npm - @hatem427/code-guard-ci - Versions diffs - 3.0.0 → 3.1.0 - Mend

@hatem427/code-guard-ci 3.0.0 → 3.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

package/config/fastify.config.ts +326 -0
package/config/hono.config.ts +331 -0
package/config/nestjs.config.ts +500 -0
package/config/node.config.ts +425 -0
package/config/python.config.ts +512 -0
package/dist/config/fastify.config.d.ts +17 -0
package/dist/config/fastify.config.d.ts.map +1 -0
package/dist/config/fastify.config.js +279 -0
package/dist/config/fastify.config.js.map +1 -0
package/dist/config/hono.config.d.ts +17 -0
package/dist/config/hono.config.d.ts.map +1 -0
package/dist/config/hono.config.js +287 -0
package/dist/config/hono.config.js.map +1 -0
package/dist/config/nestjs.config.d.ts +17 -0
package/dist/config/nestjs.config.d.ts.map +1 -0
package/dist/config/nestjs.config.js +440 -0
package/dist/config/nestjs.config.js.map +1 -0
package/dist/config/node.config.d.ts +17 -0
package/dist/config/node.config.d.ts.map +1 -0
package/dist/config/node.config.js +363 -0
package/dist/config/node.config.js.map +1 -0
package/dist/config/python.config.d.ts +15 -0
package/dist/config/python.config.d.ts.map +1 -0
package/dist/config/python.config.js +475 -0
package/dist/config/python.config.js.map +1 -0
package/dist/scripts/auto-fix.d.ts +5 -0
package/dist/scripts/auto-fix.d.ts.map +1 -1
package/dist/scripts/auto-fix.js +5 -0
package/dist/scripts/auto-fix.js.map +1 -1
package/dist/scripts/cli.js +2 -2
package/dist/scripts/cli.js.map +1 -1
package/dist/scripts/config-generators/ai-config-generator.d.ts.map +1 -1
package/dist/scripts/config-generators/ai-config-generator.js +6 -0
package/dist/scripts/config-generators/ai-config-generator.js.map +1 -1
package/dist/scripts/config-generators/eslint-generator.d.ts.map +1 -1
package/dist/scripts/config-generators/eslint-generator.js +108 -0
package/dist/scripts/config-generators/eslint-generator.js.map +1 -1
package/dist/scripts/config-generators/frameworks/fastify.d.ts +6 -0
package/dist/scripts/config-generators/frameworks/fastify.d.ts.map +1 -0
package/dist/scripts/config-generators/frameworks/fastify.js +68 -0
package/dist/scripts/config-generators/frameworks/fastify.js.map +1 -0
package/dist/scripts/config-generators/frameworks/hono.d.ts +6 -0
package/dist/scripts/config-generators/frameworks/hono.d.ts.map +1 -0
package/dist/scripts/config-generators/frameworks/hono.js +63 -0
package/dist/scripts/config-generators/frameworks/hono.js.map +1 -0
package/dist/scripts/config-generators/frameworks/index.d.ts +3 -0
package/dist/scripts/config-generators/frameworks/index.d.ts.map +1 -1
package/dist/scripts/config-generators/frameworks/index.js +7 -1
package/dist/scripts/config-generators/frameworks/index.js.map +1 -1
package/dist/scripts/config-generators/frameworks/nestjs.d.ts +6 -0
package/dist/scripts/config-generators/frameworks/nestjs.d.ts.map +1 -0
package/dist/scripts/config-generators/frameworks/nestjs.js +83 -0
package/dist/scripts/config-generators/frameworks/nestjs.js.map +1 -0
package/dist/scripts/config-generators/frameworks/node.d.ts +2 -2
package/dist/scripts/config-generators/frameworks/node.d.ts.map +1 -1
package/dist/scripts/config-generators/frameworks/node.js +56 -11
package/dist/scripts/config-generators/frameworks/node.js.map +1 -1
package/dist/scripts/config-generators/typescript-generator.d.ts.map +1 -1
package/dist/scripts/config-generators/typescript-generator.js +33 -0
package/dist/scripts/config-generators/typescript-generator.js.map +1 -1
package/dist/scripts/config-generators/vscode-generator.d.ts.map +1 -1
package/dist/scripts/config-generators/vscode-generator.js +73 -0
package/dist/scripts/config-generators/vscode-generator.js.map +1 -1
package/dist/scripts/generate-pr-checklist.d.ts +5 -0
package/dist/scripts/generate-pr-checklist.d.ts.map +1 -1
package/dist/scripts/generate-pr-checklist.js +6 -1
package/dist/scripts/generate-pr-checklist.js.map +1 -1
package/dist/scripts/postinstall.js +38 -0
package/dist/scripts/postinstall.js.map +1 -1
package/dist/scripts/precommit-check.d.ts +13 -0
package/dist/scripts/precommit-check.d.ts.map +1 -1
package/dist/scripts/precommit-check.js +288 -5
package/dist/scripts/precommit-check.js.map +1 -1
package/dist/scripts/utils/naming-validator.d.ts.map +1 -1
package/dist/scripts/utils/naming-validator.js +96 -2
package/dist/scripts/utils/naming-validator.js.map +1 -1
package/dist/scripts/utils/project-detector.d.ts +12 -9
package/dist/scripts/utils/project-detector.d.ts.map +1 -1
package/dist/scripts/utils/project-detector.js +63 -11
package/dist/scripts/utils/project-detector.js.map +1 -1
package/dist/scripts/utils/structure-validator.d.ts.map +1 -1
package/dist/scripts/utils/structure-validator.js +50 -0
package/dist/scripts/utils/structure-validator.js.map +1 -1
package/package.json +10 -3
package/scripts/auto-fix.ts +5 -0
package/scripts/cli.ts +2 -2
package/scripts/config-generators/ai-config-generator.ts +9 -0
package/scripts/config-generators/eslint-generator.ts +110 -0
package/scripts/config-generators/frameworks/fastify.ts +65 -0
package/scripts/config-generators/frameworks/hono.ts +60 -0
package/scripts/config-generators/frameworks/index.ts +3 -0
package/scripts/config-generators/frameworks/nestjs.ts +80 -0
package/scripts/config-generators/frameworks/node.ts +57 -11
package/scripts/config-generators/typescript-generator.ts +36 -0
package/scripts/config-generators/vscode-generator.ts +84 -0
package/scripts/generate-pr-checklist.ts +6 -1
package/scripts/postinstall.ts +38 -0
package/scripts/precommit-check.ts +334 -6
