npm - @salesforce/afv-skills - Versions diffs - 1.10.0 → 1.12.0 - Mend

@salesforce/afv-skills 1.10.0 → 1.12.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

package/skills/running-code-analyzer/examples/command-variations.md ADDED Viewed

@@ -0,0 +1,333 @@
+# Common Command Variations
+Real-world command patterns with explanations. Use these as reference when building commands for specific scenarios.
+---
+## Basic Scans
+### 1. Scan Entire Workspace (Default)
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan my code" with no specifics.
+---
+### 2. Security-Focused Scan
+```bash
+sf code-analyzer run \
+  --rule-selector "all:Security:(1,2)" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "check for security issues", "find vulnerabilities", "AppExchange security review".
+**Selector breakdown:** `all` = all engines, `:Security` = Security category only, `:(1,2)` = Critical and High severity only.
+---
+### 3. Specific Engine
+```bash
+sf code-analyzer run \
+  --rule-selector "pmd" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "run PMD", "check my Apex code".
+---
+### 4. Multiple Engines
+```bash
+sf code-analyzer run \
+  --rule-selector "(pmd,eslint)" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan Apex and JavaScript", "run PMD and ESLint".
+**Selector breakdown:** Parentheses + comma = OR logic.
+---
+## Target-Specific Scans
+### 5. Scan Specific File
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --target "force-app/main/default/classes/AccountService.cls" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan AccountService.cls".
+---
+### 6. Scan Specific Folder
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --target "force-app/main/default/lwc" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan my LWC components", "check the lwc folder".
+---
+### 7. Scan Multiple Paths
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --target "force-app/main/default/classes,force-app/main/default/triggers" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan classes and triggers".
+**Note:** Comma-separated paths in a single `--target` value.
+---
+### 8. Scan Using Glob Pattern
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --target "**/*.cls,**/*.trigger" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan all Apex files", "check all classes and triggers".
+**Note:** Glob patterns must match from workspace root.
+---
+## Diff-Based Scans
+### 9. Scan Changed Files (Git Diff)
+**Step 1:** Get changed files
+```bash
+git diff --name-only main...HEAD
+```
+**Step 2:** Filter to scannable types (`.cls`, `.trigger`, `.js`, `.ts`, `.flow-meta.xml`, etc.)
+**Step 3:** Pass as `--target`
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --target "force-app/main/default/classes/AccountService.cls,force-app/main/default/lwc/accountCard/accountCard.js" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "scan my changes", "check what I modified", "analyze the diff".
+---
+## Advanced Scenarios
+### 10. Deep Analysis with SFGE (Data Flow)
+```bash
+sf code-analyzer run \
+  --rule-selector "sfge" \
+  --workspace "force-app" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "deep analysis", "data flow analysis", "path-based analysis", "find CRUD violations with certainty".
+**Note:** Requires Java 11+. May take 10-20 minutes. Use `--workspace` to avoid compiling template files.
+**Timeout:** Set to 1200000ms (20 minutes).
+---
+### 11. Find Code Duplicates (CPD)
+```bash
+sf code-analyzer run \
+  --rule-selector "cpd" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "find duplicates", "check for copy-paste", "detect code clones".
+---
+### 12. Check Vulnerable Libraries (RetireJS)
+```bash
+sf code-analyzer run \
+  --rule-selector "retire-js" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "check for vulnerable libraries", "scan dependencies", "find CVEs".
+---
+### 13. Analyze Flows
+```bash
+sf code-analyzer run \
+  --rule-selector "flow" \
