npm - @ngxtm/devkit - Versions diffs - 3.4.0 → 3.4.1 - Mend

@ngxtm/devkit 3.4.0 → 3.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (343) hide show

package/package.json +2 -1
package/rules/README.md +141 -0
package/rules/dart/best-practices/SKILL.md +23 -0
package/rules/dart/language/SKILL.md +52 -0
package/rules/dart/tooling/SKILL.md +43 -0
package/rules/dotnet/aspnet-core/SKILL.md +92 -0
package/rules/dotnet/aspnet-core/references/REFERENCE.md +335 -0
package/rules/dotnet/best-practices/SKILL.md +101 -0
package/rules/dotnet/best-practices/references/REFERENCE.md +256 -0
package/rules/dotnet/blazor/SKILL.md +146 -0
package/rules/dotnet/blazor/references/REFERENCE.md +392 -0
package/rules/dotnet/language/SKILL.md +82 -0
package/rules/dotnet/language/references/REFERENCE.md +222 -0
package/rules/dotnet/patterns.rule.md +388 -0
package/rules/dotnet/razor-pages/SKILL.md +124 -0
package/rules/dotnet/razor-pages/references/REFERENCE.md +321 -0
package/rules/dotnet/security/SKILL.md +89 -0
package/rules/dotnet/security/references/REFERENCE.md +295 -0
package/rules/dotnet/tooling/SKILL.md +92 -0
package/rules/dotnet/tooling/references/REFERENCE.md +300 -0
package/rules/flutter/auto-route-navigation/SKILL.md +43 -0
package/rules/flutter/auto-route-navigation/references/REFERENCE.md +19 -0
package/rules/flutter/auto-route-navigation/references/router-config.md +62 -0
package/rules/flutter/bloc-state-management/SKILL.md +64 -0
package/rules/flutter/bloc-state-management/references/REFERENCE.md +20 -0
package/rules/flutter/bloc-state-management/references/auth-bloc-example.md +52 -0
package/rules/flutter/bloc-state-management/references/equatable-usage.md +56 -0
package/rules/flutter/bloc-state-management/references/property-based-state.md +68 -0
package/rules/flutter/bloc.rule.md +76 -0
package/rules/flutter/cicd/SKILL.md +48 -0
package/rules/flutter/cicd/references/advanced-workflow.md +66 -0
package/rules/flutter/cicd/references/fastlane.md +139 -0
package/rules/flutter/cicd/references/github-actions.md +59 -0
package/rules/flutter/dependency-injection/SKILL.md +42 -0
package/rules/flutter/dependency-injection/references/REFERENCE.md +15 -0
package/rules/flutter/dependency-injection/references/modules.md +37 -0
package/rules/flutter/error-handling/SKILL.md +32 -0
package/rules/flutter/error-handling/references/REFERENCE.md +19 -0
package/rules/flutter/error-handling/references/error-mapping.md +31 -0
package/rules/flutter/feature-based-clean-architecture/SKILL.md +46 -0
package/rules/flutter/feature-based-clean-architecture/references/REFERENCE.md +14 -0
package/rules/flutter/feature-based-clean-architecture/references/folder-structure.md +36 -0
package/rules/flutter/getx-navigation/SKILL.md +70 -0
package/rules/flutter/getx-navigation/references/app-pages.md +40 -0
package/rules/flutter/getx-navigation/references/middleware-example.md +29 -0
package/rules/flutter/getx-state-management/SKILL.md +76 -0
package/rules/flutter/getx-state-management/references/binding-example.md +32 -0
package/rules/flutter/getx-state-management/references/reactive-vs-simple.md +39 -0
package/rules/flutter/go-router-navigation/SKILL.md +57 -0
package/rules/flutter/idiomatic-flutter/SKILL.md +20 -0
package/rules/flutter/layer-based-clean-architecture/SKILL.md +50 -0
package/rules/flutter/layer-based-clean-architecture/references/REFERENCE.md +60 -0
package/rules/flutter/layer-based-clean-architecture/references/repository-mapping.md +50 -0
package/rules/flutter/localization/SKILL.md +50 -0
package/rules/flutter/localization/references/REFERENCE.md +48 -0
package/rules/flutter/localization/references/sheet-loader.md +33 -0
package/rules/flutter/navigator-v1-navigation/SKILL.md +71 -0
package/rules/flutter/navigator-v1-navigation/references/on-generate-route.md +48 -0
package/rules/flutter/performance/SKILL.md +24 -0
package/rules/flutter/retrofit-networking/SKILL.md +51 -0
package/rules/flutter/retrofit-networking/references/REFERENCE.md +19 -0
package/rules/flutter/retrofit-networking/references/token-refresh.md +40 -0
package/rules/flutter/riverpod-state-management/SKILL.md +53 -0
package/rules/flutter/riverpod-state-management/references/architecture.md +124 -0
package/rules/flutter/riverpod-state-management/references/best-practices.md +89 -0
package/rules/flutter/riverpod-state-management/references/testing.md +73 -0
package/rules/flutter/riverpod.rule.md +78 -0
package/rules/flutter/security/SKILL.md +33 -0
package/rules/flutter/security/references/REFERENCE.md +15 -0
package/rules/flutter/security/references/network-security.md +28 -0
package/rules/flutter/testing/SKILL.md +44 -0
package/rules/flutter/testing/references/REFERENCE.md +21 -0
package/rules/flutter/testing/references/bloc-testing.md +38 -0
package/rules/flutter/testing/references/integration-testing.md +128 -0
package/rules/flutter/testing/references/robot-pattern.md +82 -0
package/rules/flutter/testing/references/unit-testing.md +130 -0
package/rules/flutter/testing/references/widget-testing.md +120 -0
package/rules/flutter/widgets/SKILL.md +37 -0
package/rules/golang/chi-router/SKILL.md +219 -0
package/rules/golang/chi-router/references/REFERENCE.md +13 -0
package/rules/golang/chi-router/references/routing-patterns.md +205 -0
package/rules/golang/cobra-cli/SKILL.md +227 -0
package/rules/golang/cobra-cli/references/REFERENCE.md +13 -0