package/scripts/utils/naming-validator.ts +104 -2
package/scripts/utils/project-detector.ts +78 -11
package/scripts/utils/structure-validator.ts +54 -0
package/templates/feature-doc-backend.md +114 -0

package/dist/config/fastify.config.js ADDED Viewed

@@ -0,0 +1,279 @@
+"use strict";
+/**
+ * ============================================================================
+ * fastify.config.ts — Fastify-specific coding rules
+ * ============================================================================
+ *
+ * Registers rules that apply to Fastify projects:
+ *   - Schema-first validation enforcement
+ *   - Plugin scope correctness
+ *   - Async handler patterns
+ *   - Security: CORS, helmet, rate limiting
+ *   - Error response shape
+ *   - Hook lifecycle usage
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.fastifyRules = void 0;
+const guidelines_config_1 = require("./guidelines.config");
+const fastifyRules = [
+    // ── Schema-First Validation ───────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: fastify-schema-required
+    // ROLE: Enforce schema definitions on all routes
+    // PURPOSE: Fastify uses JSON Schema / TypeBox for both request validation
+    //          and response serialization. Without schemas, inputs are not
+    //          validated and responses include all properties (potential data leak).
+    //          Schemas also enable Fastify's fast-json-stringify for ~2× serialization speed.
+    // EXAMPLE:
+    //   WRONG:
+    //     fastify.post('/users', async (req, reply) => {
+    //       return userService.create(req.body);
+    //     });
+    //   RIGHT:
+    //     fastify.post('/users', {
+    //       schema: {
+    //         body: CreateUserSchema,
+    //         response: { 201: UserResponseSchema },
+    //       },
+    //     }, async (req, reply) => {
+    //       return userService.create(req.body);
+    //     });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-schema-required',
+        label: 'Define schema for every route (body, params, response)',
+        description: 'Every Fastify route must define a schema object with at minimum body/params validation and response schemas. This enables validation, serialization speed, and prevents data leaks.',
+        severity: 'error',
+        fileExtensions: ['ts', 'js'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.endsWith('.route.ts') &&
+                !file.relativePath.endsWith('.routes.ts')) {
+                return [];
+            }
+            // Look for fastify.post/put/patch/delete without a schema key
+            const routeRegex = /fastify\.\s*(?:post|put|patch|delete)\s*\(\s*['"`][^'"]+['"`]\s*,\s*async/g;
+            let match;
+            while ((match = routeRegex.exec(file.content)) !== null) {
+                const near = file.content.slice(Math.max(0, match.index - 200), match.index + 50);
+                if (!near.includes('schema')) {
+                    const lineNum = file.content.slice(0, match.index).split('\n').length;
+                    violations.push({
+                        line: lineNum,
+                        message: 'Mutating route (POST/PUT/PATCH/DELETE) is missing a schema definition. Add body validation schema and response schema.',
+                    });
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['fastify'],
+        category: 'Validation',
+    },
+    // ─────────────────────────────────────────
+    // RULE: fastify-response-schema
+    // ROLE: Enforce response schema definitions
+    // PURPOSE: Without a response schema, Fastify falls back to slow JSON.stringify
+    //          and may expose internal fields. Response schemas activate fast-json-stringify
+    //          and act as a serialisation allowlist.
+    // EXAMPLE:
+    //   WRONG:
+    //     fastify.get('/users/:id', async (req, reply) => { return user; });
+    //   RIGHT:
+    //     fastify.get('/users/:id', {
+    //       schema: { response: { 200: UserResponseSchema } },
+    //     }, async (req, reply) => { return user; });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-response-schema',
+        label: 'Always define a response schema',
+        description: 'Define response schemas for all routes to enable fast-json-stringify serialization and prevent accidental exposure of sensitive fields.',
+        severity: 'warning',
+        fileExtensions: ['ts', 'js'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.endsWith('.route.ts') &&
+                !file.relativePath.endsWith('.routes.ts')) {
+                return [];
+            }
+            const hasSchema = /schema\s*:\s*\{/.test(file.content);
+            const hasResponseSchema = /response\s*:\s*\{/.test(file.content);
+            if (hasSchema && !hasResponseSchema) {
+                violations.push({
+                    line: null,
+                    message: 'Route schema found but no response schema defined. Add response: { 200: Schema } to enable fast serialization and prevent data leaks.',
+                });
+            }
+            return violations;
+        },
+        applicableTo: ['fastify'],
+        category: 'Validation',
+    },
+    // ── Plugin Architecture ────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: fastify-use-fastify-plugin
+    // ROLE: Enforce plugin scope correctness
+    // PURPOSE: In Fastify, plugins registered without fastify-plugin are
+    //          scoped to a child context — decorations, hooks, and routes
+    //          added inside won't be visible to siblings or the root instance.