+  --target "**/*.flow-meta.xml" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "analyze my Flows", "check Flow best practices".
+**Note:** Requires Python 3.
+---
+### 14. Performance Analysis (ApexGuru)
+```bash
+sf code-analyzer run \
+  --rule-selector "apexguru" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "performance analysis", "find slow code", "check governor limits".
+**Note:** Requires authenticated Salesforce org. See `references/special-behaviors.md` for auth setup.
+---
+## Output Format Variations
+### 15. HTML Report
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --output-file ./code-analyzer-results-20260519-101030.html \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User explicitly requests HTML format.
+**Note:** Extension determines format. JSON is default.
+---
+### 16. SARIF (GitHub/IDE Integration)
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --output-file ./code-analyzer-results-20260519-101030.sarif \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "SARIF format", "GitHub integration", "IDE integration".
+---
+### 17. CSV (Spreadsheet)
+```bash
+sf code-analyzer run \
+  --rule-selector Recommended \
+  --output-file ./code-analyzer-results-20260519-101030.csv \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "CSV format", "export to spreadsheet", "Excel format".
+---
+## Complex Rule Selectors
+### 18. Multiple Categories
+```bash
+sf code-analyzer run \
+  --rule-selector "all:(Security,Performance):(1,2,3)" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**Selector breakdown:** All engines, Security OR Performance categories, Severity 1-3 (Critical to Moderate).
+---
+### 19. Specific Rule by Name
+```bash
+sf code-analyzer run \
+  --rule-selector "pmd:ApexCRUDViolation" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**When:** User says "check for ApexCRUDViolation", "run the CRUD rule".
+**Note:** Must be exact full rule name. If uncertain, look up first: `sf code-analyzer rules --rule-selector all 2>&1 | grep -i "CRUD"`
+---
+### 20. Engine + Category + Severity
+```bash
+sf code-analyzer run \
+  --rule-selector "(pmd,eslint):Security:(1,2)" \
+  --output-file ./code-analyzer-results-20260519-101030.json \
+  --include-fixes \
+  2>&1 | tee ./code-analyzer-results-20260519-101030.log
+```
+**Selector breakdown:** (PMD OR ESLint) AND Security AND (Sev 1 OR Sev 2).
+---
+## Key Patterns
+| Pattern | Meaning | Example |
+|---------|---------|---------|
+| `:` | AND | `pmd:Security` = PMD **and** Security |
+| `,` | OR | `(pmd,eslint)` = PMD **or** ESLint |
+| `()` | Grouping | `(pmd,eslint):Security` = (PMD or ESLint) and Security |
+| `(1,2)` | Severity range | `:(1,2)` = Severity 1 or 2 |
+| `--target <path>` | Specific files/folders | Comma-separated in single arg |
+| `--workspace <path>` | Compilation scope (SFGE only) | Prevents compiling template files |
+| `.json`, `.html`, `.sarif`, `.csv`, `.xml` | Output format | Extension of `--output-file` |
+---
+## Anti-Patterns (DO NOT USE)
+### ❌ Using `--format` flag
+```bash
+# WRONG - v3 syntax, does not exist in v4+
+sf code-analyzer run --format json
+```
+**Why:** The `--format` flag was removed in v4+. Use `--output-file` with extension instead.
+---
+### ❌ Using `$TIMESTAMP` variable in command
+```bash
+# WRONG - variable substitution fails in permission prompts
+sf code-analyzer run --output-file "./results-${TIMESTAMP}.json"
+```
+**Why:** Generate timestamp first, then use literal string in command.
+---
+### ❌ Running in background for long scans
+```bash
+# WRONG - loses output stream
+sf code-analyzer run --rule-selector sfge &
+```
+**Why:** Use foreground with high timeout (1200000ms). Backgrounding loses the output.
+---
+### ❌ Partial rule names
+```bash
+# WRONG - returns 0 results
+sf code-analyzer run --rule-selector "no-hardcoded-values"
+```
+**Why:** Rule names must be exact. Look up first: `sf code-analyzer rules --rule-selector all | grep -i "hardcoded"`
+**Correct:** `--rule-selector "@salesforce-ux/slds/no-hardcoded-values-slds2"`