package/rules/golang/cobra-cli/references/command-patterns.md +224 -0
package/rules/golang/core/SKILL.md +210 -0
package/rules/golang/core/references/REFERENCE.md +14 -0
package/rules/golang/core/references/concurrency-patterns.md +114 -0
package/rules/golang/core/references/error-handling.md +87 -0
package/rules/golang/echo-framework/SKILL.md +215 -0
package/rules/golang/echo-framework/references/REFERENCE.md +14 -0
package/rules/golang/echo-framework/references/middleware-patterns.md +141 -0
package/rules/golang/echo-framework/references/routing-patterns.md +140 -0
package/rules/golang/ent-orm/SKILL.md +239 -0
package/rules/golang/ent-orm/references/REFERENCE.md +13 -0
package/rules/golang/ent-orm/references/schema-patterns.md +255 -0
package/rules/golang/fiber-framework/SKILL.md +196 -0
package/rules/golang/fiber-framework/references/REFERENCE.md +13 -0
package/rules/golang/fiber-framework/references/routing-patterns.md +191 -0
package/rules/golang/gin-framework/SKILL.md +205 -0
package/rules/golang/gin-framework/references/REFERENCE.md +14 -0
package/rules/golang/gin-framework/references/middleware-patterns.md +119 -0
package/rules/golang/gorm-orm/SKILL.md +196 -0
package/rules/golang/gorm-orm/references/REFERENCE.md +14 -0
package/rules/golang/gorm-orm/references/model-definitions.md +167 -0
package/rules/golang/gorm-orm/references/query-patterns.md +161 -0
package/rules/golang/grpc/SKILL.md +231 -0
package/rules/golang/grpc/references/REFERENCE.md +13 -0
package/rules/golang/grpc/references/service-patterns.md +276 -0
package/rules/golang/testify/SKILL.md +239 -0
package/rules/golang/testify/references/REFERENCE.md +13 -0
package/rules/golang/testify/references/assert-patterns.md +170 -0
package/rules/golang/validator/SKILL.md +234 -0
package/rules/golang/validator/references/REFERENCE.md +13 -0
package/rules/golang/validator/references/validation-tags.md +211 -0
package/rules/golang/viper-config/SKILL.md +244 -0
package/rules/golang/viper-config/references/REFERENCE.md +13 -0
package/rules/golang/viper-config/references/config-loading.md +181 -0
package/rules/golang/wire-di/SKILL.md +243 -0
package/rules/golang/wire-di/references/REFERENCE.md +13 -0
package/rules/golang/wire-di/references/provider-patterns.md +193 -0
package/rules/golang/zap-logging/SKILL.md +203 -0
package/rules/golang/zap-logging/references/REFERENCE.md +13 -0
package/rules/golang/zap-logging/references/logger-config.md +165 -0
package/rules/java/build-gradle/SKILL.md +92 -0
package/rules/java/build-gradle/references/REFERENCE.md +14 -0
package/rules/java/build-gradle/references/kotlin-dsl.md +118 -0
package/rules/java/build-gradle/references/task-configuration.md +132 -0
package/rules/java/build-maven/SKILL.md +86 -0
package/rules/java/build-maven/references/REFERENCE.md +14 -0
package/rules/java/build-maven/references/dependency-management.md +111 -0
package/rules/java/build-maven/references/lifecycle-phases.md +114 -0
package/rules/java/graalvm-native/SKILL.md +105 -0
package/rules/java/graalvm-native/references/REFERENCE.md +12 -0
package/rules/java/java-collections-streams/SKILL.md +148 -0
package/rules/java/java-collections-streams/references/REFERENCE.md +15 -0
package/rules/java/java-collections-streams/references/collectors-patterns.md +178 -0
package/rules/java/java-collections-streams/references/stream-pipelines.md +165 -0
package/rules/java/java-concurrency/SKILL.md +187 -0
package/rules/java/java-concurrency/references/REFERENCE.md +17 -0
package/rules/java/java-concurrency/references/completable-future.md +165 -0
package/rules/java/java-concurrency/references/executor-patterns.md +176 -0
package/rules/java/java-concurrency/references/virtual-threads.md +190 -0
package/rules/java/java-core-language/SKILL.md +121 -0
package/rules/java/java-core-language/references/REFERENCE.md +15 -0
package/rules/java/java-core-language/references/jvm-memory-model.md +160 -0
package/rules/java/java-core-language/references/modern-java-features.md +168 -0
package/rules/java/java-project-structure/SKILL.md +195 -0
package/rules/java/java-project-structure/references/REFERENCE.md +15 -0
package/rules/java/java-project-structure/references/maven-project-layout.md +199 -0
package/rules/java/java-project-structure/references/module-system.md +159 -0
package/rules/java/micronaut-core/SKILL.md +99 -0
package/rules/java/micronaut-core/references/REFERENCE.md +12 -0
package/rules/java/micronaut-reactive/SKILL.md +68 -0
package/rules/java/micronaut-reactive/references/REFERENCE.md +12 -0
package/rules/java/quarkus-core/SKILL.md +85 -0
package/rules/java/quarkus-core/references/REFERENCE.md +12 -0
package/rules/java/quarkus-reactive/SKILL.md +67 -0
package/rules/java/quarkus-reactive/references/REFERENCE.md +12 -0
package/rules/java/spring-batch/SKILL.md +102 -0
package/rules/java/spring-batch/references/REFERENCE.md +12 -0
package/rules/java/spring-boot-architecture/SKILL.md +206 -0
package/rules/java/spring-boot-architecture/references/REFERENCE.md +15 -0
package/rules/java/spring-boot-architecture/references/auto-configuration.md +158 -0
package/rules/java/spring-boot-architecture/references/configuration-properties.md +202 -0
package/rules/java/spring-boot-web/SKILL.md +217 -0
package/rules/java/spring-boot-web/references/REFERENCE.md +17 -0
package/rules/java/spring-cloud/SKILL.md +109 -0
