npm - @sentry/warden - Versions diffs - 0.0.0 - Mend

@sentry/warden 0.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (199) hide show

package/.agents/skills/find-bugs/SKILL.md +75 -0
package/.agents/skills/vercel-react-best-practices/AGENTS.md +2934 -0
package/.agents/skills/vercel-react-best-practices/SKILL.md +136 -0
package/.agents/skills/vercel-react-best-practices/rules/advanced-event-handler-refs.md +55 -0
package/.agents/skills/vercel-react-best-practices/rules/advanced-init-once.md +42 -0
package/.agents/skills/vercel-react-best-practices/rules/advanced-use-latest.md +39 -0
package/.agents/skills/vercel-react-best-practices/rules/async-api-routes.md +38 -0
package/.agents/skills/vercel-react-best-practices/rules/async-defer-await.md +80 -0
package/.agents/skills/vercel-react-best-practices/rules/async-dependencies.md +51 -0
package/.agents/skills/vercel-react-best-practices/rules/async-parallel.md +28 -0
package/.agents/skills/vercel-react-best-practices/rules/async-suspense-boundaries.md +99 -0
package/.agents/skills/vercel-react-best-practices/rules/bundle-barrel-imports.md +59 -0
package/.agents/skills/vercel-react-best-practices/rules/bundle-conditional.md +31 -0
package/.agents/skills/vercel-react-best-practices/rules/bundle-defer-third-party.md +49 -0
package/.agents/skills/vercel-react-best-practices/rules/bundle-dynamic-imports.md +35 -0
package/.agents/skills/vercel-react-best-practices/rules/bundle-preload.md +50 -0
package/.agents/skills/vercel-react-best-practices/rules/client-event-listeners.md +74 -0
package/.agents/skills/vercel-react-best-practices/rules/client-localstorage-schema.md +71 -0
package/.agents/skills/vercel-react-best-practices/rules/client-passive-event-listeners.md +48 -0
package/.agents/skills/vercel-react-best-practices/rules/client-swr-dedup.md +56 -0
package/.agents/skills/vercel-react-best-practices/rules/js-batch-dom-css.md +107 -0
package/.agents/skills/vercel-react-best-practices/rules/js-cache-function-results.md +80 -0
package/.agents/skills/vercel-react-best-practices/rules/js-cache-property-access.md +28 -0
package/.agents/skills/vercel-react-best-practices/rules/js-cache-storage.md +70 -0
package/.agents/skills/vercel-react-best-practices/rules/js-combine-iterations.md +32 -0
package/.agents/skills/vercel-react-best-practices/rules/js-early-exit.md +50 -0
package/.agents/skills/vercel-react-best-practices/rules/js-hoist-regexp.md +45 -0
package/.agents/skills/vercel-react-best-practices/rules/js-index-maps.md +37 -0
package/.agents/skills/vercel-react-best-practices/rules/js-length-check-first.md +49 -0
package/.agents/skills/vercel-react-best-practices/rules/js-min-max-loop.md +82 -0
package/.agents/skills/vercel-react-best-practices/rules/js-set-map-lookups.md +24 -0
package/.agents/skills/vercel-react-best-practices/rules/js-tosorted-immutable.md +57 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-activity.md +26 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-animate-svg-wrapper.md +47 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-conditional-render.md +40 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-content-visibility.md +38 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-hoist-jsx.md +46 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-hydration-no-flicker.md +82 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-hydration-suppress-warning.md +30 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-svg-precision.md +28 -0