+    //          Shared utilities (auth, db) must use fastify-plugin to break scope.
+    // EXAMPLE:
+    //   WRONG:
+    //     export async function authPlugin(fastify: FastifyInstance) {
+    //       fastify.decorate('verifyToken', verifyToken);
+    //     }
+    //   RIGHT:
+    //     import fp from 'fastify-plugin';
+    //     export default fp(async function authPlugin(fastify: FastifyInstance) {
+    //       fastify.decorate('verifyToken', verifyToken);
+    //     });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-use-fastify-plugin',
+        label: 'Shared plugins must use fastify-plugin (fp)',
+        description: 'Plugins that add decorations, hooks, or services used by other plugins must be wrapped with fastify-plugin (fp) to share scope with the parent context.',
+        severity: 'warning',
+        fileExtensions: ['ts', 'js'],
+        pattern: null,
+        customCheck: (file) => {
+            if (!file.relativePath.includes('/plugins/') &&
+                !file.relativePath.endsWith('.plugin.ts') &&
+                !file.relativePath.endsWith('.plugin.js')) {
+                return [];
+            }
+            const usesDecorate = /fastify\.decorate\s*\(/.test(file.content);
+            const usesFastifyPlugin = /fastify-plugin|fp\s*\(/.test(file.content);
+            if (usesDecorate && !usesFastifyPlugin) {
+                return [
+                    {
+                        line: null,
+                        message: 'Plugin adds decorators but is not wrapped with fastify-plugin (fp). Other plugins/routes will not see these decorations.',
+                    },
+                ];
+            }
+            return [];
+        },
+        applicableTo: ['fastify'],
+        category: 'Architecture',
+    },
+    // ── Async Handler Patterns ────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: fastify-async-handler
+    // ROLE: Enforce async handler pattern
+    // PURPOSE: Mixing reply.send() with async return values causes double-send
+    //          errors in Fastify. Async handlers should return the value;
+    //          Fastify handles serialization. Use reply.send() OR return, not both.
+    // EXAMPLE:
+    //   WRONG:
+    //     fastify.get('/users', async (req, reply) => {
+    //       const users = await userService.findAll();
+    //       reply.send(users);   // + implicit return → double send!
+    //     });
+    //   RIGHT:
+    //     fastify.get('/users', async (req, reply) => {
+    //       return userService.findAll();  // Fastify handles send automatically
+    //     });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-async-handler',
+        label: 'Return values from async handlers — avoid reply.send() + return',
+        description: 'In async Fastify handlers, return the response value directly. Calling reply.send() AND returning a value causes a double-send error.',
+        severity: 'error',
+        fileExtensions: ['ts', 'js'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.endsWith('.route.ts')) {
+                return [];
+            }
+            for (let i = 0; i < file.lines.length; i++) {
+                if (/reply\.send\s*\(/.test(file.lines[i])) {
+                    // Check if there's a return after send on same or next line
+                    const nearby = file.lines.slice(i, i + 3).join(' ');
+                    if (/reply\.send[^;]*;\s*(?:return|})/.test(nearby)) {
+                        violations.push({
+                            line: i + 1,
+                            message: 'reply.send() followed by implicit return in async handler. Use: return myValue; instead of reply.send(myValue).',
+                        });
+                    }
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['fastify'],
+        category: 'Async Patterns',
+    },
+    // ── Security ──────────────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: fastify-use-helmet
+    // ROLE: Enforce security headers
+    // PURPOSE: @fastify/helmet sets a baseline of secure HTTP headers.
+    //          Without it, Fastify serves responses without X-Frame-Options,
+    //          Content-Security-Policy, or HSTS headers.
+    // EXAMPLE:
+    //   WRONG:
+    //     const fastify = Fastify();
+    //     fastify.register(cors);
+    //   RIGHT:
+    //     const fastify = Fastify();
+    //     fastify.register(helmet);
+    //     fastify.register(cors, { origin: allowedOrigins });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-use-helmet',
+        label: 'Register @fastify/helmet for security headers',
+        description: 'Register @fastify/helmet to add baseline security headers (HSTS, X-Frame-Options, CSP, etc.) to all responses.',
+        severity: 'error',
+        fileExtensions: ['ts', 'js'],
+        pattern: null,
+        customCheck: (file) => {
+            if (!file.relativePath.endsWith('server.ts') &&
+                !file.relativePath.endsWith('app.ts') &&
+                !file.relativePath.endsWith('index.ts')) {
+                return [];
+            }
+            const hasFastify = /Fastify\s*\(|fastify\s*\(\s*\)/.test(file.content);
+            const hasHelmet = /helmet/.test(file.content);
+            if (hasFastify && !hasHelmet) {
+                return [
+                    {
+                        line: null,
+                        message: 'Fastify server missing @fastify/helmet. Register it: fastify.register(import("@fastify/helmet")).',
+                    },
+                ];
+            }
+            return [];
+        },
+        applicableTo: ['fastify'],
+        category: 'Security',
+    },
+    // ─────────────────────────────────────────
+    // RULE: fastify-cors-options
+    // ROLE: Enforce CORS configuration
+    // PURPOSE: Registering @fastify/cors without an origin restriction allows
+    //          cross-origin requests from any domain, defeating CORS entirely.
