npm - @friggframework/devtools - Versions diffs - 2.0.0--canary.474.b510a6e.0 → 2.0.0--canary.474.2ad4ebc.0 - Mend

@friggframework/devtools 2.0.0--canary.474.b510a6e.0 → 2.0.0--canary.474.2ad4ebc.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/frigg-cli/{CLI.md → README.md} +99 -0
package/infrastructure/HEALTH.md +468 -0
package/package.json +6 -6
package/FRIGG_DOCTOR_USAGE.md +0 -217
package/TDD_PROOF.md +0 -254
package/frigg-cli/CLI_PACKAGE_SEPARATION.md +0 -416
package/infrastructure/MULTI_CLOUD_ARCHITECTURE.md +0 -703

package/infrastructure/MULTI_CLOUD_ARCHITECTURE.md DELETED Viewed

@@ -1,703 +0,0 @@
-# Multi-Cloud Architecture - Discovery, Doctor & Repair
-## Overview
-This document describes the architecture for multi-cloud support in Frigg's infrastructure tooling, with a focus on the discovery, health checking (doctor), and repair capabilities.
-**Key Principle**: Use Domain-Driven Design (DDD) and Hexagonal Architecture (Ports & Adapters) to support AWS today while making it obvious where to extend for GCP, Azure, Cloudflare, and non-serverless (Docker) deployments.
----
-## Architecture Layers
-```
-┌──────────────────────────────────────────────────────────────┐
-│                     CLI LAYER                                │
-│   frigg doctor  |  frigg repair  |  frigg deploy            │
-└────────────────────────┬─────────────────────────────────────┘
-                         │
-┌────────────────────────▼─────────────────────────────────────┐
-│              APPLICATION LAYER (Use Cases)                   │
-│  Orchestrates business logic - provider agnostic             │
-│                                                              │
-│  • RunHealthCheckUseCase                                    │
-│  • RepairStackViaImportUseCase                              │
-│  • ReconcilePropertyMismatchesUseCase                       │
-│  • DiscoverInfrastructureUseCase                            │
-└────────────────────────┬─────────────────────────────────────┘
-                         │
-                         │ Uses Ports (Interfaces)
-                         │
-┌────────────────────────▼─────────────────────────────────────┐
-│                 PORT INTERFACES (Boundaries)                 │
-│  Define contracts - implemented by adapters                  │
-│                                                              │
-│  • IStackRepository          - Stack CRUD operations        │
-│  • IResourceDetector         - Cloud resource queries       │
-│  • IDriftDetector            - Compare desired vs actual    │
-│  • IResourceImporter         - Import existing resources    │
-│  • IPropertyReconciler       - Fix property mismatches      │
-└────────────────────────┬─────────────────────────────────────┘
-                         │
-                         │ Implemented by
-                         │
-┌────────────────────────▼─────────────────────────────────────┐
-│            ADAPTER LAYER (Provider-Specific)                 │
-│                                                              │
-│  ┌─────────────────┐  ┌─────────────────┐  ┌──────────────┐│
-│  │  AWS Adapters   │  │  GCP Adapters   │  │ Azure        ││
-│  │  (Today)        │  │  (Future)       │  │ Adapters     ││
-│  │                 │  │                 │  │ (Future)     ││
-│  │ • CloudFormation│  │ • Deployment    │  │ • ARM        ││
-│  │ • AWS SDK APIs  │  │   Manager       │  │   Templates  ││
-│  │ • Resource      │  │ • GCP APIs      │  │ • Azure      ││
-│  │   Importers     │  │                 │  │   APIs       ││
-│  └─────────────────┘  └─────────────────┘  └──────────────┘│
-└──────────────────────────────────────────────────────────────┘
-                         │
-┌────────────────────────▼─────────────────────────────────────┐
-│                  CLOUD PROVIDERS                             │
-│    AWS    |    GCP    |    Azure    |    Cloudflare         │
