@factiii/stack 0.1.181 → 0.1.182

package/dist/plugins/pipelines/factiii/workflows/stack-cicd-prod.yml

@@ -1,73 +1,73 @@
-name: Stack CI Prod
-
-# Generated by @factiii/stack v{VERSION}
-# Runs builds and tests on push to prod branch.
-# No deployment - deploy via SSH from dev machine.
-
-on:
-  push:
-    branches: [prod]
-
-jobs:
-  ci:
-    runs-on: ubuntu-latest
-    env:
-      CI: true
-      ENV: test
-      NODE_ENV: test
-      DATABASE_URL: "postgresql://postgres:password@localhost:5440/factiii-test?connect_timeout=300"
-      TEST_DATABASE_URL: "postgresql://postgres:password@localhost:5440/factiii-test?connect_timeout=300"
-      TEST_ADMIN_IP: "::ffff:127.0.0.1"
-      SITE_URL: http://localhost:3000
-      ALLOWED_ORIGINS: http://localhost:3000,http://localhost:5001
-      ACCESS_TOKEN_SECRET: test-secret-key
-      GOOGLE_CLIENT_ID: test-google-id
-      APPLE_CLIENT_ID: com.factiii.test
-      NEXT_PUBLIC_SITE_URL: http://localhost:3000
-      NEXT_PUBLIC_API_URL: http://localhost:5001
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '24'
-          cache: 'pnpm'
-
-      - name: Install dependencies
-        run: pnpm install
-
-      - name: Build server
-        run: pnpm build
-        working-directory: apps/server
-
-      - name: Build client
-        run: pnpm build
-        working-directory: client
-        if: hashFiles('client/package.json') != ''
-
-      - name: Setup Java (for Android)
-        uses: actions/setup-java@v4
-        with:
-          distribution: 'temurin'
-          java-version: '17'
-        if: hashFiles('apps/mobile/android/build.gradle') != ''
-
-      - name: Build Android
-        run: |
-          cd apps/mobile/android
-          ./gradlew assembleRelease
-        if: hashFiles('apps/mobile/android/build.gradle') != ''
-
-      - name: Start Docker containers
-        run: |
-          chmod +x ./start.sh
-          ./start.sh
-
-      - name: Run tests
-        run: pnpm test:server
+name: Stack CI Prod
+
+# Generated by @factiii/stack v{VERSION}
+# Runs builds and tests on push to prod branch.
+# No deployment - deploy via SSH from dev machine.
+
+on:
+  push:
+    branches: [prod]
+
+jobs:
+  ci:
+    runs-on: ubuntu-latest
+    env:
+      CI: true
+      ENV: test
+      NODE_ENV: test
+      DATABASE_URL: "postgresql://postgres:password@localhost:5440/factiii-test?connect_timeout=300"
+      TEST_DATABASE_URL: "postgresql://postgres:password@localhost:5440/factiii-test?connect_timeout=300"
+      TEST_ADMIN_IP: "::ffff:127.0.0.1"
+      SITE_URL: http://localhost:3000
+      ALLOWED_ORIGINS: http://localhost:3000,http://localhost:5001
+      ACCESS_TOKEN_SECRET: test-secret-key
+      GOOGLE_CLIENT_ID: test-google-id
+      APPLE_CLIENT_ID: com.factiii.test
+      NEXT_PUBLIC_SITE_URL: http://localhost:3000
+      NEXT_PUBLIC_API_URL: http://localhost:5001
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '24'
+          cache: 'pnpm'
+
+      - name: Install dependencies
+        run: pnpm install
+
+      - name: Build server
+        run: pnpm build
+        working-directory: apps/server
+
+      - name: Build client
+        run: pnpm build
+        working-directory: client
+        if: hashFiles('client/package.json') != ''
+
+      - name: Setup Java (for Android)
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'temurin'
+          java-version: '17'
+        if: hashFiles('apps/mobile/android/build.gradle') != ''
+
+      - name: Build Android
+        run: |
+          cd apps/mobile/android
+          ./gradlew assembleRelease
+        if: hashFiles('apps/mobile/android/build.gradle') != ''
+
+      - name: Start Docker containers
+        run: |
+          chmod +x ./start.sh
+          ./start.sh
+
+      - name: Run tests
+        run: pnpm test:server