package/rules/java/spring-cloud/references/REFERENCE.md +13 -0
package/rules/java/spring-data-jpa/SKILL.md +241 -0
package/rules/java/spring-data-jpa/references/REFERENCE.md +16 -0
package/rules/java/spring-security/SKILL.md +161 -0
package/rules/java/spring-security/references/REFERENCE.md +16 -0
package/rules/java/spring-security/references/jwt-auth-flow.md +213 -0
package/rules/java/testing-junit-mockito/SKILL.md +135 -0
package/rules/java/testing-junit-mockito/references/REFERENCE.md +15 -0
package/rules/java/testing-junit-mockito/references/junit5-patterns.md +159 -0
package/rules/java/testing-junit-mockito/references/mockito-patterns.md +148 -0
package/rules/java/testing-junit-mockito/references/spring-boot-testing.md +152 -0
package/rules/javascript/best-practices/SKILL.md +64 -0
package/rules/javascript/best-practices/references/REFERENCE.md +91 -0
package/rules/javascript/language/SKILL.md +71 -0
package/rules/javascript/language/references/REFERENCE.md +106 -0
package/rules/javascript/tooling/SKILL.md +60 -0
package/rules/javascript/tooling/references/REFERENCE.md +107 -0
package/rules/metadata.json +54 -0
package/rules/nestjs/api-standards/SKILL.md +47 -0
package/rules/nestjs/api-standards/references/pagination-wrapper.md +87 -0
package/rules/nestjs/architecture/SKILL.md +68 -0
package/rules/nestjs/architecture/references/dynamic-module.md +53 -0
package/rules/nestjs/caching/SKILL.md +51 -0
package/rules/nestjs/caching/references/REFERENCE.md +13 -0
package/rules/nestjs/caching/references/cache-patterns.md +183 -0
package/rules/nestjs/configuration/SKILL.md +41 -0
package/rules/nestjs/configuration/references/REFERENCE.md +13 -0
package/rules/nestjs/configuration/references/config-patterns.md +184 -0
package/rules/nestjs/controllers-services/SKILL.md +63 -0
package/rules/nestjs/controllers-services/references/REFERENCE.md +14 -0
package/rules/nestjs/controllers-services/references/controller-patterns.md +119 -0
package/rules/nestjs/controllers-services/references/service-patterns.md +129 -0
package/rules/nestjs/database/SKILL.md +102 -0
package/rules/nestjs/database/references/REFERENCE.md +14 -0
package/rules/nestjs/database/references/typeorm-patterns.md +156 -0
package/rules/nestjs/deployment/SKILL.md +36 -0
package/rules/nestjs/deployment/references/REFERENCE.md +13 -0
package/rules/nestjs/deployment/references/deployment-patterns.md +140 -0
package/rules/nestjs/documentation/SKILL.md +64 -0
package/rules/nestjs/documentation/references/REFERENCE.md +13 -0
package/rules/nestjs/documentation/references/swagger-patterns.md +139 -0
package/rules/nestjs/error-handling/SKILL.md +55 -0
package/rules/nestjs/error-handling/references/REFERENCE.md +13 -0
package/rules/nestjs/error-handling/references/exception-filters.md +152 -0
package/rules/nestjs/file-uploads/SKILL.md +35 -0
package/rules/nestjs/file-uploads/references/REFERENCE.md +13 -0
package/rules/nestjs/file-uploads/references/upload-patterns.md +125 -0
package/rules/nestjs/observability/SKILL.md +39 -0
package/rules/nestjs/observability/references/REFERENCE.md +13 -0
package/rules/nestjs/observability/references/logging-metrics.md +175 -0
package/rules/nestjs/performance/SKILL.md +60 -0
package/rules/nestjs/performance/references/REFERENCE.md +13 -0
package/rules/nestjs/performance/references/performance-patterns.md +107 -0
package/rules/nestjs/real-time/SKILL.md +45 -0
package/rules/nestjs/real-time/references/REFERENCE.md +13 -0
package/rules/nestjs/real-time/references/websocket-patterns.md +121 -0
package/rules/nestjs/scheduling/SKILL.md +39 -0
package/rules/nestjs/scheduling/references/REFERENCE.md +13 -0
package/rules/nestjs/scheduling/references/scheduling-patterns.md +137 -0
package/rules/nestjs/search/SKILL.md +41 -0
package/rules/nestjs/search/references/REFERENCE.md +13 -0
package/rules/nestjs/search/references/search-patterns.md +137 -0
package/rules/nestjs/security/SKILL.md +87 -0
package/rules/nestjs/security/references/REFERENCE.md +14 -0
package/rules/nestjs/security/references/authentication.md +151 -0
package/rules/nestjs/testing/SKILL.md +40 -0
package/rules/nestjs/testing/references/REFERENCE.md +14 -0
package/rules/nestjs/testing/references/unit-testing.md +179 -0
package/rules/nestjs/transport/SKILL.md +45 -0
package/rules/nestjs/transport/references/REFERENCE.md +13 -0
package/rules/nestjs/transport/references/microservices-patterns.md +170 -0
package/rules/nextjs/app-router/SKILL.md +46 -0
package/rules/nextjs/app-router/references/REFERENCE.md +14 -0
package/rules/nextjs/app-router/references/routing-patterns.md +182 -0
package/rules/nextjs/architecture/SKILL.md +44 -0
package/rules/nextjs/architecture/references/fsd-structure.md +77 -0
package/rules/nextjs/authentication/SKILL.md +29 -0
package/rules/nextjs/authentication/references/auth-implementation.md +73 -0
package/rules/nextjs/caching/SKILL.md +66 -0
package/rules/nextjs/caching/references/REFERENCE.md +13 -0
package/rules/nextjs/caching/references/cache-strategies.md +168 -0
package/rules/nextjs/data-access-layer/SKILL.md +33 -0
package/rules/nextjs/data-access-layer/references/patterns.md +66 -0
package/rules/nextjs/data-fetching/SKILL.md +59 -0
package/rules/nextjs/data-fetching/references/REFERENCE.md +13 -0
package/rules/nextjs/data-fetching/references/fetch-patterns.md +160 -0
package/rules/nextjs/internationalization/SKILL.md +105 -0
