash(killall *)",
+  "Bash(pkill *)",
+  // ── Code execution / shell spawning ──────────────────────────────────
+  "Bash(eval *)",
+  "Bash(exec *)",
+  "Bash(source *)",
+  "Bash(. *)",
+  "Bash(bash *)",
+  "Bash(sh *)",
+  "Bash(zsh *)",
+  // ── App launching ────────────────────────────────────────────────────
+  "Bash(open *)",
+  "Bash(xdg-open *)",
+  // ── Environment manipulation ─────────────────────────────────────────
+  "Bash(export *)",
+  "Bash(env *)"
+];
 var AgentConfig = class _AgentConfig extends Component8 {
   /**
    * Find the AgentConfig component on a project.
@@ -2187,6 +2317,27 @@ var AgentConfig = class _AgentConfig extends Component8 {
     const isAgentConfig = (c) => c instanceof _AgentConfig;
     return project.components.find(isAgentConfig);
   }
+  /**
+   * Merges default Claude permissions with bundle and user-supplied settings.
+   *
+   * Merge order: defaults → bundle permissions → user-supplied entries.
+   * `defaultMode` defaults to `"dontAsk"` unless overridden.
+   */
+  static mergeClaudeDefaults(userSettings, bundlePermissions) {
+    const bundleAllow = bundlePermissions?.allow ?? [];
+    const bundleDeny = bundlePermissions?.deny ?? [];
+    const userAllow = userSettings?.permissions?.allow ?? [];
+    const userDeny = userSettings?.permissions?.deny ?? [];
+    return {
+      ...userSettings,
+      defaultMode: userSettings?.defaultMode ?? "dontAsk",
+      permissions: {
+        ...userSettings?.permissions,
+        allow: [...DEFAULT_CLAUDE_ALLOW, ...bundleAllow, ...userAllow],
+        deny: [...DEFAULT_CLAUDE_DENY, ...bundleDeny, ...userDeny]
+      }
+    };
+  }
   constructor(project, options = {}) {
     super(project);
     this.options = options;
@@ -2217,13 +2368,17 @@ var AgentConfig = class _AgentConfig extends Component8 {
       );
     }
     if (platforms.includes(AGENT_PLATFORM.CLAUDE)) {
+      const bundlePermissions = this.resolveBundlePermissions();
       ClaudeRenderer.render(
         this,
         resolvedRules,
         resolvedSkills,
         resolvedSubAgents,
         mcpServers,
-        this.options.claudeSettings
+        _AgentConfig.mergeClaudeDefaults(
+          this.options.claudeSettings,
+          bundlePermissions
+        )
       );
     }
     if (platforms.includes(AGENT_PLATFORM.CODEX)) {
@@ -2395,6 +2550,40 @@ ${extra}`
       return resolved !== agent.prompt ? { ...agent, prompt: resolved } : agent;
     });
   }
+  /**
+   * Collects Claude permission entries from all active bundles.
+   */
+  resolveBundlePermissions() {
+    const allow = [];
+    const deny = [];
+    if (this.options.autoDetectBundles !== false) {
+      for (const bundle of BUILT_IN_BUNDLES) {
+        if (this.options.excludeBundles?.includes(bundle.name)) continue;
+        if (bundle.appliesWhen(this.project) && bundle.claudePermissions) {
+          if (bundle.claudePermissions.allow) {
+            allow.push(...bundle.claudePermissions.allow);
+          }
+          if (bundle.claudePermissions.deny) {
+            deny.push(...bundle.claudePermissions.deny);
+          }
+        }
+      }
+    }
+    if (this.options.includeBundles) {
+      for (const bundleName of this.options.includeBundles) {
+        const bundle = BUILT_IN_BUNDLES.find((b) => b.name === bundleName);
+        if (bundle?.claudePermissions) {
+          if (bundle.claudePermissions.allow) {
+            allow.push(...bundle.claudePermissions.allow);
+          }
+          if (bundle.claudePermissions.deny) {
+            deny.push(...bundle.claudePermissions.deny);
+          }
+        }
+      }
+    }
+    return { allow, deny };
+  }
 };
 // src/aws/aws-deployment-config.ts
@@ -3816,6 +4005,7 @@ export {
   MCP_TRANSPORT,
   MERGE_METHODS,
   MIMIMUM_RELEASE_AGE,
+  MINIMUM_RELEASE_AGE,
   MonorepoProject,
   PROD_DEPLOY_NAME,
   PnpmWorkspace,