package/.agents/skills/vercel-react-best-practices/rules/rendering-usetransition-loading.md +75 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-defer-reads.md +39 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-dependencies.md +45 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-derived-state-no-effect.md +40 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-derived-state.md +29 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-functional-setstate.md +74 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-lazy-state-init.md +58 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-memo-with-default-value.md +38 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-memo.md +44 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-move-effect-to-event.md +45 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-simple-expression-in-memo.md +35 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-transitions.md +40 -0
package/.agents/skills/vercel-react-best-practices/rules/rerender-use-ref-transient-values.md +73 -0
package/.agents/skills/vercel-react-best-practices/rules/server-after-nonblocking.md +73 -0
package/.agents/skills/vercel-react-best-practices/rules/server-auth-actions.md +96 -0
package/.agents/skills/vercel-react-best-practices/rules/server-cache-lru.md +41 -0
package/.agents/skills/vercel-react-best-practices/rules/server-cache-react.md +76 -0
package/.agents/skills/vercel-react-best-practices/rules/server-dedup-props.md +65 -0
package/.agents/skills/vercel-react-best-practices/rules/server-parallel-fetching.md +83 -0
package/.agents/skills/vercel-react-best-practices/rules/server-serialization.md +38 -0
package/.claude/settings.json +57 -0
package/.claude/settings.local.json +88 -0
package/.claude/skills/agent-prompt/SKILL.md +54 -0
package/.claude/skills/agent-prompt/references/agentic-patterns.md +94 -0
package/.claude/skills/agent-prompt/references/anti-patterns.md +140 -0
package/.claude/skills/agent-prompt/references/context-design.md +124 -0
package/.claude/skills/agent-prompt/references/core-principles.md +75 -0
package/.claude/skills/agent-prompt/references/model-guidance.md +118 -0
package/.claude/skills/agent-prompt/references/output-formats.md +98 -0
package/.claude/skills/agent-prompt/references/skill-structure.md +115 -0
package/.claude/skills/agent-prompt/references/system-prompts.md +115 -0
package/.claude/skills/notseer/SKILL.md +131 -0
package/.claude/skills/skill-writer/SKILL.md +140 -0
package/.claude/skills/testing-guidelines/SKILL.md +132 -0
package/.claude/skills/warden-skill/SKILL.md +250 -0
package/.claude/skills/warden-skill/references/config-schema.md +133 -0
package/.dex/config.toml +2 -0
package/.github/workflows/ci.yml +33 -0
package/.github/workflows/release.yml +54 -0
package/.github/workflows/warden.yml +40 -0
package/AGENTS.md +89 -0
package/CONTRIBUTING.md +60 -0
package/LICENSE +105 -0
package/README.md +43 -0
package/SPEC.md +263 -0
package/action.yml +87 -0
package/assets/favicon.png +0 -0
package/assets/warden-icon-bw.svg +5 -0
package/assets/warden-icon-purple.png +0 -0
package/assets/warden-icon-purple.svg +5 -0
package/docs/.claude/settings.local.json +11 -0
package/docs/astro.config.mjs +43 -0
package/docs/package.json +19 -0
package/docs/pnpm-lock.yaml +4000 -0
package/docs/public/favicon.svg +5 -0
package/docs/src/components/Code.astro +141 -0
package/docs/src/components/PackageManagerTabs.astro +183 -0
package/docs/src/components/Terminal.astro +212 -0
package/docs/src/layouts/Base.astro +380 -0
package/docs/src/pages/cli.astro +167 -0
package/docs/src/pages/config.astro +394 -0
package/docs/src/pages/guide.astro +449 -0
package/docs/src/pages/index.astro +490 -0
package/docs/src/styles/global.css +551 -0
package/docs/tsconfig.json +3 -0
package/docs/vercel.json +5 -0