package/rules/nextjs/internationalization/references/REFERENCE.md +13 -0
package/rules/nextjs/internationalization/references/i18n-patterns.md +180 -0
package/rules/nextjs/optimization/SKILL.md +64 -0
package/rules/nextjs/optimization/references/REFERENCE.md +13 -0
package/rules/nextjs/optimization/references/optimization-patterns.md +190 -0
package/rules/nextjs/rendering/SKILL.md +91 -0
package/rules/nextjs/rendering/references/REFERENCE.md +13 -0
package/rules/nextjs/rendering/references/rendering-modes.md +163 -0
package/rules/nextjs/server-actions/SKILL.md +46 -0
package/rules/nextjs/server-actions/references/REFERENCE.md +13 -0
package/rules/nextjs/server-actions/references/action-patterns.md +188 -0
package/rules/nextjs/server-components/SKILL.md +52 -0
package/rules/nextjs/server-components/references/REFERENCE.md +13 -0
package/rules/nextjs/server-components/references/component-patterns.md +175 -0
package/rules/nextjs/state-management/SKILL.md +73 -0
package/rules/nextjs/state-management/references/REFERENCE.md +13 -0
package/rules/nextjs/state-management/references/state-patterns.md +218 -0
package/rules/nextjs/styling/SKILL.md +31 -0
package/rules/nextjs/styling/references/implementation.md +56 -0
package/rules/react/component-patterns/SKILL.md +66 -0
package/rules/react/component-patterns/references/REFERENCE.md +126 -0
package/rules/react/hooks/SKILL.md +60 -0
package/rules/react/hooks/references/REFERENCE.md +132 -0
package/rules/react/hooks.rule.md +79 -0
package/rules/react/performance/SKILL.md +69 -0
package/rules/react/performance/references/REFERENCE.md +143 -0
package/rules/react/security/SKILL.md +46 -0
package/rules/react/security/references/REFERENCE.md +170 -0
package/rules/react/state-management/SKILL.md +56 -0
package/rules/react/state-management/references/REFERENCE.md +137 -0
package/rules/react/testing/SKILL.md +45 -0
package/rules/react/testing/references/REFERENCE.md +149 -0
package/rules/react/tooling/SKILL.md +39 -0
package/rules/react/typescript/SKILL.md +53 -0
package/rules/rust/actix-web/SKILL.md +160 -0
package/rules/rust/actix-web/references/REFERENCE.md +13 -0
package/rules/rust/actix-web/references/handler-patterns.md +198 -0
package/rules/rust/async-graphql/SKILL.md +228 -0
package/rules/rust/async-graphql/references/REFERENCE.md +13 -0
package/rules/rust/async-graphql/references/schema-patterns.md +215 -0
package/rules/rust/axum/SKILL.md +161 -0
package/rules/rust/axum/references/REFERENCE.md +14 -0
package/rules/rust/axum/references/handler-patterns.md +97 -0
package/rules/rust/bevy/SKILL.md +206 -0
package/rules/rust/bevy/references/REFERENCE.md +13 -0
package/rules/rust/bevy/references/ecs-patterns.md +226 -0
package/rules/rust/clap/SKILL.md +217 -0
package/rules/rust/clap/references/REFERENCE.md +13 -0
package/rules/rust/clap/references/derive-patterns.md +205 -0
package/rules/rust/core/SKILL.md +154 -0
package/rules/rust/core/references/REFERENCE.md +14 -0
package/rules/rust/core/references/error-handling.md +92 -0
package/rules/rust/diesel-orm/SKILL.md +176 -0
package/rules/rust/diesel-orm/references/REFERENCE.md +13 -0
package/rules/rust/diesel-orm/references/schema-patterns.md +206 -0
package/rules/rust/rocket/SKILL.md +182 -0
package/rules/rust/rocket/references/REFERENCE.md +13 -0
package/rules/rust/rocket/references/handler-patterns.md +209 -0
package/rules/rust/sea-orm/SKILL.md +230 -0
package/rules/rust/sea-orm/references/REFERENCE.md +13 -0
package/rules/rust/sea-orm/references/entity-patterns.md +221 -0
package/rules/rust/serde-serialization/SKILL.md +150 -0
package/rules/rust/serde-serialization/references/REFERENCE.md +13 -0
package/rules/rust/serde-serialization/references/serialization-patterns.md +199 -0
package/rules/rust/sqlx-database/SKILL.md +140 -0
package/rules/rust/sqlx-database/references/REFERENCE.md +13 -0
package/rules/rust/sqlx-database/references/query-patterns.md +210 -0
package/rules/rust/tauri/SKILL.md +180 -0
package/rules/rust/tauri/references/REFERENCE.md +13 -0
package/rules/rust/tauri/references/command-patterns.md +209 -0
package/rules/rust/tokio-runtime/SKILL.md +167 -0
package/rules/rust/tokio-runtime/references/REFERENCE.md +14 -0
package/rules/rust/tokio-runtime/references/async-patterns.md +137 -0
package/rules/rust/tokio-runtime/references/synchronization.md +152 -0
package/rules/rust/tonic/SKILL.md +231 -0
package/rules/rust/tonic/references/REFERENCE.md +13 -0
package/rules/rust/tonic/references/service-patterns.md +213 -0
package/rules/rust/tracing/SKILL.md +214 -0
package/rules/rust/tracing/references/REFERENCE.md +13 -0
package/rules/rust/tracing/references/instrumentation.md +187 -0
package/rules/typescript/best-practices/SKILL.md +108 -0
package/rules/typescript/best-practices/references/REFERENCE.md +68 -0
package/rules/typescript/language/SKILL.md +72 -0
package/rules/typescript/language/references/REFERENCE.md +67 -0
package/rules/typescript/patterns.rule.md +85 -0
package/rules/typescript/security/SKILL.md +59 -0
package/rules/typescript/security/references/REFERENCE.md +113 -0
package/rules/typescript/tooling/SKILL.md +52 -0
package/rules/typescript/tooling/references/REFERENCE.md +110 -0

package/rules/dotnet/security/references/REFERENCE.md ADDED Viewed

@@ -0,0 +1,295 @@
+# .NET Security Reference
+Authentication, authorization, and security headers configuration.