package/dist/plugins/servers/amazon-linux/index.js

@@ -99,13 +99,13 @@ class AmazonLinuxPlugin {
         return false;
     }
     static helpText = {
-        SSH: `
-   SSH private key for accessing the Amazon Linux server.
-
-   For AWS EC2:
-   - Use the key pair you created when launching the instance
-   - Download the .pem file from AWS Console
-
+        SSH: `
+   SSH private key for accessing the Amazon Linux server.
+
+   For AWS EC2:
+   - Use the key pair you created when launching the instance
+   - Download the .pem file from AWS Console
+
    Default user for Amazon Linux: ec2-user`,
     };
     // ============================================================
@@ -152,21 +152,21 @@ class AmazonLinuxPlugin {
      * Get the command to install Docker on Amazon Linux 2023
      */
     static getDockerInstallCommand() {
-        return `
-      sudo dnf update -y && \
-      sudo dnf install -y docker && \
-      sudo systemctl start docker && \
-      sudo systemctl enable docker && \
-      sudo usermod -aG docker $USER
+        return `
+      sudo dnf update -y && \
+      sudo dnf install -y docker && \
+      sudo systemctl start docker && \
+      sudo systemctl enable docker && \
+      sudo usermod -aG docker $USER
     `;
     }
     /**
      * Get the command to install Node.js on Amazon Linux
      */
     static getNodeInstallCommand() {
-        return `
-      curl -fsSL https://rpm.nodesource.com/setup_20.x | sudo bash - && \
-      sudo dnf install -y nodejs
+        return `
+      curl -fsSL https://rpm.nodesource.com/setup_20.x | sudo bash - && \
+      sudo dnf install -y nodejs
     `;
     }
     /**

package/dist/plugins/servers/mac/index.js

@@ -138,16 +138,16 @@ class MacPlugin {
         return Object.keys(config).length === 0;
     }
     static helpText = {
-        SSH: `
-   SSH private key for accessing the server.
-
-   Step 1: Generate a new SSH key pair (if needed):
-   ssh-keygen -t ed25519 -C "deploy-key" -f ~/.ssh/deploy_key
-
-   Step 2: Add PUBLIC key to server:
-   ssh-copy-id -i ~/.ssh/deploy_key.pub ubuntu@YOUR_HOST
-
-   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
+        SSH: `
+   SSH private key for accessing the server.
+
+   Step 1: Generate a new SSH key pair (if needed):
+   ssh-keygen -t ed25519 -C "deploy-key" -f ~/.ssh/deploy_key
+
+   Step 2: Add PUBLIC key to server:
+   ssh-copy-id -i ~/.ssh/deploy_key.pub ubuntu@YOUR_HOST
+
+   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
    cat ~/.ssh/deploy_key`,
     };
     // ============================================================
@@ -238,8 +238,8 @@ class MacPlugin {
             }
             try {
                 const repoName = config.name ?? 'app';
-                await MacPlugin.sshExec(envConfig, `
-          cd ~/.factiii && docker compose stop ${repoName}-staging
+                await MacPlugin.sshExec(envConfig, `
+          cd ~/.factiii && docker compose stop ${repoName}-staging
         `);
                 return { success: true, message: 'Staging containers stopped' };
             }

package/dist/plugins/servers/mac/staging.js

@@ -291,7 +291,7 @@ async function writeEnvFile(envConfig, repoDir, environment, envVarsString) {
         const escapedContent = envFileContent
             .replace(/'/g, "'\\''")
             .replace(/\n/g, '\\n');
-        await sshExecCommand(envConfig, `cat > ${repoDir}/${envFileName} << 'ENVEOF'
+        await sshExecCommand(envConfig, `cat > ${repoDir}/${envFileName} << 'ENVEOF'
 ${envFileContent}ENVEOF`);
     }
 }
@@ -347,7 +347,7 @@ async function createEnvFromStaging(envConfig, repoDir) {
         console.log('   📝 Created .env from .env.staging (with host port replacement)');
     }
     else {
-        await sshExecCommand(envConfig, `cat > ${envPath} << 'ENVEOF'
+        await sshExecCommand(envConfig, `cat > ${envPath} << 'ENVEOF'
 ${updatedContent}ENVEOF`);
         console.log('   📝 Created .env from .env.staging on remote server (with host port replacement)');
     }