-└──────────────────────────────────────────────────────────────┘
-```
----
-## Domain Structure
-### Directory Organization
-```
-packages/devtools/infrastructure/
-├── domains/
-│   ├── health/                          # NEW - Health checking domain
-│   │   ├── domain/                      # Domain layer (provider-agnostic)
-│   │   │   ├── entities/
-│   │   │   │   ├── Resource.js
-│   │   │   │   ├── Issue.js
-│   │   │   │   ├── PropertyMismatch.js
-│   │   │   │   └── StackHealthReport.js
-│   │   │   ├── value-objects/
-│   │   │   │   ├── StackIdentifier.js
-│   │   │   │   ├── HealthScore.js
-│   │   │   │   ├── ResourceState.js    # IN_STACK, ORPHANED, MISSING, DRIFTED
-│   │   │   │   └── PropertyMutability.js
-│   │   │   ├── services/
-│   │   │   │   ├── HealthScoreCalculator.js
-│   │   │   │   └── MismatchAnalyzer.js
-│   │   │   └── collections/
-│   │   │       ├── ResourceCollection.js
-│   │   │       └── IssueCollection.js
-│   │   ├── application/                 # Application layer (use cases)
-│   │   │   ├── use-cases/
-│   │   │   │   ├── run-health-check-use-case.js
-│   │   │   │   ├── repair-via-import-use-case.js
-│   │   │   │   └── reconcile-properties-use-case.js
-│   │   │   └── ports/                   # Port interfaces
-│   │   │       ├── IStackRepository.js
-│   │   │       ├── IResourceDetector.js
-│   │   │       ├── IDriftDetector.js
-│   │   │       ├── IResourceImporter.js
-│   │   │       └── IPropertyReconciler.js
-│   │   └── infrastructure/              # Infrastructure layer (adapters)
-│   │       ├── adapters/
-│   │       │   ├── aws/                 # AWS implementations (TODAY)
-│   │       │   │   ├── AWSStackRepository.js
-│   │       │   │   ├── AWSResourceDetector.js
-│   │       │   │   ├── AWSDriftDetector.js
-│   │       │   │   ├── AWSResourceImporter.js
-│   │       │   │   └── AWSPropertyReconciler.js
-│   │       │   ├── gcp/                 # GCP implementations (FUTURE)
-│   │       │   │   ├── GCPStackRepository.js
-│   │       │   │   └── ...
-│   │       │   └── azure/               # Azure implementations (FUTURE)
-│   │       │       ├── AzureStackRepository.js
-│   │       │       └── ...
-│   │       └── cli/
-│   │           ├── doctor-command.js
-│   │           ├── repair-command.js
-│   │           └── presenters/
-│   │               ├── health-report-presenter.js
-│   │               └── repair-plan-presenter.js
-│   │
-│   ├── discovery/                       # REFACTORED - Cloud discovery domain
-│   │   ├── domain/
-│   │   │   ├── entities/
-│   │   │   │   ├── DiscoveryResult.js
-│   │   │   │   └── CloudResource.js
-│   │   │   └── value-objects/
-│   │   │       └── ResourceIdentifier.js
-│   │   ├── application/
-│   │   │   ├── use-cases/
-│   │   │   │   └── discover-infrastructure-use-case.js
-│   │   │   └── ports/
-│   │   │       ├── ICloudProvider.js     # Port for cloud providers
-│   │   │       └── IStackProvider.js     # Port for stack systems
-│   │   └── infrastructure/
-│   │       └── adapters/
-│   │           ├── aws/
-│   │           │   ├── AWSCloudProvider.js
-│   │           │   ├── CloudFormationStackProvider.js
-│   │           │   ├── EC2Discoverer.js
-│   │           │   ├── RDSDiscoverer.js
-│   │           │   └── KMSDiscoverer.js
-│   │           ├── gcp/
-│   │           │   ├── GCPCloudProvider.js
-│   │           │   └── DeploymentManagerStackProvider.js
-│   │           └── azure/
-│   │               ├── AzureCloudProvider.js
-│   │               └── ARMTemplateStackProvider.js
-│   │
-│   ├── networking/                      # PROVIDER-SPECIFIC builders
-│   │   ├── aws/
-│   │   │   ├── vpc-builder.js
-│   │   │   └── vpc-resolver.js
-│   │   ├── gcp/
-│   │   │   ├── network-builder.js       # (FUTURE)
-│   │   │   └── network-resolver.js
-│   │   └── azure/
-│   │       ├── vnet-builder.js          # (FUTURE)
-│   │       └── vnet-resolver.js
-│   │