+## References
+- [**JWT Authentication**](jwt-authentication.md) - Token generation and validation.
+- [**Identity Configuration**](identity-configuration.md) - Password rules, lockout settings.
+- [**Security Headers**](security-headers.md) - CSP, HSTS, X-Frame-Options.
+## JWT Token Generation
+```csharp
+public class TokenService(IOptions<JwtSettings> options)
+{
+    private readonly JwtSettings _settings = options.Value;
+    public string GenerateToken(User user)
+    {
+        var claims = new[]
+        {
+            new Claim(ClaimTypes.NameIdentifier, user.Id.ToString()),
+            new Claim(ClaimTypes.Email, user.Email),
+            new Claim(ClaimTypes.Role, user.Role),
+            new Claim("tenant_id", user.TenantId.ToString())
+        };
+        var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_settings.Key));
+        var credentials = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);
+        var token = new JwtSecurityToken(
+            issuer: _settings.Issuer,
+            audience: _settings.Audience,
+            claims: claims,
+            expires: DateTime.UtcNow.AddHours(_settings.ExpiryHours),
+            signingCredentials: credentials);
+        return new JwtSecurityTokenHandler().WriteToken(token);
+    }
+    public ClaimsPrincipal? ValidateToken(string token)
+    {
+        var handler = new JwtSecurityTokenHandler();
+        try
+        {
+            return handler.ValidateToken(token, new TokenValidationParameters
+            {
+                ValidateIssuer = true,
+                ValidateAudience = true,
+                ValidateLifetime = true,
+                ValidateIssuerSigningKey = true,
+                ValidIssuer = _settings.Issuer,
+                ValidAudience = _settings.Audience,
+                IssuerSigningKey = new SymmetricSecurityKey(
+                    Encoding.UTF8.GetBytes(_settings.Key)),
+                ClockSkew = TimeSpan.Zero
+            }, out _);
+        }
+        catch
+        {
+            return null;
+        }
+    }
+}
+```
+## ASP.NET Identity Configuration
+```csharp
+// Program.cs
+builder.Services.AddIdentity<ApplicationUser, IdentityRole>(options =>
+{
+    // Password requirements
+    options.Password.RequiredLength = 12;
+    options.Password.RequireDigit = true;
+    options.Password.RequireLowercase = true;
+    options.Password.RequireUppercase = true;
+    options.Password.RequireNonAlphanumeric = true;
+    options.Password.RequiredUniqueChars = 4;
+    // Lockout settings
+    options.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(15);
+    options.Lockout.MaxFailedAccessAttempts = 5;
+    options.Lockout.AllowedForNewUsers = true;
+    // User settings
+    options.User.RequireUniqueEmail = true;
+    options.SignIn.RequireConfirmedEmail = true;
+})
+.AddEntityFrameworkStores<AppDbContext>()
+.AddDefaultTokenProviders();
+// Password hasher upgrade (Argon2id recommended for new apps)
+builder.Services.Configure<PasswordHasherOptions>(options =>
+{
+    options.IterationCount = 310000; // OWASP recommendation
+});
+```
+## Security Headers Middleware
+```csharp
+// Using a middleware class
+public class SecurityHeadersMiddleware(RequestDelegate next)
+{
+    public async Task InvokeAsync(HttpContext context)
+    {
+        // Prevent clickjacking
+        context.Response.Headers.Append("X-Frame-Options", "DENY");
+        // Prevent MIME sniffing
+        context.Response.Headers.Append("X-Content-Type-Options", "nosniff");
+        // XSS protection (legacy, CSP is better)
+        context.Response.Headers.Append("X-XSS-Protection", "1; mode=block");
+        // Referrer policy
+        context.Response.Headers.Append("Referrer-Policy", "strict-origin-when-cross-origin");
+        // Content Security Policy
+        context.Response.Headers.Append("Content-Security-Policy",
+            "default-src 'self'; " +
+            "script-src 'self' 'unsafe-inline'; " +
+            "style-src 'self' 'unsafe-inline'; " +
+            "img-src 'self' data: https:; " +
+            "font-src 'self'; " +
+            "frame-ancestors 'none';");
+        // Permissions Policy
+        context.Response.Headers.Append("Permissions-Policy",
+            "geolocation=(), microphone=(), camera=()");
+        await next(context);
+    }
+}
+// Usage in Program.cs
+app.UseMiddleware<SecurityHeadersMiddleware>();
+app.UseHsts(); // Strict-Transport-Security
+```
+## CORS Configuration
+```csharp
+// Development (allow specific origins)
+builder.Services.AddCors(options =>
+{
+    options.AddPolicy("Development", policy =>
+    {
+        policy.WithOrigins("http://localhost:3000", "http://localhost:5173")
+              .AllowAnyHeader()
+              .AllowAnyMethod()
+              .AllowCredentials();
+    });
+    options.AddPolicy("Production", policy =>
+    {
+        policy.WithOrigins(
+                builder.Configuration.GetSection("Cors:AllowedOrigins").Get<string[]>()!)