package/dist/plugins/servers/ubuntu/index.js

@@ -99,16 +99,16 @@ class UbuntuPlugin {
         return false;
     }
     static helpText = {
-        SSH: `
-   SSH private key for accessing the Ubuntu server.
-
-   Step 1: Generate a new SSH key pair (if needed):
-   ssh-keygen -t ed25519 -C "deploy-key" -f ~/.ssh/deploy_key
-
-   Step 2: Add PUBLIC key to server:
-   ssh-copy-id -i ~/.ssh/deploy_key.pub ubuntu@YOUR_HOST
-
-   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
+        SSH: `
+   SSH private key for accessing the Ubuntu server.
+
+   Step 1: Generate a new SSH key pair (if needed):
+   ssh-keygen -t ed25519 -C "deploy-key" -f ~/.ssh/deploy_key
+
+   Step 2: Add PUBLIC key to server:
+   ssh-copy-id -i ~/.ssh/deploy_key.pub ubuntu@YOUR_HOST
+
+   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
    cat ~/.ssh/deploy_key`,
     };
     // ============================================================
@@ -155,25 +155,25 @@ class UbuntuPlugin {
      * Get the command to install Docker on Ubuntu
      */
     static getDockerInstallCommand() {
-        return `
-      sudo apt-get update && \
-      sudo apt-get install -y ca-certificates curl gnupg && \
-      sudo install -m 0755 -d /etc/apt/keyrings && \
-      curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg && \
-      sudo chmod a+r /etc/apt/keyrings/docker.gpg && \
-      echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null && \
-      sudo apt-get update && \
-      sudo apt-get install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin && \
-      sudo usermod -aG docker $USER
+        return `
+      sudo apt-get update && \
+      sudo apt-get install -y ca-certificates curl gnupg && \
+      sudo install -m 0755 -d /etc/apt/keyrings && \
+      curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg && \
+      sudo chmod a+r /etc/apt/keyrings/docker.gpg && \
+      echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null && \
+      sudo apt-get update && \
+      sudo apt-get install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin && \
+      sudo usermod -aG docker $USER
     `;
     }
     /**
      * Get the command to install Node.js on Ubuntu
      */
     static getNodeInstallCommand() {
-        return `
-      curl -fsSL https://deb.nodesource.com/setup_20.x | sudo -E bash - && \
-      sudo apt-get install -y nodejs
+        return `
+      curl -fsSL https://deb.nodesource.com/setup_20.x | sudo -E bash - && \
+      sudo apt-get install -y nodejs
     `;
     }
     /**

package/dist/plugins/servers/windows/index.js

@@ -99,12 +99,12 @@ class WindowsPlugin {
         return false;
     }
     static helpText = {
-        SSH: `
-   SSH/RDP credentials for accessing the Windows server.
-
-   For SSH access, ensure OpenSSH Server is installed on Windows:
-   - Settings > Apps > Optional Features > Add a feature > OpenSSH Server
-
+        SSH: `
+   SSH/RDP credentials for accessing the Windows server.
+
+   For SSH access, ensure OpenSSH Server is installed on Windows:
+   - Settings > Apps > Optional Features > Add a feature > OpenSSH Server
+
    For RDP access, use Remote Desktop Connection.`,
     };
     // ============================================================
@@ -182,11 +182,11 @@ class WindowsPlugin {
      * Requires Docker Desktop or WSL2 with Docker
      */
     static getDockerInstallCommand() {
-        return `
-      # Install Docker Desktop via Chocolatey
-      choco install docker-desktop -y
-      # Or install via winget
-      # winget install Docker.DockerDesktop
+        return `
+      # Install Docker Desktop via Chocolatey
+      choco install docker-desktop -y
+      # Or install via winget
+      # winget install Docker.DockerDesktop
     `;
     }
     /**
@@ -205,10 +205,10 @@ class WindowsPlugin {
      * Get the command to install Chocolatey (package manager)
      */
     static getChocoInstallCommand() {
-        return `
-      Set-ExecutionPolicy Bypass -Scope Process -Force
-      [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.ServicePointManager]::SecurityProtocol -bor 3072
-      iex ((New-Object System.Net.WebClient).DownloadString('https://community.chocolatey.org/install.ps1'))
+        return `
+      Set-ExecutionPolicy Bypass -Scope Process -Force
+      [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.ServicePointManager]::SecurityProtocol -bor 3072
+      iex ((New-Object System.Net.WebClient).DownloadString('https://community.chocolatey.org/install.ps1'))
     `;
     }
     // ============================================================