+    // EXAMPLE:
+    //   WRONG:
+    //     fastify.register(cors);   // allows all origins
+    //   RIGHT:
+    //     fastify.register(cors, { origin: ['https://myapp.com'] });
+    // ─────────────────────────────────────────
+    {
+        id: 'fastify-cors-options',
+        label: '@fastify/cors must restrict origin',
+        description: 'Do not register @fastify/cors without an explicit origin allowlist. An unrestricted CORS policy allows any website to make authenticated requests to your API.',
+        severity: 'warning',
+        fileExtensions: ['ts', 'js'],
+        pattern: /register\s*\(\s*cors\s*\)/g,
+        applicableTo: ['fastify'],
+        category: 'Security',
+    },
+];
+exports.fastifyRules = fastifyRules;
+// Register all Fastify-specific rules
+(0, guidelines_config_1.registerRules)('fastify', fastifyRules);
+//# sourceMappingURL=fastify.config.js.map

package/dist/config/fastify.config.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"fastify.config.js","sourceRoot":"","sources":["../../config/fastify.config.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;AAEH,2DAA0D;AAE1D,MAAM,YAAY,GAAW;IAE3B,6EAA6E;IAE7E,4CAA4C;IAC5C,gCAAgC;IAChC,iDAAiD;IACjD,0EAA0E;IAC1E,uEAAuE;IACvE,iFAAiF;IACjF,0FAA0F;IAC1F,WAAW;IACX,WAAW;IACX,qDAAqD;IACrD,6CAA6C;IAC7C,UAAU;IACV,WAAW;IACX,+BAA+B;IAC/B,kBAAkB;IAClB,kCAAkC;IAClC,iDAAiD;IACjD,WAAW;IACX,iCAAiC;IACjC,6CAA6C;IAC7C,UAAU;IACV,4CAA4C;IAC5C;QACE,EAAE,EAAE,yBAAyB;QAC7B,KAAK,EAAE,wDAAwD;QAC/D,WAAW,EACT,qLAAqL;QACvL,QAAQ,EAAE,OAAO;QACjB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,EACzC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,8DAA8D;YAC9D,MAAM,UAAU,GAAG,4EAA4E,CAAC;YAChG,IAAI,KAAK,CAAC;YACV,OAAO,CAAC,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBACxD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,GAAG,GAAG,CAAC,EAAE,KAAK,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC;gBAClF,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;oBACtE,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,OAAO;wBACb,OAAO,EACL,wHAAwH;qBAC3H,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,YAAY;KACvB;IAED,4CAA4C;IAC5C,gCAAgC;IAChC,4CAA4C;IAC5C,gFAAgF;IAChF,yFAAyF;IACzF,iDAAiD;IACjD,WAAW;IACX,WAAW;IACX,yEAAyE;IACzE,WAAW;IACX,kCAAkC;IAClC,2DAA2D;IAC3D,kDAAkD;IAClD,4CAA4C;IAC5C;QACE,EAAE,EAAE,yBAAyB;QAC7B,KAAK,EAAE,iCAAiC;QACxC,WAAW,EACT,yIAAyI;QAC3I,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,EACzC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,SAAS,GAAG,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvD,MAAM,iBAAiB,GAAG,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEjE,IAAI,SAAS,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACpC,UAAU,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,IAAI;oBACV,OAAO,EACL,uIAAuI;iBAC1I,CAAC,CAAC;YACL,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,YAAY;KACvB;IAED,8EAA8E;IAE9E,4CAA4C;IAC5C,mCAAmC;IACnC,yCAAyC;IACzC,qEAAqE;IACrE,sEAAsE;IACtE,2EAA2E;IAC3E,+EAA+E;IAC/E,WAAW;IACX,WAAW;IACX,mEAAmE;IACnE,sDAAsD;IACtD,QAAQ;IACR,WAAW;IACX,uCAAuC;IACvC,8EAA8E;IAC9E,sDAAsD;IACtD,UAAU;IACV,4CAA4C;IAC5C;QACE,EAAE,EAAE,4BAA4B;QAChC,KAAK,EAAE,6CAA6C;QACpD,WAAW,EACT,yJAAyJ;QAC3J,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC;gBACzC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,EACzC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,YAAY,GAAG,wBAAwB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACjE,MAAM,iBAAiB,GAAG,wBAAwB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEtE,IAAI,YAAY,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACvC,OAAO;oBACL;wBACE,IAAI,EAAE,IAAI;wBACV,OAAO,EACL,0HAA0H;qBAC7H;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,cAAc;KACzB;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,8BAA8B;IAC9B,sCAAsC;IACtC,2EAA2E;IAC3E,sEAAsE;IACtE,gFAAgF;IAChF,WAAW;IACX,WAAW;IACX,oDAAoD;IACpD,mDAAmD;IACnD,iEAAiE;IACjE,UAAU;IACV,WAAW;IACX,oDAAoD;IACpD,6EAA6E;IAC7E,UAAU;IACV,4CAA4C;IAC5C;QACE,EAAE,EAAE,uBAAuB;QAC3B,KAAK,EAAE,iEAAiE;QACxE,WAAW,EACT,uIAAuI;QACzI,QAAQ,EAAE,OAAO;QACjB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC,EACxC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,IAAI,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC3C,4DAA4D;oBAC5D,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBACpD,IAAI,kCAAkC,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;wBACpD,UAAU,CAAC,IAAI,CAAC;4BACd,IAAI,EAAE,CAAC,GAAG,CAAC;4BACX,OAAO,EACL,iHAAiH;yBACpH,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,gBAAgB;KAC3B;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,2BAA2B;IAC3B,iCAAiC;IACjC,mEAAmE;IACnE,yEAAyE;IACzE,qDAAqD;IACrD,WAAW;IACX,WAAW;IACX,iCAAiC;IACjC,8BAA8B;IAC9B,WAAW;IACX,iCAAiC;IACjC,gCAAgC;IAChC,0DAA0D;IAC1D,4CAA4C;IAC5C;QACE,EAAE,EAAE,oBAAoB;QACxB,KAAK,EAAE,+CAA+C;QACtD,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,OAAO;QACjB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC;gBACrC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC,EACvC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,UAAU,GAAG