package/skills/running-code-analyzer/examples/fix-application-before-after.md ADDED Viewed

@@ -0,0 +1,142 @@
+# Fix Application: Before & After
+This example demonstrates engine-provided auto-fix behavior on a small codebase.
+## Initial Scan Results
+**Command:**
+```bash
+sf code-analyzer run --rule-selector Recommended --output-file ./results.json --include-fixes
+```
+**Summary:**
+- Total violations: 248
+- Fixable violations: 67 (27%)
+### Fixable Rules
+| Rule | Engine | Severity | Count |
+|------|--------|----------|-------|
+| no-var | eslint | 3 | 42 |
+| prefer-const | eslint | 3 | 18 |
+| @salesforce-ux/slds/no-hardcoded-values-slds2 | eslint | 4 | 5 |
+| no-extra-boolean-cast | eslint | 3 | 2 |
+---
+## Before Fix: Sample Violations
+### Violation 1: no-var
+**File:** `force-app/main/default/lwc/accountCard/accountCard.js:12`
+```javascript
+export default class AccountCard extends LightningElement {
+    handleClick() {
+        var accountId = this.recordId;  // ← violation
+        var data = this.fetchData(accountId);  // ← violation
+        this.processData(data);
+    }
+}
+```
+### Violation 2: prefer-const
+**File:** `force-app/main/default/lwc/utils/dataProcessor.js:8`
+```javascript
+export function processRecords(records) {
+    let result = [];  // ← violation (never reassigned)
+    records.forEach(r => result.push(transform(r)));
+    return result;
+}
+```
+### Violation 3: @salesforce-ux/slds/no-hardcoded-values-slds2
+**File:** `force-app/main/default/lwc/accountCard/accountCard.css:4`
+```css
+.account-card {
+    border-radius: 4px;  /* ← violation */
+    padding: 16px;  /* ← violation */
+}
+```
+---
+## Apply Fixes
+**Command:**
+```bash
+node <skill_dir>/scripts/apply-fixes.js ./results.json
+```
+**Output:**
+```json
+{
+  "success": true,
+  "filesModified": 15,
+  "fixesApplied": 67,
+  "fixesSkipped": 0
+}
+```
+---
+## After Fix: Corrected Code
+### Fix 1: no-var → let
+**File:** `force-app/main/default/lwc/accountCard/accountCard.js:12`
+```javascript
+export default class AccountCard extends LightningElement {
+    handleClick() {
+        let accountId = this.recordId;  // ✓ fixed
+        let data = this.fetchData(accountId);  // ✓ fixed
+        this.processData(data);
+    }
+}
+```
+### Fix 2: let → const
+**File:** `force-app/main/default/lwc/utils/dataProcessor.js:8`
+```javascript
+export function processRecords(records) {
+    const result = [];  // ✓ fixed
+    records.forEach(r => result.push(transform(r)));
+    return result;
+}
+```
+### Fix 3: Hardcoded values → SLDS tokens
+**File:** `force-app/main/default/lwc/accountCard/accountCard.css:4`
+```css
+.account-card {
+    border-radius: var(--slds-c-card-radius-border);  /* ✓ fixed */
+    padding: var(--slds-c-card-spacing-block);  /* ✓ fixed */
+}
+```
+---
+## Verification Scan
+**Command:**
+```bash
+sf code-analyzer run --rule-selector Recommended --output-file ./results-after.json --include-fixes
+```
+**Summary:**
+- Total violations: 181 (↓ 67 from 248)
+- Fixable violations: 0
+**Result:** All 67 fixable violations resolved. Remaining 181 violations require manual fixes (e.g., ApexDoc comments, CRUD checks).
+---
+## Key Takeaways
+1. **Engine-provided fixes are safe**: They're deterministic transformations, not AI-generated code.
+2. **Apply, then verify**: Always re-scan after applying fixes to confirm no regressions.
+3. **Not all violations are fixable**: Security issues like CRUD violations require manual code review.
+4. **Files modified count ≠ fixes count**: Multiple violations in one file count as one file modification.

package/skills/running-code-analyzer/examples/large-scan-output.json ADDED Viewed