+              .WithHeaders("Authorization", "Content-Type", "X-Requested-With")
+              .WithMethods("GET", "POST", "PUT", "DELETE")
+              .AllowCredentials()
+              .SetPreflightMaxAge(TimeSpan.FromMinutes(10));
+    });
+});
+// Usage
+app.UseCors(builder.Environment.IsDevelopment() ? "Development" : "Production");
+```
+## Resource-Based Authorization
+```csharp
+// Requirement
+public class ResourceOwnerRequirement : IAuthorizationRequirement { }
+// Handler
+public class ResourceOwnerHandler : AuthorizationHandler<ResourceOwnerRequirement, Order>
+{
+    protected override Task HandleRequirementAsync(
+        AuthorizationHandlerContext context,
+        ResourceOwnerRequirement requirement,
+        Order resource)
+    {
+        var userId = context.User.FindFirstValue(ClaimTypes.NameIdentifier);
+        if (resource.UserId.ToString() == userId ||
+            context.User.IsInRole("Admin"))
+        {
+            context.Succeed(requirement);
+        }
+        return Task.CompletedTask;
+    }
+}
+// Registration
+builder.Services.AddScoped<IAuthorizationHandler, ResourceOwnerHandler>();
+// Usage in controller
+public async Task<IActionResult> UpdateOrder(int id, UpdateOrderDto dto)
+{
+    var order = await _orderService.GetByIdAsync(id);
+    if (order is null) return NotFound();
+    var authResult = await _authService.AuthorizeAsync(
+        User, order, new ResourceOwnerRequirement());
+    if (!authResult.Succeeded) return Forbid();
+    await _orderService.UpdateAsync(order, dto);
+    return NoContent();
+}
+```
+## Rate Limiting (.NET 7+)
+```csharp
+builder.Services.AddRateLimiter(options =>
+{
+    // Fixed window: 100 requests per minute
+    options.AddFixedWindowLimiter("fixed", cfg =>
+    {
+        cfg.Window = TimeSpan.FromMinutes(1);
+        cfg.PermitLimit = 100;
+        cfg.QueueLimit = 10;
+        cfg.QueueProcessingOrder = QueueProcessingOrder.OldestFirst;
+    });
+    // Sliding window: smoother rate limiting
+    options.AddSlidingWindowLimiter("sliding", cfg =>
+    {
+        cfg.Window = TimeSpan.FromMinutes(1);
+        cfg.PermitLimit = 100;
+        cfg.SegmentsPerWindow = 6; // 10-second segments
+    });
+    // Token bucket: burst allowance
+    options.AddTokenBucketLimiter("token", cfg =>
+    {
+        cfg.TokenLimit = 100;
+        cfg.ReplenishmentPeriod = TimeSpan.FromSeconds(10);
+        cfg.TokensPerPeriod = 20;
+    });
+    // Per-user limiting
+    options.AddPolicy("per-user", context =>
+        RateLimitPartition.GetFixedWindowLimiter(
+            context.User.Identity?.Name ?? context.Connection.RemoteIpAddress?.ToString() ?? "anonymous",
+            _ => new FixedWindowRateLimiterOptions
+            {
+                Window = TimeSpan.FromMinutes(1),
+                PermitLimit = 50
+            }));
+    options.OnRejected = async (context, token) =>
+    {
+        context.HttpContext.Response.StatusCode = StatusCodes.Status429TooManyRequests;
+        await context.HttpContext.Response.WriteAsJsonAsync(new
+        {
+            error = "Too many requests. Please try again later."
+        }, token);
+    };
+});
+// Usage
+app.UseRateLimiter();
+app.MapGet("/api/data", () => "Hello")
+   .RequireRateLimiting("fixed");
+```
+## Secrets Management
+```csharp
+// Development: User Secrets
+// dotnet user-secrets init
+// dotnet user-secrets set "Database:Password" "secret123"
+// Production: Azure Key Vault
+builder.Configuration.AddAzureKeyVault(
+    new Uri($"https://{builder.Configuration["KeyVault:Name"]}.vault.azure.net/"),
+    new DefaultAzureCredential());
+// Environment variables (Docker/K8s)
+builder.Configuration.AddEnvironmentVariables(prefix: "APP_");
+// Never do this:
+// ❌ var password = "hardcoded_password";
+// ❌ var connString = "Server=...;Password=secret;";
+// Always do this:
+// ✅ var password = builder.Configuration["Database:Password"];
+// ✅ var connString = builder.Configuration.GetConnectionString("Default");
+```

package/rules/dotnet/tooling/SKILL.md ADDED Viewed

@@ -0,0 +1,92 @@
+---
+name: .NET Tooling
+description: Essential tooling for .NET development and CI/CD.
+metadata:
+  labels: [dotnet, tooling, testing, build, nuget]
+  triggers:
+    files: ['**/*.csproj', '**/*.sln', '.editorconfig', 'Directory.Build.props']
+    keywords: [PackageReference, dotnet, test, build, publish]
+---
+# .NET Tooling
+## **Priority: P1 (OPERATIONAL)**
+Essential tooling for .NET development, testing, and CI/CD.