,gCAAgC,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvE,MAAM,SAAS,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAE9C,IAAI,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;gBAC7B,OAAO;oBACL;wBACE,IAAI,EAAE,IAAI;wBACV,OAAO,EACL,mGAAmG;qBACtG;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,UAAU;KACrB;IAED,4CAA4C;IAC5C,6BAA6B;IAC7B,mCAAmC;IACnC,0EAA0E;IAC1E,2EAA2E;IAC3E,WAAW;IACX,WAAW;IACX,sDAAsD;IACtD,WAAW;IACX,iEAAiE;IACjE,4CAA4C;IAC5C;QACE,EAAE,EAAE,sBAAsB;QAC1B,KAAK,EAAE,oCAAoC;QAC3C,WAAW,EACT,gKAAgK;QAClK,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC;QAC5B,OAAO,EAAE,4BAA4B;QACrC,YAAY,EAAE,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAKO,oCAAY;AAHrB,sCAAsC;AACtC,IAAA,iCAAa,EAAC,SAAS,EAAE,YAAY,CAAC,CAAC"}

package/dist/config/hono.config.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * ============================================================================
+ * hono.config.ts — Hono-specific coding rules
+ * ============================================================================
+ *
+ * Registers rules that apply to Hono (edge + server) projects:
+ *   - Zod validation enforcement
+ *   - Context variable typing
+ *   - Middleware chaining patterns
+ *   - HTTPException usage
+ *   - Environment access patterns
+ *   - Stateless / edge-first patterns
+ */
+import { Rule } from './guidelines.config';
+declare const honoRules: Rule[];
+export { honoRules };
+//# sourceMappingURL=hono.config.d.ts.map

package/dist/config/hono.config.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"hono.config.d.ts","sourceRoot":"","sources":["../../config/hono.config.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAiB,IAAI,EAAE,MAAM,qBAAqB,CAAC;AAE1D,QAAA,MAAM,SAAS,EAAE,IAAI,EAqTpB,CAAC;AAKF,OAAO,EAAE,SAAS,EAAE,CAAC"}

package/dist/config/hono.config.js ADDED Viewed

@@ -0,0 +1,287 @@
+"use strict";
+/**
+ * ============================================================================
+ * hono.config.ts — Hono-specific coding rules
+ * ============================================================================
+ *
+ * Registers rules that apply to Hono (edge + server) projects:
+ *   - Zod validation enforcement
+ *   - Context variable typing
+ *   - Middleware chaining patterns
+ *   - HTTPException usage
+ *   - Environment access patterns
+ *   - Stateless / edge-first patterns
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.honoRules = void 0;
+const guidelines_config_1 = require("./guidelines.config");
+const honoRules = [
+    // ── Validation ────────────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: hono-use-zod-validator
+    // ROLE: Enforce schema-based request validation
+    // PURPOSE: Accessing c.req.json() or c.req.query() without validation
+    //          passes raw untyped data to your handlers. Using @hono/zod-validator
+    //          ensures type safety and returns a 400 automatically on bad input.
+    // EXAMPLE:
+    //   WRONG:
+    //     app.post('/users', async (c) => {
+    //       const body = await c.req.json();  // untyped, unvalidated
+    //     });
+    //   RIGHT:
+    //     import { zValidator } from '@hono/zod-validator';
+    //     app.post('/users', zValidator('json', CreateUserSchema), async (c) => {
+    //       const body = c.req.valid('json');  // typed and validated
+    //     });
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-use-zod-validator',
+        label: 'Use zValidator for request body validation',
+        description: 'Use @hono/zod-validator middleware on routes that accept request bodies. Calling c.req.json() directly bypasses type safety and validation.',
+        severity: 'error',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.endsWith('.route.ts') &&
+                !file.relativePath.endsWith('.routes.ts')) {
+                return [];
+            }
+            // Detect routes that use c.req.json() without zValidator
+            for (let i = 0; i < file.lines.length; i++) {
+                const line = file.lines[i];
+                if (/c\.req\.json\s*\(/.test(line)) {
+                    // Check surrounding context for zValidator
+                    const context = file.lines.slice(Math.max(0, i - 10), i).join('\n');
+                    if (!context.includes('zValidator') && !context.includes('z.object')) {
+                        violations.push({
+                            line: i + 1,
+                            message: 'c.req.json() used without zValidator middleware. Use zValidator("json", schema) before the handler and access via c.req.valid("json").',
+                        });
+                    }
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['hono'],
+        category: 'Validation',
+    },
+    // ─────────────────────────────────────────
+    // RULE: hono-use-valid-not-json
+    // ROLE: Enforce validated data access after zValidator
+    // PURPOSE: After applying zValidator middleware, handlers must use
+    //          c.req.valid() to access the validated, typed data.