-│   ├── database/                        # PROVIDER-SPECIFIC builders
-│   │   ├── aws/
-│   │   │   ├── aurora-builder.js
-│   │   │   ├── aurora-resolver.js
-│   │   │   ├── migration-builder.js
-│   │   │   └── migration-resolver.js
-│   │   ├── gcp/
-│   │   │   ├── cloud-sql-builder.js     # (FUTURE)
-│   │   │   └── cloud-sql-resolver.js
-│   │   └── azure/
-│   │       ├── cosmos-db-builder.js     # (FUTURE)
-│   │       └── cosmos-db-resolver.js
-│   │
-│   ├── security/                        # PROVIDER-SPECIFIC builders
-│   │   ├── aws/
-│   │   │   ├── kms-builder.js
-│   │   │   └── kms-resolver.js
-│   │   ├── gcp/
-│   │   │   └── kms-builder.js           # (FUTURE)
-│   │   └── azure/
-│   │       └── key-vault-builder.js     # (FUTURE)
-│   │
-│   └── shared/                          # Shared utilities
-│       ├── base-resource-resolver.js
-│       ├── builder-orchestrator.js
-│       └── resource-ownership.js
-│
-└── providers/                           # PROVIDER REGISTRY
-    ├── registry.js                      # Maps provider name to implementations
-    ├── aws-provider.js                  # AWS provider definition
-    ├── gcp-provider.js                  # GCP provider definition (FUTURE)
-    └── azure-provider.js                # Azure provider definition (FUTURE)
-```
----
-## Port Interfaces (Contracts)
-Port interfaces define the contracts that provider-specific adapters must implement. These are the boundaries between the provider-agnostic domain layer and provider-specific infrastructure.
-**Source files**: `packages/devtools/infrastructure/domains/health/application/ports/`
-### Key Ports
-**IStackRepository** - Stack management operations (CloudFormation, Deployment Manager, ARM)
-```javascript
-// Example methods:
-async getStack(identifier)
-async listResources(identifier)
-async getOutputs(identifier)
-```
-📄 See: `application/ports/IStackRepository.js`
-**IResourceDetector** - Cloud resource discovery (AWS APIs, GCP APIs, Azure APIs)
-```javascript
-// Example methods:
-async detectNetworks(region)
-async detectDatabases(region)
-async detectKeys(region)
-async detectResourceById(physicalId, resourceType)
-```
-📄 See: `application/ports/IResourceDetector.js`
-**IDriftDetector** - Compare desired state vs actual state
-```javascript
-// Example methods:
-async detectDrift(resource, desiredProperties)
-async detectStackDrift(identifier)
-```
-📄 See: `application/ports/IDriftDetector.js`
-**IResourceImporter** - Import existing resources into stack
-```javascript
-// Example methods:
-isImportable(resourceType)
-async createImportChangeSet(stackId, resources)
-async executeImport(changeSet)
-```
-📄 See: `application/ports/IResourceImporter.js`
-**IPropertyReconciler** - Fix property mismatches
-```javascript
-// Example methods:
-async reconcile(mismatch, resource)
-async planReconciliation(mismatches)
-```
-📄 See: `application/ports/IPropertyReconciler.js`
-> **Note**: Full interface definitions are maintained in source files. See the actual TypeScript/JSDoc definitions for complete method signatures and documentation.
----
-## AWS Adapter Implementations
-AWS-specific implementations of the port interfaces using AWS SDK v3.
-**Source files**: `packages/devtools/infrastructure/domains/health/infrastructure/adapters/aws/`
-### AWSStackRepository
-Implements `IStackRepository` using CloudFormation API.
-```javascript
-class AWSStackRepository extends IStackRepository {
-  constructor({ region }) {
-    this.client = new CloudFormationClient({ region });
-  }
-  async getStack(identifier) {
-    // Uses DescribeStacksCommand
-    // Returns Stack or null if not found
-  }
-  async listResources(identifier) {
-    // Uses ListStackResourcesCommand
-    // Maps to standard resource format
-  }
-}
-```
-📄 See full implementation: `adapters/aws/AWSStackRepository.js`
-### AWSResourceDetector
-Implements `IResourceDetector` using AWS service APIs (EC2, RDS, KMS, etc.).