package/dist/scripts/generate-all.js

@@ -271,31 +271,31 @@ function generateNginx(allConfigs) {
         return 0;
     }
     // Generate nginx config
-    let nginxConf = `# Auto-generated nginx configuration
-# Generated by: npx stack (generate-all)
-# Do not edit directly - modify stack.yml files and run: npx stack deploy
-
-events {
-    worker_connections 1024;
-}
-
-http {
-    include /etc/nginx/mime.types;
-    default_type application/octet-stream;
-
-    sendfile on;
-    keepalive_timeout 65;
-    client_max_body_size 100M;
-
-    # Logging
-    access_log /var/log/nginx/access.log;
-    error_log /var/log/nginx/error.log;
-
-    # Gzip
-    gzip on;
-    gzip_vary on;
-    gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
-
+    let nginxConf = `# Auto-generated nginx configuration
+# Generated by: npx stack (generate-all)
+# Do not edit directly - modify stack.yml files and run: npx stack deploy
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    include /etc/nginx/mime.types;
+    default_type application/octet-stream;
+
+    sendfile on;
+    keepalive_timeout 65;
+    client_max_body_size 100M;
+
+    # Logging
+    access_log /var/log/nginx/access.log;
+    error_log /var/log/nginx/error.log;
+
+    # Gzip
+    gzip on;
+    gzip_vary on;
+    gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
+
 `;
     // ============================================================
     // CRITICAL: HTTPS Certificate Paths
@@ -308,54 +308,54 @@ http {
     for (const { domain, service, port } of routes) {
         // Always generate HTTPS-capable config
         // Certificates must exist before nginx can start (obtained via: npx stack fix --staging/--prod)
-        nginxConf += `
-    # ${service} - ${domain}
-
-    # HTTP - ACME challenge + redirect to HTTPS
-    server {
-        listen 80;
-        server_name ${domain};
-
-        # Allow certbot ACME challenge (for renewals)
-        location /.well-known/acme-challenge/ {
-            root /var/www/certbot;
-        }
-
-        # Redirect all other traffic to HTTPS
-        location / {
-            return 301 https://$server_name$request_uri;
-        }
-    }
-
-    # HTTPS - main server block
-    server {
-        listen 443 ssl;
-        http2 on;
-        server_name ${domain};
-
-        # SSL certificate paths (Let's Encrypt)
-        ssl_certificate /etc/letsencrypt/live/${domain}/fullchain.pem;
-        ssl_certificate_key /etc/letsencrypt/live/${domain}/privkey.pem;
-
-        # SSL security settings
-        ssl_protocols TLSv1.2 TLSv1.3;
-        ssl_prefer_server_ciphers on;
-        ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256;
-        ssl_session_cache shared:SSL:10m;
-        ssl_session_timeout 10m;
-
-        location / {
-            proxy_pass http://${service}:${port};
-            proxy_http_version 1.1;
-            proxy_set_header Upgrade $http_upgrade;
-            proxy_set_header Connection 'upgrade';
-            proxy_set_header Host $host;
-            proxy_cache_bypass $http_upgrade;
-            proxy_set_header X-Real-IP $remote_addr;
-            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-            proxy_set_header X-Forwarded-Proto $scheme;
-        }
-    }
+        nginxConf += `
+    # ${service} - ${domain}
+
+    # HTTP - ACME challenge + redirect to HTTPS
+    server {
+        listen 80;
+        server_name ${domain};
+
+        # Allow certbot ACME challenge (for renewals)
+        location /.well-known/acme-challenge/ {
+            root /var/www/certbot;
+        }
+
+        # Redirect all other traffic to HTTPS
+        location / {
+            return 301 https://$server_name$request_uri;
+        }
+    }
+
+    # HTTPS - main server block
+    server {
+        listen 443 ssl;
+        http2 on;
+        server_name ${domain};
+
+        # SSL certificate paths (Let's Encrypt)
+        ssl_certificate /etc/letsencrypt/live/${domain}/fullchain.pem;
+        ssl_certificate_key /etc/letsencrypt/live/${domain}/privkey.pem;
+
+        # SSL security settings
+        ssl_protocols TLSv1.2 TLSv1.3;
+        ssl_prefer_server_ciphers on;
+        ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256;
+        ssl_session_cache shared:SSL:10m;
+        ssl_session_timeout 10m;
+
+        location / {
+            proxy_pass http://${service}:${port};
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection 'upgrade';
+            proxy_set_header Host $host;
+            proxy_cache_bypass $http_upgrade;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header X-Forwarded-Proto $scheme;
+        }
+    }
 `;
     }
     nginxConf += `}\n`;