+    //          c.req.json() bypasses validation and returns raw untyped data.
+    // EXAMPLE:
+    //   WRONG:
+    //     app.post('/user', zValidator('json', schema), async (c) => {
+    //       const body = await c.req.json(); // still untyped!
+    //     });
+    //   RIGHT:
+    //     app.post('/user', zValidator('json', schema), async (c) => {
+    //       const body = c.req.valid('json'); // typed + validated
+    //     });
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-use-valid-not-json',
+        label: 'After zValidator, use c.req.valid() not c.req.json()',
+        description: 'When zValidator middleware is applied, access validated data via c.req.valid("json") instead of await c.req.json(). The latter bypasses type narrowing.',
+        severity: 'warning',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.content.includes('zValidator'))
+                return [];
+            for (let i = 0; i < file.lines.length; i++) {
+                if (/await c\.req\.json\s*\(/.test(file.lines[i])) {
+                    violations.push({
+                        line: i + 1,
+                        message: 'zValidator is used in this file. Replace await c.req.json() with c.req.valid("json") to access the typed validated data.',
+                    });
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['hono'],
+        category: 'Validation',
+    },
+    // ── Error Handling ────────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: hono-use-http-exception
+    // ROLE: Enforce HTTPException for expected errors
+    // PURPOSE: Throwing a raw Error in a Hono handler produces a generic 500
+    //          response with no meaningful body. HTTPException allows you to set
+    //          a specific status code and message that will be formatted by
+    //          Hono's onError handler consistently.
+    // EXAMPLE:
+    //   WRONG:
+    //     throw new Error('User not found');
+    //   RIGHT:
+    //     throw new HTTPException(404, { message: 'User not found' });
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-use-http-exception',
+        label: 'Use HTTPException instead of raw Error',
+        description: 'Throw HTTPException from hono with a status code and message for expected errors (404, 401, 400, etc.). Raw Error objects produce unformatted 500 responses.',
+        severity: 'warning',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.includes('/handlers/') &&
+                !file.relativePath.endsWith('.route.ts') &&
+                !file.relativePath.endsWith('.handler.ts')) {
+                return [];
+            }
+            for (let i = 0; i < file.lines.length; i++) {
+                if (/throw\s+new\s+Error\s*\(/.test(file.lines[i])) {
+                    violations.push({
+                        line: i + 1,
+                        message: 'Raw Error thrown. Use HTTPException: throw new HTTPException(404, { message: "Not found" })',
+                    });
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['hono'],
+        category: 'Error Handling',
+    },
+    // ── Context Variables ─────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: hono-type-context-variables
+    // ROLE: Enforce typed context variables
+    // PURPOSE: Using c.get() and c.set() without typed Variables means the
+    //          TypeScript compiler cannot verify keys exist, leading to
+    //          undefined value bugs at runtime.
+    // EXAMPLE:
+    //   WRONG:
+    //     app.use(async (c, next) => {
+    //       c.set('user', user); // no type checking on 'user' key
+    //     });
+    //   RIGHT:
+    //     type Variables = { user: User };
+    //     const app = new Hono<{ Variables: Variables }>();
+    //     app.use(async (c, next) => { c.set('user', user); });
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-type-context-variables',
+        label: 'Type context Variables for c.get() / c.set()',
+        description: 'Declare a typed Variables interface and pass it as a generic to new Hono<{ Variables: Variables }>(). This enables TypeScript to validate context variable keys and values.',
+        severity: 'warning',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            const hasContextSet = /c\.set\s*\(/.test(file.content);
+            const hasHonoGeneric = /new\s+Hono\s*</.test(file.content);
+            const hasVariablesType = /Variables\s*=\s*\{/.test(file.content);
+            if (hasContextSet && !hasHonoGeneric && !hasVariablesType) {
+                return [
+                    {
+                        line: null,
+                        message: 'c.set() is used without typed Variables. Define: type Variables = { ... } and use new Hono<{ Variables: Variables }>().',
+                    },
+                ];
+            }
+            return [];
+        },
+        applicableTo: ['hono'],
+        category: 'Type Safety',
+    },
+    // ── Environment Access ────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: hono-use-c-env
+    // ROLE: Enforce correct env access on edge runtimes
+    // PURPOSE: On Cloudflare Workers and similar runtimes, process.env is
+    //          unavailable. Environment bindings are accessed via c.env.
+    //          Even on Node.js, centralising env access via c.env makes
+    //          the app portable across runtimes.