-```javascript
-class AWSResourceDetector extends IResourceDetector {
-  constructor({ region }) {
-    this.ec2 = new EC2Client({ region });
-    this.rds = new RDSClient({ region });
-    this.kms = new KMSClient({ region });
-  }
-  async detectNetworks(region) {
-    // Uses DescribeVpcsCommand
-    // Returns standardized network resources
-  }
-  async detectDatabases(region) {
-    // Uses DescribeDBClustersCommand
-    // Returns standardized database resources
-  }
-  async detectKeys(region) {
-    // Uses ListKeysCommand + DescribeKeyCommand
-    // Returns standardized key resources
-  }
-}
-```
-📄 See full implementation: `adapters/aws/AWSResourceDetector.js`
-### Other AWS Adapters
-- **AWSDriftDetector** - Uses CloudFormation drift detection API
-- **AWSResourceImporter** - Uses CloudFormation import change sets
-- **AWSPropertyReconciler** - Uses CloudFormation update stacks
-📄 See: `adapters/aws/` directory for all implementations
----
-## Provider Registry
-### registry.js
-```javascript
-/**
- * Provider Registry
- *
- * Maps provider names to their implementations
- */
-class ProviderRegistry {
-  constructor() {
-    this.providers = new Map();
-    this.registerBuiltInProviders();
-  }
-  registerBuiltInProviders() {
-    // Register AWS (available today)
-    this.register('aws', require('./aws-provider'));
-    // Register GCP (future - throws helpful error)
-    this.register('gcp', {
-      name: 'GCP',
-      available: false,
-      message: 'GCP support is planned but not yet implemented',
-    });
-    // Register Azure (future - throws helpful error)
-    this.register('azure', {
-      name: 'Azure',
-      available: false,
-      message: 'Azure support is planned but not yet implemented',
-    });
-  }
-  register(name, provider) {
-    this.providers.set(name, provider);
-  }
-  get(name) {
-    const provider = this.providers.get(name);
-    if (!provider) {
-      throw new Error(`Unknown provider: ${name}. Supported providers: ${Array.from(this.providers.keys()).join(', ')}`);
-    }
-    if (provider.available === false) {
-      throw new Error(`${provider.name} provider is not yet available. ${provider.message}`);
-    }
-    return provider;
-  }
-  isAvailable(name) {
-    const provider = this.providers.get(name);
-    return provider && provider.available !== false;
-  }
-  getSupportedProviders() {
-    return Array.from(this.providers.keys()).filter(name => this.isAvailable(name));
-  }
-}
-module.exports = new ProviderRegistry();
-```
-### aws-provider.js
-```javascript
-/**
- * AWS Provider Definition
- *
- * Factory for AWS-specific implementations
- */
-const AWSStackRepository = require('../domains/health/infrastructure/adapters/aws/AWSStackRepository');
-const AWSResourceDetector = require('../domains/health/infrastructure/adapters/aws/AWSResourceDetector');
-const AWSDriftDetector = require('../domains/health/infrastructure/adapters/aws/AWSDriftDetector');
-const AWSResourceImporter = require('../domains/health/infrastructure/adapters/aws/AWSResourceImporter');
-const AWSPropertyReconciler = require('../domains/health/infrastructure/adapters/aws/AWSPropertyReconciler');
-// Domain builders
-const VpcBuilder = require('../domains/networking/aws/vpc-builder');
-const KmsBuilder = require('../domains/security/aws/kms-builder');
-const AuroraBuilder = require('../domains/database/aws/aurora-builder');
-const MigrationBuilder = require('../domains/database/aws/migration-builder');
-module.exports = {
-  name: 'AWS',
-  available: true,
-  /**
-   * Create health check adapters for AWS
-   */
-  createHealthAdapters({ region }) {
-    return {
-      stackRepository: new AWSStackRepository({ region }),
-      resourceDetector: new AWSResourceDetector({ region }),
-      driftDetector: new AWSDriftDetector({ region }),
-      resourceImporter: new AWSResourceImporter({ region }),
-      propertyReconciler: new AWSPropertyReconciler({ region }),
-    };
-  },
-  /**
-   * Get infrastructure builders for AWS
-   */