package/eslint.config.js +33 -0
package/package.json +73 -0
package/src/action/index.ts +1 -0
package/src/action/main.ts +868 -0
package/src/cli/args.test.ts +477 -0
package/src/cli/args.ts +415 -0
package/src/cli/commands/add.ts +447 -0
package/src/cli/commands/init.test.ts +136 -0
package/src/cli/commands/init.ts +132 -0
package/src/cli/commands/setup-app/browser.ts +38 -0
package/src/cli/commands/setup-app/credentials.ts +45 -0
package/src/cli/commands/setup-app/manifest.ts +48 -0
package/src/cli/commands/setup-app/server.ts +172 -0
package/src/cli/commands/setup-app.ts +156 -0
package/src/cli/commands/sync.ts +114 -0
package/src/cli/context.ts +131 -0
package/src/cli/files.test.ts +155 -0
package/src/cli/files.ts +89 -0
package/src/cli/fix.test.ts +310 -0
package/src/cli/fix.ts +387 -0
package/src/cli/git.test.ts +119 -0
package/src/cli/git.ts +318 -0
package/src/cli/index.ts +14 -0
package/src/cli/main.ts +672 -0
package/src/cli/output/box.ts +235 -0
package/src/cli/output/formatters.test.ts +187 -0
package/src/cli/output/formatters.ts +269 -0
package/src/cli/output/icons.ts +13 -0
package/src/cli/output/index.ts +44 -0
package/src/cli/output/ink-runner.tsx +337 -0
package/src/cli/output/jsonl.test.ts +347 -0
package/src/cli/output/jsonl.ts +126 -0
package/src/cli/output/reporter.ts +435 -0
package/src/cli/output/tasks.ts +374 -0
package/src/cli/output/tty.test.ts +117 -0
package/src/cli/output/tty.ts +60 -0
package/src/cli/output/verbosity.test.ts +40 -0
package/src/cli/output/verbosity.ts +31 -0
package/src/cli/terminal.test.ts +148 -0
package/src/cli/terminal.ts +301 -0
package/src/config/index.ts +3 -0
package/src/config/loader.test.ts +313 -0
package/src/config/loader.ts +103 -0
package/src/config/schema.ts +168 -0
package/src/config/writer.test.ts +119 -0
package/src/config/writer.ts +84 -0
package/src/diff/classify.test.ts +162 -0
package/src/diff/classify.ts +92 -0
package/src/diff/coalesce.test.ts +208 -0
package/src/diff/coalesce.ts +133 -0
package/src/diff/context.test.ts +226 -0
package/src/diff/context.ts +201 -0
package/src/diff/index.ts +4 -0
package/src/diff/parser.test.ts +212 -0
package/src/diff/parser.ts +149 -0
package/src/event/context.ts +132 -0
package/src/event/index.ts +2 -0
package/src/event/schedule-context.ts +101 -0
package/src/examples/examples.integration.test.ts +66 -0
package/src/examples/index.test.ts +101 -0
package/src/examples/index.ts +122 -0
package/src/examples/setup.ts +25 -0
package/src/index.ts +115 -0
package/src/output/dedup.test.ts +419 -0
package/src/output/dedup.ts +607 -0
package/src/output/github-checks.test.ts +300 -0
package/src/output/github-checks.ts +476 -0
package/src/output/github-issues.ts +329 -0
package/src/output/index.ts +5 -0
package/src/output/issue-renderer.ts +197 -0
package/src/output/renderer.test.ts +727 -0
package/src/output/renderer.ts +217 -0
package/src/output/stale.test.ts +375 -0
package/src/output/stale.ts +155 -0
package/src/output/types.ts +34 -0
package/src/sdk/index.ts +1 -0
package/src/sdk/runner.test.ts +806 -0
package/src/sdk/runner.ts +1232 -0
package/src/skills/index.ts +36 -0
package/src/skills/loader.test.ts +300 -0
package/src/skills/loader.ts +423 -0
package/src/skills/remote.test.ts +704 -0
package/src/skills/remote.ts +604 -0
package/src/triggers/matcher.test.ts +277 -0
package/src/triggers/matcher.ts +152 -0
package/src/types/index.ts +194 -0
package/src/utils/async.ts +18 -0
package/src/utils/index.test.ts +84 -0
package/src/utils/index.ts +50 -0
package/tsconfig.json +25 -0
package/vitest.config.ts +8 -0
package/vitest.integration.config.ts +11 -0
package/warden.toml +19 -0