package/dist/utils/deployment-report.js

@@ -154,8 +154,8 @@ function formatDeploymentReport(data) {
 function formatWorkflowSummary(data) {
     const report = formatDeploymentReport(data);
     // Workflow summaries support markdown, so we can enhance it
-    return `\`\`\`
-${report}
+    return `\`\`\`
+${report}
 \`\`\``;
 }
 /**

package/dist/utils/secret-prompts.js

@@ -64,16 +64,16 @@ const SECRET_METADATA = {
     STAGING_SSH: {
         type: 'ssh_key',
         description: 'SSH private key for accessing staging server',
-        helpText: `
-   Step 1: Generate a new SSH key pair:
-   ssh-keygen -t ed25519 -C "staging-deploy" -f ~/.ssh/staging_deploy
-   
-   Step 2: Add PUBLIC key to your staging server:
-   ssh-copy-id -i ~/.ssh/staging_deploy.pub ubuntu@YOUR_HOST
-   
-   (HOST is configured in stack.yml → environments.staging.host)
-   
-   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
+        helpText: `
+   Step 1: Generate a new SSH key pair:
+   ssh-keygen -t ed25519 -C "staging-deploy" -f ~/.ssh/staging_deploy
+   
+   Step 2: Add PUBLIC key to your staging server:
+   ssh-copy-id -i ~/.ssh/staging_deploy.pub ubuntu@YOUR_HOST
+   
+   (HOST is configured in stack.yml → environments.staging.host)
+   
+   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
    cat ~/.ssh/staging_deploy`,
         validation: (value) => {
             if (!value || value.trim().length === 0) {
@@ -91,16 +91,16 @@ const SECRET_METADATA = {
     PROD_SSH: {
         type: 'ssh_key',
         description: 'SSH private key for accessing production server',
-        helpText: `
-   Step 1: Generate a new SSH key pair:
-   ssh-keygen -t ed25519 -C "production-deploy" -f ~/.ssh/prod_deploy
-   
-   Step 2: Add PUBLIC key to your production server:
-   ssh-copy-id -i ~/.ssh/prod_deploy.pub ubuntu@YOUR_HOST
-   
-   (HOST is configured in stack.yml → environments.production.host)
-   
-   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
+        helpText: `
+   Step 1: Generate a new SSH key pair:
+   ssh-keygen -t ed25519 -C "production-deploy" -f ~/.ssh/prod_deploy
+   
+   Step 2: Add PUBLIC key to your production server:
+   ssh-copy-id -i ~/.ssh/prod_deploy.pub ubuntu@YOUR_HOST
+   
+   (HOST is configured in stack.yml → environments.production.host)
+   
+   Step 3: Paste the PRIVATE key below (multi-line, end with blank line):
    cat ~/.ssh/prod_deploy`,
         validation: (value) => {
             if (!value || value.trim().length === 0) {
@@ -118,14 +118,14 @@ const SECRET_METADATA = {
     AWS_SECRET_ACCESS_KEY: {
         type: 'aws_secret',
         description: 'AWS Secret Access Key (the only secret AWS value)',
-        helpText: `
-   Get from AWS Console: IAM → Users → Security credentials
-   
-   This is shown only once when you create the key.
-   If lost, you must create a new key pair.
-   
-   Note: AWS_ACCESS_KEY_ID and AWS_REGION go in stack.yml (not secrets)
-   
+        helpText: `
+   Get from AWS Console: IAM → Users → Security credentials
+   
+   This is shown only once when you create the key.
+   If lost, you must create a new key pair.
+   
+   Note: AWS_ACCESS_KEY_ID and AWS_REGION go in stack.yml (not secrets)
+   
    Enter AWS Secret Access Key:`,
         validation: (value) => {
             if (!value || value.trim().length === 0) {
@@ -143,12 +143,12 @@ const SECRET_METADATA = {
     VERCEL_TOKEN: {
         type: 'api_token',
         description: 'Vercel API Token for deployments',
-        helpText: `
-   Get your token from: https://vercel.com/account/tokens
-   Create a new token with:
-   - Scope: Full Account (or specific team)
-   - Expiration: No Expiration (or custom)
-   
+        helpText: `
+   Get your token from: https://vercel.com/account/tokens
+   Create a new token with:
+   - Scope: Full Account (or specific team)
+   - Expiration: No Expiration (or custom)
+   
    Enter Vercel API Token:`,
         validation: (value) => {
             if (!value || value.trim().length === 0) {