@@ -0,0 +1,67 @@
+{
+  "metadata": {
+    "engine": "Recommended",
+    "executedAt": "2026-05-19T14:22:45.789Z",
+    "filesAnalyzed": 2818,
+    "violationCount": 69545
+  },
+  "violations": [
+    {
+      "rule": "@lwc/lwc/no-inner-html",
+      "engine": "eslint",
+      "severity": 2,
+      "message": "Disallow use of innerHTML",
+      "file": "StaticResourceSources/js/BDE_jqtablesorter.min.js",
+      "line": 3,
+      "column": 245,
+      "fix": null
+    },
+    {
+      "rule": "@salesforce-ux/slds/no-hardcoded-values-slds2",
+      "engine": "eslint",
+      "severity": 4,
+      "message": "Replace hardcoded value with SLDS design token",
+      "file": "StaticResourceSources/Bootstrap/css/bootstrap-s1.css",
+      "line": 156,
+      "column": 12,
+      "fix": {
+        "range": [4521, 4527],
+        "text": "var(--slds-c-button-radius-border)"
+      }
+    }
+  ],
+  "summary": {
+    "bySeverity": {
+      "1": 0,
+      "2": 6164,
+      "3": 24341,
+      "4": 30230,
+      "5": 8810
+    },
+    "byEngine": {
+      "eslint": 38542,
+      "pmd": 18234,
+      "regex": 12769
+    },
+    "topRules": [
+      {"rule": "@salesforce-ux/slds/no-hardcoded-values-slds2", "count": 18081},
+      {"rule": "no-var", "count": 9714},
+      {"rule": "NoTrailingWhitespace", "count": 8073},
+      {"rule": "ApexDoc", "count": 5533},
+      {"rule": "ApexUnitTestClassShouldHaveRunAs", "count": 3856},
+      {"rule": "NoMixedIndentation", "count": 3493},
+      {"rule": "AnnotationsNamingConventions", "count": 2418},
+      {"rule": "no-undef", "count": 1891},
+      {"rule": "AvoidOldSalesforceApiVersions", "count": 1336},
+      {"rule": "IfElseStmtsMustUseBraces", "count": 1112}
+    ],
+    "topFiles": [
+      {"file": "StaticResourceSources/Bootstrap/css/bootstrap-namespaced-s1.css", "count": 1354},
+      {"file": "force-app/main/default/staticresources/CumulusStaticResources/Bootstrap/css/bootstrap-namespaced-s1.css", "count": 1354},
+      {"file": "StaticResourceSources/Bootstrap/css/bootstrap-s1.css", "count": 1349},
+      {"file": "StaticResourceSources/Bootstrap/css/bootstrap-s1.min.css", "count": 1349},
+      {"file": "force-app/main/default/staticresources/CumulusStaticResources/Bootstrap/css/bootstrap-s1.css", "count": 1349}
+    ],
+    "fixableCount": 12298
+  }
+}

package/skills/running-code-analyzer/examples/security-focused-output.json ADDED Viewed

@@ -0,0 +1,95 @@
+{
+  "metadata": {
+    "engine": "all:Security:(1,2)",
+    "executedAt": "2026-05-19T16:45:12.456Z",
+    "filesAnalyzed": 156,
+    "violationCount": 43
+  },
+  "violations": [
+    {
+      "rule": "ApexCRUDViolation",
+      "engine": "pmd",
+      "severity": 2,
+      "message": "Validate CRUD permission before SOQL/DML operation",
+      "file": "force-app/main/default/classes/AccountService.cls",
+      "line": 42,
+      "column": 9,
+      "fix": null
+    },
+    {
+      "rule": "ApexSOQLInjection",
+      "engine": "pmd",
+      "severity": 1,
+      "message": "Avoid untrusted/unescaped variables in DML query",
+      "file": "force-app/main/default/classes/SearchController.cls",
+      "line": 18,
+      "column": 24,
+      "fix": null
+    },
+    {
+      "rule": "@lwc/lwc/no-inner-html",
+      "engine": "eslint",
+      "severity": 2,
+      "message": "Disallow use of innerHTML (XSS risk)",
+      "file": "force-app/main/default/lwc/riskComponent/riskComponent.js",
+      "line": 28,
+      "column": 9,
+      "fix": null
+    },
+    {
+      "rule": "ApexInsecureEndpoint",
+      "engine": "pmd",
+      "severity": 2,
+      "message": "Endpoint protocol should be https",
+      "file": "force-app/main/default/classes/ExternalApiClient.cls",
+      "line": 56,
+      "column": 20,
+      "fix": null
+    },
+    {
+      "rule": "ApexOpenRedirect",
+      "engine": "pmd",
+      "severity": 2,
+      "message": "Potential open redirect from user-controlled input",
+      "file": "force-app/main/default/classes/RedirectController.cls",
+      "line": 34,
+      "column": 16,
+      "fix": null
+    },
+    {
+      "rule": "ApexXSSFromEscapeFalse",
+      "engine": "pmd",
+      "severity": 2,
+      "message": "Avoid using escape=false in Visualforce pages",
+      "file": "force-app/main/default/pages/AccountDetail.page",
+      "line": 23,
+      "column": 45,
+      "fix": null
+    }
+  ],
+  "summary": {
+    "bySeverity": {
+      "1": 8,
+      "2": 35,
+      "3": 0,
+      "4": 0,
+      "5": 0
+    },
+    "byEngine": {
+      "pmd": 38,
+      "eslint": 5
+    },
+    "topRules": [
+      {"rule": "ApexCRUDViolation", "count": 18},
+      {"rule": "ApexInsecureEndpoint", "count": 9},
+      {"rule": "ApexSOQLInjection", "count": 8},
+      {"rule": "@lwc/lwc/no-inner-html", "count": 5},
+      {"rule": "ApexOpenRedirect", "count": 3}
+    ],
+    "topFiles": [
+      {"file": "force-app/main/default/classes/AccountService.cls", "count": 12},
+      {"file": "force-app/main/default/classes/SearchController.cls", "count": 8},
+      {"file": "force-app/main/default/classes/ExternalApiClient.cls", "count": 7}
+    ]
+  }
+}