-  getBuilders() {
-    return [
-      new VpcBuilder(),
-      new KmsBuilder(),
-      new AuroraBuilder(),
-      new MigrationBuilder(),
-    ];
-  },
-  /**
-   * Get supported resource types
-   */
-  getSupportedResourceTypes() {
-    return [
-      'AWS::EC2::VPC',
-      'AWS::EC2::Subnet',
-      'AWS::EC2::SecurityGroup',
-      'AWS::RDS::DBCluster',
-      'AWS::RDS::DBInstance',
-      'AWS::KMS::Key',
-      'AWS::Lambda::Function',
-      'AWS::SQS::Queue',
-      'AWS::S3::Bucket',
-      // ... more
-    ];
-  },
-  /**
-   * Get resource property metadata
-   */
-  getResourceMetadata(resourceType) {
-    return require(`./metadata/${resourceType.replace(/::/g, '_')}.json`);
-  },
-};
-```
----
-## Use Case Integration with Providers
-### RunHealthCheckUseCase
-```javascript
-const ProviderRegistry = require('../../../providers/registry');
-class RunHealthCheckUseCase {
-  /**
-   * @param {Object} dependencies - Injected dependencies (optional)
-   */
-  constructor(dependencies = {}) {
-    this.dependencies = dependencies;
-  }
-  /**
-   * Execute health check
-   *
-   * @param {Object} params
-   * @param {string} params.stackName - CloudFormation stack name
-   * @param {string} params.region - Cloud provider region
-   * @param {string} params.provider - Provider name ('aws', 'gcp', 'azure')
-   * @param {Object} params.appDefinition - App definition (desired state)
-   */
-  async execute({ stackName, region, provider, appDefinition }) {
-    // Get provider-specific adapters
-    const providerImpl = ProviderRegistry.get(provider);
-    const adapters = this.dependencies.adapters || providerImpl.createHealthAdapters({ region });
-    // Step 1: Get stack state
-    const stackIdentifier = new StackIdentifier({ stackName, region });
-    const stack = await adapters.stackRepository.getStack(stackIdentifier);
-    if (!stack) {
-      return StackHealthReport.createForMissingStack(stackIdentifier);
-    }
-    // Step 2: Discover resources
-    const stackResources = await adapters.stackRepository.listResources(stackIdentifier);
-    const cloudResources = await this.discoverCloudResources(adapters.resourceDetector, region);
-    // Step 3: Detect issues
-    const orphanedResources = this.detectOrphaned(stackResources, cloudResources);
-    const missingResources = this.detectMissing(stackResources, cloudResources);
-    const driftedResources = await this.detectDrift(stackResources, cloudResources, adapters.driftDetector);
-    // Step 4: Calculate health score
-    const healthScore = HealthScoreCalculator.calculate({
-      orphaned: orphanedResources.length,
-      missing: missingResources.length,
-      drifted: driftedResources.length,
-      total: stackResources.length,
-    });
-    // Step 5: Build health report
-    return new StackHealthReport({
-      stackIdentifier,
-      healthScore,
-      orphanedResources,
-      missingResources,
-      driftedResources,
-    });
-  }
-  async discoverCloudResources(detector, region) {
-    const [networks, databases, keys] = await Promise.all([
-      detector.detectNetworks(region),
-      detector.detectDatabases(region),
-      detector.detectKeys(region),
-    ]);
-    return [...networks, ...databases, ...keys];
-  }
-  detectOrphaned(stackResources, cloudResources) {
-    // Resources in cloud but not in stack
-    const stackPhysicalIds = new Set(stackResources.map(r => r.physicalId));
-    return cloudResources.filter(r => !stackPhysicalIds.has(r.physicalId));
-  }
-  detectMissing(stackResources, cloudResources) {
-    // Resources in stack but not in cloud
-    const cloudPhysicalIds = new Set(cloudResources.map(r => r.physicalId));
-    return stackResources.filter(r => !cloudPhysicalIds.has(r.physicalId));
-  }
-  async detectDrift(stackResources, cloudResources, driftDetector) {
-    const drifted = [];
-    for (const stackResource of stackResources) {
-      const cloudResource = cloudResources.find(r => r.physicalId === stackResource.physicalId);
-      if (cloudResource) {