+    // EXAMPLE:
+    //   WRONG:
+    //     const secret = process.env['JWT_SECRET'];
+    //   RIGHT:
+    //     // In Hono handler:
+    //     const secret = c.env.JWT_SECRET;
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-use-c-env',
+        label: 'Use c.env for environment variables (edge-compatible)',
+        description: 'Prefer c.env over process.env for environment variables. process.env is not available in Cloudflare Workers or Deno and makes apps runtime-specific.',
+        severity: 'warning',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            const violations = [];
+            if (!file.relativePath.includes('/routes/') &&
+                !file.relativePath.includes('/handlers/') &&
+                !file.relativePath.endsWith('.route.ts') &&
+                !file.relativePath.endsWith('.handler.ts') &&
+                !file.relativePath.endsWith('.middleware.ts')) {
+                return [];
+            }
+            for (let i = 0; i < file.lines.length; i++) {
+                if (/process\.env\b/.test(file.lines[i])) {
+                    violations.push({
+                        line: i + 1,
+                        message: 'process.env used in Hono handler/route. Use c.env.VARIABLE_NAME for edge-runtime portability.',
+                    });
+                }
+            }
+            return violations;
+        },
+        applicableTo: ['hono'],
+        category: 'Security',
+    },
+    // ── Route Organisation ────────────────────────────────────────────────────
+    // ─────────────────────────────────────────
+    // RULE: hono-use-sub-apps
+    // ROLE: Enforce composable route architecture
+    // PURPOSE: Defining all routes on a single root Hono instance leads to a
+    //          monolithic file. Sub-apps (separate Hono instances per domain)
+    //          composed via app.route() enable feature isolation and per-domain
+    //          middleware application.
+    // EXAMPLE:
+    //   WRONG:
+    //     app.get('/users', ...)
+    //     app.post('/users', ...)
+    //     app.get('/products', ...)   // all in one file
+    //   RIGHT:
+    //     // users.route.ts
+    //     const users = new Hono();
+    //     users.get('/', ...)
+    //     export default users;
+    //     // app.ts
+    //     app.route('/users', users);
+    // ─────────────────────────────────────────
+    {
+        id: 'hono-use-sub-apps',
+        label: 'Organise routes as Hono sub-apps using app.route()',
+        description: 'Define each domain\'s routes in a separate Hono sub-app and compose them via app.route("/prefix", subApp). Avoid putting all routes on a single root instance.',
+        severity: 'info',
+        fileExtensions: ['ts'],
+        pattern: null,
+        customCheck: (file) => {
+            if (!file.relativePath.endsWith('index.ts') && !file.relativePath.endsWith('app.ts')) {
+                return [];
+            }
+            const routeCount = (file.content.match(/app\.\s*(?:get|post|put|patch|delete)\s*\(/g) || []).length;
+            if (routeCount > 5) {
+                return [
+                    {
+                        line: null,
+                        message: `${routeCount} routes defined on a single Hono instance. Extract into domain sub-apps and use app.route('/prefix', subApp).`,
+                    },
+                ];
+            }
+            return [];
+        },
+        applicableTo: ['hono'],
+        category: 'Architecture',
+    },
+];
+exports.honoRules = honoRules;
+// Register all Hono-specific rules
+(0, guidelines_config_1.registerRules)('hono', honoRules);
+//# sourceMappingURL=hono.config.js.map

package/dist/config/hono.config.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"hono.config.js","sourceRoot":"","sources":["../../config/hono.config.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;AAEH,2DAA0D;AAE1D,MAAM,SAAS,GAAW;IAExB,6EAA6E;IAE7E,4CAA4C;IAC5C,+BAA+B;IAC/B,gDAAgD;IAChD,sEAAsE;IACtE,+EAA+E;IAC/E,6EAA6E;IAC7E,WAAW;IACX,WAAW;IACX,wCAAwC;IACxC,kEAAkE;IAClE,UAAU;IACV,WAAW;IACX,wDAAwD;IACxD,8EAA8E;IAC9E,kEAAkE;IAClE,UAAU;IACV,4CAA4C;IAC5C;QACE,EAAE,EAAE,wBAAwB;QAC5B,KAAK,EAAE,4CAA4C;QACnD,WAAW,EACT,6IAA6I;QAC/I,QAAQ,EAAE,OAAO;QACjB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,EACzC,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,yDAAyD;YACzD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC3B,IAAI,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACnC,2CAA2C;oBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;oBACpE,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;wBACrE,UAAU,CAAC,IAAI,CAAC;4BACd,IAAI,EAAE,CAAC,GAAG,CAAC;4BACX,OAAO,EACL,wIAAwI;yBAC3I,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,YAAY;KACvB;IAED,4CAA4C;IAC5C,gCAAgC;IAChC,uDAAuD;IACvD,mEAAmE;IACnE,8DAA8D;IAC9D,0EAA0E;IAC1E,WAAW;IACX,WAAW;IACX,mEAAmE;IACnE,2DAA2D;IAC3D,UAAU;IACV,WAAW;IACX,mEAAmE;IACnE,+DAA+D;IAC/D,UAAU;IACV,4CAA4C;IAC5C;QACE,EAAE,EAAE,yBAAyB;QAC7B,KAAK,EAAE,sDAAsD;QAC7D,WAAW,EACT,yJAAyJ;QAC3J,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;gBAAE,OAAO,EAAE,CAAC;YAEpD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,IAAI,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBAClD,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,CAAC,GAAG,CAAC;wBACX,OAAO,EACL,0HAA0H;qBAC7H,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,YAAY;KACvB;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,gCAAgC;IAChC,kDAAkD;IAClD,yEAAyE;IACzE,6EAA6E;IAC7E,wEAAwE;IACxE,gDAAgD;IAChD,WAAW;IACX,WAAW;IACX,yCAAyC;IACzC,WAAW;IACX,mEAAmE;IACnE,4CAA4C;IAC5C;QACE,EAAE,EAAE,yBAAyB;QAC7B,KAAK,EAAE,wCAAwC;QAC/C,WAAW,EACT,8JAA8J;QAChK,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC;gBACzC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,aAAa,CAAC,EAC1C,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,IAAI,0BAA0B,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACnD,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,CAAC,GAAG,CAAC;wBACX,OAAO,EACL,6FAA6F;qBAChG,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,gBAAgB;KAC3B;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,oCAAoC;IACpC,wCAAwC;IACxC,uEAAuE;IACvE,oEAAoE;IACpE,4CAA4C;IAC5C,WAAW;IACX,WAAW;IACX,mCAAmC;IACnC,+DAA+D;IAC/D,UAAU;IACV,WAAW;IACX,uCAAuC;IACvC,wDAAwD;IACxD,4DAA4D;IAC5D,4CAA4C;IAC5C;QACE,EAAE,EAAE,6BAA6B;QACjC,KAAK,EAAE,8CAA8C;QACrD,WAAW,EACT,6KAA6K;QAC/K,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,aAAa,GAAG,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvD,MAAM,cAAc,GAAG,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3D,MAAM,gBAAgB,GAAG,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEjE,IAAI,aAAa,IAAI,CAAC,cAAc,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC1D,OAAO;oBACL;wBACE,IAAI,EAAE,IAAI;wBACV,OAAO,EACL,yHAAyH;qBAC5H;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,aAAa;KACxB;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,uBAAuB;IACvB,oDAAoD;IACpD,sEAAsE;IACtE,qEAAqE;IACrE,oEAAoE;IACpE,6CAA6C;IAC7C,WAAW;IACX,WAAW;IACX,gDAAgD;IAChD,WAAW;IACX,0BAA0B;IAC1B,uCAAuC;IACvC,4CAA4C;IAC5C;QACE,EAAE,EAAE,gBAAgB;QACpB,KAAK,EAAE,uDAAuD;QAC9D,WAAW,EACT,sJAAsJ;QACxJ,QAAQ,EAAE,SAAS;QACnB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,MAAM,UAAU,GAAoD,EAAE,CAAC;YAEvE,IACE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACvC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC;gBACzC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACxC,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,aAAa,CAAC;gBAC1C,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAC7C,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACzC,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,CAAC,GAAG,CAAC;wBACX,OAAO,EACL,+FAA+F;qBAClG,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,UAAU;KACrB;IAED,6EAA6E;IAE7E,4CAA4C;IAC5C,0BAA0B;IAC1B,8CAA8C;IAC9C,yEAAyE;IACzE,0EAA0E;IAC1E,4EAA4E;IAC5E,mCAAmC;IACnC,WAAW;IACX,WAAW;IACX,6BAA6B;IAC7B,8BAA8B;IAC9B,qDAAqD;IACrD,WAAW;IACX,wBAAwB;IACxB,gCAAgC;IAChC,0BAA0B;IAC1B,4BAA4B;IAC5B,gBAAgB;IAChB,kCAAkC;IAClC,4CAA4C;IAC5C;QACE,EAAE,EAAE,mBAAmB;QACvB,KAAK,EAAE,oDAAoD;QAC3D,WAAW,EACT,gKAAgK;QAClK,QAAQ,EAAE,MAAM;QAChB,cAAc,EAAE,CAAC,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI;QACb,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE;YACpB,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACrF,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,UAAU,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,6CAA6C,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;YAEpG,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;gBACnB,OAAO;oBACL;wBACE,IAAI,EAAE,IAAI;wBACV,OAAO,EAAE,GAAG,UAAU,+GAA+G;qBACtI;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,YAAY,EAAE,CAAC,MAAM,CAAC;QACtB,QAAQ,EAAE,cAAc;KACzB;CACF,CAAC;AAKO,8BAAS;AAHlB,mCAAmC;AACnC,IAAA,iCAAa,EAAC,MAAM,EAAE,SAAS,CAAC,CAAC"}

package/dist/config/nestjs.config.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * ============================================================================
+ * nestjs.config.ts — NestJS-specific coding rules
+ * ============================================================================
+ *
+ * Registers rules that only apply to NestJS projects:
+ *   - Module / controller / service separation
+ *   - DTO validation enforcement
+ *   - Security patterns (no raw process.env, no eval)
+ *   - Error handling with HttpException
+ *   - Dependency injection correctness
+ *   - Async/await patterns
+ */
+import { Rule } from './guidelines.config';
+declare const nestjsRules: Rule[];
+export { nestjsRules };
+//# sourceMappingURL=nestjs.config.d.ts.map

package/dist/config/nestjs.config.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"nestjs.config.d.ts","sourceRoot":"","sources":["../../config/nestjs.config.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAiB,IAAI,EAAE,MAAM,qBAAqB,CAAC;AAE1D,QAAA,MAAM,WAAW,EAAE,IAAI,EA8dtB,CAAC;AAKF,OAAO,EAAE,WAAW,EAAE,CAAC"}