package/skills/running-code-analyzer/references/command-examples.md ADDED Viewed

@@ -0,0 +1,27 @@
+# Command Construction Examples
+Full command examples for common scanning scenarios.
+**Note:** All commands use `${TIMESTAMP}` which should be generated via `TIMESTAMP=$(date +%Y%m%d-%H%M%S)` before running the scan.
+| User Request | Constructed Command |
+|---|---|
+| "Scan my code" | `sf code-analyzer run --rule-selector Recommended --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Check for security issues" | `sf code-analyzer run --rule-selector Security --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Run PMD on my Apex" | `sf code-analyzer run --rule-selector pmd --target "**/*.cls,**/*.trigger" --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Check only my changed files" | `git diff --name-only main...HEAD \| grep -E '...' → sf code-analyzer run --target <files> --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Find duplicate code" | `sf code-analyzer run --rule-selector cpd --output-file "./code-analyzer-results-${TIMESTAMP}.json"` |
+| "Check vulnerable libraries" | `sf code-analyzer run --rule-selector retire-js --output-file "./code-analyzer-results-${TIMESTAMP}.json"` |
+| "Run deep security analysis" | `sf code-analyzer run --rule-selector sfge --workspace "force-app" --target "force-app" --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Critical PMD violations in this file" | `sf code-analyzer run --rule-selector "pmd:1" --target <file> --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "ESLint performance on LWC" | `sf code-analyzer run --rule-selector "eslint:Performance" --target "**/lwc/**" --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "AppExchange security review" | `sf code-analyzer run --rule-selector all --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Generate HTML report" | `sf code-analyzer run --rule-selector Recommended --output-file "./code-analyzer-results-${TIMESTAMP}.html" --include-fixes` |
+| "Scan with severity threshold 2" | `sf code-analyzer run --rule-selector Recommended --severity-threshold 2 --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Run ApexCRUDViolation rule" | `sf code-analyzer run --rule-selector "pmd:ApexCRUDViolation" --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Scan my Flows" | `sf code-analyzer run --rule-selector flow --output-file "./code-analyzer-results-${TIMESTAMP}.json"` |
+| "Check ESLint recommended rules" | `sf code-analyzer run --rule-selector "eslint:Recommended" --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Scan all with fail on high" | `sf code-analyzer run --rule-selector all --severity-threshold 2 --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "What rules are available for security?" | `sf code-analyzer rules --rule-selector Security --view detail` |
+| "Scan this file for performance" | `sf code-analyzer run --rule-selector Performance --target <file> --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |
+| "Run all rules, no suppressions" | `sf code-analyzer run --rule-selector all --no-suppressions --output-file "./code-analyzer-results-${TIMESTAMP}.json" --include-fixes` |