package/src/utils/index.test.ts ADDED Viewed

@@ -0,0 +1,84 @@
+import { describe, it, expect, beforeEach, afterEach } from 'vitest';
+import { escapeHtml, getAnthropicApiKey } from './index.js';
+describe('escapeHtml', () => {
+  it('escapes angle brackets outside code', () => {
+    expect(escapeHtml('Check the <sub> tag')).toBe('Check the &lt;sub&gt; tag');
+  });
+  it('escapes ampersands', () => {
+    expect(escapeHtml('foo & bar')).toBe('foo &amp; bar');
+  });
+  it('escapes multiple HTML characters', () => {
+    expect(escapeHtml('<div>foo & bar</div>')).toBe('&lt;div&gt;foo &amp; bar&lt;/div&gt;');
+  });
+  it('preserves content inside inline code', () => {
+    expect(escapeHtml('no `<sub>warden:` tag')).toBe('no `<sub>warden:` tag');
+  });
+  it('preserves content inside code blocks', () => {
+    const input = 'Check this:\n```\n<html>\n  <body></body>\n</html>\n```\nDone';
+    expect(escapeHtml(input)).toBe(input);
+  });
+  it('escapes outside code but preserves inside', () => {
+    const input = 'When <sub> tag like `<sub>warden:` is missing';
+    const expected = 'When &lt;sub&gt; tag like `<sub>warden:` is missing';
+    expect(escapeHtml(input)).toBe(expected);
+  });
+  it('handles multiple inline code spans', () => {
+    const input = 'Use `<div>` or `<span>` elements';
+    expect(escapeHtml(input)).toBe(input);
+  });
+  it('handles mixed code blocks and inline code', () => {
+    const input = 'See `<tag>` and:\n```\n<html>\n```\nThen <other>';
+    const expected = 'See `<tag>` and:\n```\n<html>\n```\nThen &lt;other&gt;';
+    expect(escapeHtml(input)).toBe(expected);
+  });
+  it('returns empty string unchanged', () => {
+    expect(escapeHtml('')).toBe('');
+  });
+  it('returns string without HTML unchanged', () => {
+    expect(escapeHtml('plain text')).toBe('plain text');
+  });
+});
+describe('getAnthropicApiKey', () => {
+  const originalEnv = process.env;
+  beforeEach(() => {
+    process.env = { ...originalEnv };
+    delete process.env['WARDEN_ANTHROPIC_API_KEY'];
+    delete process.env['ANTHROPIC_API_KEY'];
+  });
+  afterEach(() => {
+    process.env = originalEnv;
+  });
+  it('returns WARDEN_ANTHROPIC_API_KEY when set', () => {
+    process.env['WARDEN_ANTHROPIC_API_KEY'] = 'warden-key';
+    expect(getAnthropicApiKey()).toBe('warden-key');
+  });
+  it('returns WARDEN_ANTHROPIC_API_KEY over ANTHROPIC_API_KEY when both set', () => {
+    process.env['WARDEN_ANTHROPIC_API_KEY'] = 'warden-key';
+    process.env['ANTHROPIC_API_KEY'] = 'anthropic-key';
+    expect(getAnthropicApiKey()).toBe('warden-key');
+  });
+  it('falls back to ANTHROPIC_API_KEY when WARDEN key not set', () => {
+    process.env['ANTHROPIC_API_KEY'] = 'anthropic-key';
+    expect(getAnthropicApiKey()).toBe('anthropic-key');
+  });
+  it('returns undefined when neither key is set', () => {
+    expect(getAnthropicApiKey()).toBeUndefined();
+  });
+});