-        const mismatches = await driftDetector.detectDrift(stackResource, cloudResource.properties);
-        if (mismatches.length > 0) {
-          drifted.push({
-            resource: stackResource,
-            mismatches,
-          });
-        }
-      }
-    }
-    return drifted;
-  }
-}
-module.exports = RunHealthCheckUseCase;
-```
----
-## CLI Command Integration
-### doctor-command.js
-```javascript
-const ProviderRegistry = require('../../providers/registry');
-const RunHealthCheckUseCase = require('../../domains/health/application/use-cases/run-health-check-use-case');
-const HealthReportPresenter = require('./presenters/health-report-presenter');
-async function doctorCommand(options) {
-  console.log('🩺 Running infrastructure health check...\n');
-  // Load app definition
-  const appDefinition = loadAppDefinition();
-  const provider = options.provider || appDefinition.provider || 'aws';
-  const region = options.region || appDefinition.region;
-  const stackName = options.stack || `${appDefinition.name}-${options.stage || 'dev'}`;
-  // Verify provider is supported
-  if (!ProviderRegistry.isAvailable(provider)) {
-    console.error(`❌ Provider '${provider}' is not supported`);
-    console.log(`Supported providers: ${ProviderRegistry.getSupportedProviders().join(', ')}`);
-    process.exit(1);
-  }
-  // Create use case (adapters created automatically based on provider)
-  const useCase = new RunHealthCheckUseCase();
-  // Execute health check
-  const report = await useCase.execute({
-    stackName,
-    region,
-    provider,
-    appDefinition,
-  });
-  // Present results
-  const presenter = new HealthReportPresenter({ format: options.format || 'table' });
-  presenter.present(report);
-  // Exit with code based on health score (if requested)
-  if (options.exitCode) {
-    if (report.healthScore.isHealthy()) {
-      process.exit(0);
-    } else if (report.healthScore.isDegraded()) {
-      process.exit(1);
-    } else {
-      process.exit(2);
-    }
-  }
-}
-module.exports = doctorCommand;
-```
----
-## Extension Points for Future Providers
-### Adding GCP Support
-To add GCP support in the future:
-1. **Create GCP adapters**:
-   ```
-   infrastructure/domains/health/infrastructure/adapters/gcp/
-   ├── GCPStackRepository.js       # Deployment Manager
-   ├── GCPResourceDetector.js      # GCP APIs
-   ├── GCPDriftDetector.js
-   ├── GCPResourceImporter.js
-   └── GCPPropertyReconciler.js
-   ```
-2. **Create GCP builders**:
-   ```
-   infrastructure/domains/networking/gcp/network-builder.js
-   infrastructure/domains/database/gcp/cloud-sql-builder.js
-   infrastructure/domains/security/gcp/kms-builder.js
-   ```
-3. **Register GCP provider**:
-   ```javascript
-   // providers/gcp-provider.js
-   module.exports = {
-     name: 'GCP',
-     available: true,
-     createHealthAdapters({ region }) { ... },
-     getBuilders() { ... },
-     getSupportedResourceTypes() { ... },
-   };
-   ```
-4. **Update registry**:
-   ```javascript
-   // providers/registry.js
-   this.register('gcp', require('./gcp-provider'));
-   ```
-**No changes required to**:
-- Domain entities (Resource, Issue, StackHealthReport)
-- Value objects (HealthScore, ResourceState)
-- Use cases (RunHealthCheckUseCase, RepairStackViaImportUseCase)
-- CLI commands (doctor-command.js, repair-command.js)
-The hexagonal architecture ensures new providers only require implementing the port interfaces!
----
-## Summary
-This architecture achieves:
-✅ **Multi-cloud ready** - Ports & Adapters make provider swapping trivial
-✅ **Provider-specific domains clear** - Obvious where AWS/GCP/Azure diverge
-✅ **Testable** - Mock port interfaces for unit tests
-✅ **Extensible** - Add new providers without touching domain logic
-✅ **Explicit** - Provider selection obvious in app definition
-✅ **Future-proof** - Non-serverless (Docker) can be added as another provider
-**AWS works today**, and the path to GCP/Azure/Cloudflare is clear and isolated to adapter implementations.