+## Implementation Guidelines
+- **Project Files**: SDK-style `.csproj`. Use `Directory.Build.props` for shared settings.
+- **Central Package Management**: `Directory.Packages.props` for version consistency.
+- **Testing**: xUnit or NUnit. FluentAssertions for readable assertions. Moq for mocking.
+- **Code Analysis**: Enable built-in analyzers. Consider StyleCop, SonarQube.
+- **Build**: `dotnet build`, `dotnet publish`. Use Release config for production.
+- **EditorConfig**: Consistent code style across team.
+- **CI/CD**: GitHub Actions, Azure DevOps, or GitLab CI.
+## Anti-Patterns
+- **No `packages.config`**: Migrate to `PackageReference`.
+- **No skipping tests in CI**: Tests must pass before merge.
+- **No ignoring warnings**: Fix or suppress with documented justification.
+- **No floating versions**: Pin versions (`8.0.0`, not `8.*`).
+## Code
+```xml
+<!-- Directory.Build.props (shared across all projects) -->
+<Project>
+  <PropertyGroup>
+    <TargetFramework>net8.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <TreatWarningsAsErrors>true</TreatWarningsAsErrors>
+    <AnalysisLevel>latest-recommended</AnalysisLevel>
+  </PropertyGroup>
+</Project>
+<!-- Directory.Packages.props (Central Package Management) -->
+<Project>
+  <PropertyGroup>
+    <ManagePackageVersionsCentrally>true</ManagePackageVersionsCentrally>
+  </PropertyGroup>
+  <ItemGroup>
+    <PackageVersion Include="Microsoft.EntityFrameworkCore" Version="8.0.0" />
+    <PackageVersion Include="FluentValidation" Version="11.9.0" />
+    <PackageVersion Include="xunit" Version="2.6.6" />
+  </ItemGroup>
+</Project>
+```
+```csharp
+// xUnit test with FluentAssertions
+public class UserServiceTests
+{
+    [Fact]
+    public async Task GetUser_WithValidId_ReturnsUser()
+    {
+        // Arrange
+        var mockRepo = new Mock<IUserRepository>();
+        mockRepo.Setup(r => r.GetByIdAsync(1, default))
+            .ReturnsAsync(new User { Id = 1, Name = "Test" });
+        var sut = new UserService(mockRepo.Object);
+        // Act
+        var result = await sut.GetUserAsync(1);
+        // Assert
+        result.Should().NotBeNull();
+        result!.Name.Should().Be("Test");
+        mockRepo.Verify(r => r.GetByIdAsync(1, default), Times.Once);
+    }
+}
+```
+## Reference & Examples
+For CI/CD configuration and Docker setup:
+See [references/REFERENCE.md](references/REFERENCE.md).
+## Related Topics
+language | best-practices | security

package/rules/dotnet/tooling/references/REFERENCE.md ADDED Viewed

@@ -0,0 +1,300 @@
+# .NET Tooling Reference
+Testing, CI/CD, and build configuration patterns.
+## References
+- [**Testing Setup**](testing-setup.md) - xUnit, NUnit, integration tests.
+- [**CI/CD**](ci-cd.md) - GitHub Actions, Azure DevOps pipelines.
+- [**Docker**](docker.md) - Multi-stage builds for .NET.
+## Project File (.csproj) Reference
+```xml
+<Project Sdk="Microsoft.NET.Sdk.Web">
+  <PropertyGroup>
+    <TargetFramework>net8.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <!-- Code analysis -->
+    <AnalysisLevel>latest-recommended</AnalysisLevel>
+    <TreatWarningsAsErrors>true</TreatWarningsAsErrors>
+    <EnforceCodeStyleInBuild>true</EnforceCodeStyleInBuild>
+    <!-- Assembly info -->
+    <Version>1.0.0</Version>
+    <Authors>Your Name</Authors>
+    <!-- Build optimization -->
+    <PublishTrimmed>true</PublishTrimmed>
+    <PublishSingleFile>true</PublishSingleFile>
+    <SelfContained>true</SelfContained>
+  </PropertyGroup>
+  <ItemGroup>
+    <!-- Package references (versions from Directory.Packages.props) -->
+    <PackageReference Include="Microsoft.EntityFrameworkCore.SqlServer" />
+    <PackageReference Include="Serilog.AspNetCore" />
+  </ItemGroup>
+  <ItemGroup>
+    <!-- Project references -->
+    <ProjectReference Include="..\Domain\Domain.csproj" />
+    <ProjectReference Include="..\Infrastructure\Infrastructure.csproj" />
+  </ItemGroup>
+</Project>
+```
+## GitHub Actions CI/CD
+```yaml
+# .github/workflows/ci.yml
+name: CI/CD
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main]
+env:
+  DOTNET_VERSION: '8.0.x'
+jobs:
+  build-and-test:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Setup .NET
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: ${{ env.DOTNET_VERSION }}
+      - name: Restore dependencies
+        run: dotnet restore
+      - name: Build
+        run: dotnet build --no-restore --configuration Release
+      - name: Test
+        run: dotnet test --no-build --configuration Release --collect:"XPlat Code Coverage" --results-directory ./coverage
+      - name: Upload coverage
+        uses: codecov/codecov-action@v3
+        with:
+          directory: ./coverage
+          fail_ci_if_error: true
+  publish:
+    needs: build-and-test
+    if: github.ref == 'refs/heads/main'
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Setup .NET
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: ${{ env.DOTNET_VERSION }}
+      - name: Publish
+        run: dotnet publish src/WebApi/WebApi.csproj -c Release -o ./publish
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          push: true
+          tags: ghcr.io/${{ github.repository }}:latest
+```
+## Docker Multi-Stage Build
+```dockerfile
+# Dockerfile
+FROM mcr.microsoft.com/dotnet/sdk:8.0 AS build
+WORKDIR /src
+# Copy csproj files and restore
+COPY ["src/WebApi/WebApi.csproj", "src/WebApi/"]
+COPY ["src/Domain/Domain.csproj", "src/Domain/"]
+COPY ["src/Infrastructure/Infrastructure.csproj", "src/Infrastructure/"]
+COPY ["Directory.Build.props", "./"]
+COPY ["Directory.Packages.props", "./"]
+RUN dotnet restore "src/WebApi/WebApi.csproj"
+# Copy everything and build
+COPY . .