package/src/utils/index.ts ADDED Viewed

@@ -0,0 +1,50 @@
+export { processInBatches } from './async.js';
+/** Default concurrency for parallel trigger/skill execution */
+export const DEFAULT_CONCURRENCY = 4;
+/**
+ * Escape HTML special characters to prevent them from being interpreted as HTML.
+ * Preserves content inside markdown code blocks (```) and inline code (`).
+ * Used when rendering finding titles/descriptions in GitHub comments.
+ */
+export function escapeHtml(text: string): string {
+  // Extract code blocks and inline code, escape HTML in the rest
+  const codeBlocks: string[] = [];
+  // Replace code blocks (``` ... ```) and inline code (` ... `) with indexed placeholders
+  // Process triple backticks first (they may contain single backticks)
+  let processed = text.replace(/```[\s\S]*?```/g, (match) => {
+    const idx = codeBlocks.length;
+    codeBlocks.push(match);
+    return `\0CODE${idx}\0`;
+  });
+  // Then process inline code (single backticks)
+  processed = processed.replace(/`[^`]+`/g, (match) => {
+    const idx = codeBlocks.length;
+    codeBlocks.push(match);
+    return `\0CODE${idx}\0`;
+  });
+  // Escape HTML in the non-code portions
+  processed = processed
+    .replace(/&/g, '&amp;')
+    .replace(/</g, '&lt;')
+    .replace(/>/g, '&gt;');
+  // Restore code blocks by index
+  codeBlocks.forEach((block, i) => {
+    processed = processed.replace(`\0CODE${i}\0`, block);
+  });
+  return processed;
+}
+/**
+ * Get the Anthropic API key from environment variables.
+ * Checks WARDEN_ANTHROPIC_API_KEY first, then falls back to ANTHROPIC_API_KEY.
+ */
+export function getAnthropicApiKey(): string | undefined {
+  return process.env['WARDEN_ANTHROPIC_API_KEY'] ?? process.env['ANTHROPIC_API_KEY'];
+}

package/tsconfig.json ADDED Viewed

@@ -0,0 +1,25 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "NodeNext",
+    "moduleResolution": "NodeNext",
+    "lib": ["ES2022"],
+    "outDir": "dist",
+    "rootDir": "src",
+    "strict": true,
+    "jsx": "react-jsx",
+    "esModuleInterop": true,
+    "skipLibCheck": true,
+    "forceConsistentCasingInFileNames": true,
+    "declaration": true,
+    "declarationMap": true,
+    "sourceMap": true,
+    "resolveJsonModule": true,
+    "isolatedModules": true,
+    "noUncheckedIndexedAccess": true,
+    "noImplicitOverride": true,
+    "noPropertyAccessFromIndexSignature": true
+  },
+  "include": ["src/**/*"],
+  "exclude": ["node_modules", "dist"]
+}

package/vitest.config.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { defineConfig } from 'vitest/config';
+export default defineConfig({
+  test: {
+    // Exclude integration tests from the main test run
+    exclude: ['**/node_modules/**', '**/dist/**', '**/*.integration.test.ts'],
+  },
+});

package/vitest.integration.config.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { defineConfig } from 'vitest/config';
+export default defineConfig({
+  test: {
+    // Only run integration tests
+    include: ['**/*.integration.test.ts'],
+    exclude: ['**/node_modules/**', '**/dist/**'],
+    // Load .env, .env.local, .env.test
+    setupFiles: ['./src/examples/setup.ts'],
+  },
+});

package/warden.toml ADDED Viewed

@@ -0,0 +1,19 @@
+version = 1
+[defaults.output]
+# Fail check on high+ severity findings (critical, high)
+failOn = "high"
+# Show annotations for medium+ severity findings
+commentOn = "medium"
+[[triggers]]
+name = "notseer"
+event = "pull_request"
+actions = ["opened", "synchronize", "reopened"]
+skill = "notseer"
+[[triggers]]
+name = "testing-guidelines"
+event = "pull_request"
+actions = ["opened", "synchronize", "reopened"]
+skill = "testing-guidelines"