+RUN dotnet publish "src/WebApi/WebApi.csproj" -c Release -o /app/publish --no-restore
+# Runtime image
+FROM mcr.microsoft.com/dotnet/aspnet:8.0 AS runtime
+WORKDIR /app
+# Create non-root user
+RUN adduser --disabled-password --gecos "" appuser
+USER appuser
+COPY --from=build /app/publish .
+ENV ASPNETCORE_URLS=http://+:8080
+EXPOSE 8080
+ENTRYPOINT ["dotnet", "WebApi.dll"]
+```
+## Integration Testing with WebApplicationFactory
+```csharp
+// CustomWebApplicationFactory.cs
+public class CustomWebApplicationFactory<TProgram> : WebApplicationFactory<TProgram>
+    where TProgram : class
+{
+    protected override void ConfigureWebHost(IWebHostBuilder builder)
+    {
+        builder.ConfigureServices(services =>
+        {
+            // Replace real database with in-memory
+            var descriptor = services.SingleOrDefault(
+                d => d.ServiceType == typeof(DbContextOptions<AppDbContext>));
+            if (descriptor != null)
+                services.Remove(descriptor);
+            services.AddDbContext<AppDbContext>(options =>
+                options.UseInMemoryDatabase("TestDb"));
+            // Replace external services with fakes
+            services.AddScoped<IEmailService, FakeEmailService>();
+        });
+        builder.UseEnvironment("Testing");
+    }
+}
+// Integration tests
+public class UsersApiTests : IClassFixture<CustomWebApplicationFactory<Program>>
+{
+    private readonly HttpClient _client;
+    private readonly CustomWebApplicationFactory<Program> _factory;
+    public UsersApiTests(CustomWebApplicationFactory<Program> factory)
+    {
+        _factory = factory;
+        _client = factory.CreateClient();
+    }
+    [Fact]
+    public async Task GetUsers_ReturnsSuccessAndUsers()
+    {
+        // Arrange - seed data
+        using var scope = _factory.Services.CreateScope();
+        var db = scope.ServiceProvider.GetRequiredService<AppDbContext>();
+        db.Users.Add(new User { Name = "Test User", Email = "test@example.com" });
+        await db.SaveChangesAsync();
+        // Act
+        var response = await _client.GetAsync("/api/users");
+        // Assert
+        response.StatusCode.Should().Be(HttpStatusCode.OK);
+        var users = await response.Content.ReadFromJsonAsync<List<UserDto>>();
+        users.Should().ContainSingle(u => u.Email == "test@example.com");
+    }
+    [Fact]
+    public async Task CreateUser_WithValidData_ReturnsCreated()
+    {
+        // Arrange
+        var newUser = new CreateUserDto { Name = "New User", Email = "new@example.com" };
+        // Act
+        var response = await _client.PostAsJsonAsync("/api/users", newUser);
+        // Assert
+        response.StatusCode.Should().Be(HttpStatusCode.Created);
+        response.Headers.Location.Should().NotBeNull();
+    }
+}
+```
+## EditorConfig
+```ini
+# .editorconfig
+root = true
+[*]
+indent_style = space
+indent_size = 4
+end_of_line = lf
+charset = utf-8
+trim_trailing_whitespace = true
+insert_final_newline = true
+[*.cs]
+# Naming conventions
+dotnet_naming_rule.private_fields_should_be_camel_case.severity = error
+dotnet_naming_rule.private_fields_should_be_camel_case.symbols = private_fields
+dotnet_naming_rule.private_fields_should_be_camel_case.style = camel_case_underscore
+dotnet_naming_symbols.private_fields.applicable_kinds = field
+dotnet_naming_symbols.private_fields.applicable_accessibilities = private
+dotnet_naming_style.camel_case_underscore.required_prefix = _
+dotnet_naming_style.camel_case_underscore.capitalization = camel_case
+# Code style
+csharp_style_var_for_built_in_types = false:suggestion
+csharp_style_var_when_type_is_apparent = true:suggestion
+csharp_style_expression_bodied_methods = when_on_single_line:suggestion
+csharp_prefer_braces = true:warning
+# Formatting
+csharp_new_line_before_open_brace = all
+csharp_new_line_before_else = true
+csharp_new_line_before_catch = true
+csharp_new_line_before_finally = true
+[*.{json,yml,yaml}]
+indent_size = 2
+```
+## Benchmark.NET Setup
+```csharp
+// Install: dotnet add package BenchmarkDotNet
+[MemoryDiagnoser]
+[SimpleJob(RuntimeMoniker.Net80)]
+public class StringConcatBenchmarks
+{
+    private readonly string[] _strings = Enumerable.Range(0, 100)
+        .Select(i => $"String{i}").ToArray();
+    [Benchmark(Baseline = true)]
+    public string ConcatWithPlus()
+    {
+        string result = "";
+        foreach (var s in _strings)
+            result += s;
+        return result;
+    }
+    [Benchmark]
+    public string ConcatWithStringBuilder()
+    {
+        var sb = new StringBuilder();
+        foreach (var s in _strings)
+            sb.Append(s);
+        return sb.ToString();
+    }
+    [Benchmark]
+    public string ConcatWithJoin() => string.Join("", _strings);
+}
+// Run: dotnet run -c Release
+```