@shrkcrft/presets 0.1.0-alpha.6 → 0.1.0-alpha.7

package/dist/builtin/builtin-presets.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"builtin-presets.d.ts","sourceRoot":"","sources":["../../src/builtin/builtin-presets.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AA4jBlD,eAAO,MAAM,eAAe,EAAE,SAAS,OAAO,EA+B5C,CAAC"}
+{"version":3,"file":"builtin-presets.d.ts","sourceRoot":"","sources":["../../src/builtin/builtin-presets.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AA8jBlD,eAAO,MAAM,eAAe,EAAE,SAAS,OAAO,EA4C5C,CAAC"}

package/dist/builtin/builtin-presets.js

@@ -5,6 +5,8 @@ import { R26_PRESETS } from "./r26-presets.js";
 import { R45_PRESETS } from "./r45-presets.js";
 import { R47_PRESETS } from "./r47-presets.js";
 import { ANGULAR_21_PRESETS } from "./angular21-presets.js";
+import { NEST_11_PRESETS } from "./nest11-presets.js";
+import { REACT_19_PRESETS } from "./react19-presets.js";
 const GENERIC = definePreset({
     id: 'generic',
     title: 'Generic SharkCraft setup',
@@ -523,4 +525,17 @@ export const BUILTIN_PRESETS = Object.freeze([
     // NgModules. Weight 11-12 so the recommender prefers these over
     // R26 `modern-angular` (weight 9) when the workspace is Angular.
     ...ANGULAR_21_PRESETS,
+    // NestJS 11+ — thin controllers, global ValidationPipe + class-validator,
+    // async lifecycle, Fastify + cache + throttler, helmet + JWT guards,
+    // structured logging + terminus health, TestingModule + supertest e2e.
+    // Weight 11-12 so the recommender prefers these over R26 `nestjs-service`
+    // (weight 7) and R47 `nest-service` (weight 9) when the workspace is Nest.
+    ...NEST_11_PRESETS,
+    // React 19+ — function components + ref-as-prop, hooks discipline,
+    // Actions / useActionState / useOptimistic, TanStack Query for server
+    // state, React Compiler + lazy + virtualization, useTransition /
+    // Suspense, Vitest + RTL + userEvent + MSW, RSC + 'use client' +
+    // Server Actions. Weight 11-12 so the recommender prefers these over
+    // the legacy `frontend-app` (weight 6) when the workspace is React.
+    ...REACT_19_PRESETS,
 ]);

package/dist/builtin/nest11-presets.d.ts

@@ -0,0 +1,11 @@
+import type { IPreset } from '../model/preset.js';
+export declare const NEST_11_ARCHITECTURE: IPreset;
+export declare const NEST_11_VALIDATION: IPreset;
+export declare const NEST_11_ASYNC_LIFECYCLE: IPreset;
+export declare const NEST_11_PERFORMANCE: IPreset;
+export declare const NEST_11_SECURITY: IPreset;
+export declare const NEST_11_OBSERVABILITY: IPreset;
+export declare const NEST_11_TESTING: IPreset;
+export declare const NEST_11_MODERN: IPreset;
+export declare const NEST_11_PRESETS: readonly IPreset[];
+//# sourceMappingURL=nest11-presets.d.ts.map

package/dist/builtin/nest11-presets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nest11-presets.d.ts","sourceRoot":"","sources":["../../src/builtin/nest11-presets.ts"],"names":[],"mappings":"AAYA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAsDlD,eAAO,MAAM,oBAAoB,EAAE,OA+BjC,CAAC;AAIH,eAAO,MAAM,kBAAkB,EAAE,OA6B/B,CAAC;AAIH,eAAO,MAAM,uBAAuB,EAAE,OA2BpC,CAAC;AAIH,eAAO,MAAM,mBAAmB,EAAE,OA4BhC,CAAC;AAIH,eAAO,MAAM,gBAAgB,EAAE,OA8B7B,CAAC;AAIH,eAAO,MAAM,qBAAqB,EAAE,OA4BlC,CAAC;AAIH,eAAO,MAAM,eAAe,EAAE,OA2B5B,CAAC;AAIH,eAAO,MAAM,cAAc,EAAE,OA4C3B,CAAC;AAEH,eAAO,MAAM,eAAe,EAAE,SAAS,OAAO,EAS5C,CAAC"}

package/dist/builtin/nest11-presets.js

@@ -0,0 +1,257 @@
+// NestJS 11+ preset family.
+//
+// Seven focused presets covering modern Nest practice — architecture,
+// validation, async lifecycle, performance, security, observability,
+// testing — plus one comprehensive `nest-11-modern` that composes them.
+// Targets HasNestJS workspaces with weight set above the legacy R26
+// `nestjs-service` (weight 7) and R47 `nest-service` canonical alias
+// (weight 9), so the recommender prefers these when the workspace
+// declares HasNestJS.
+import { WorkspaceProfile } from '@shrkcrft/workspace';
+import { definePreset } from "../define/define-preset.js";
+import { COMMON_AGENT_BRIEFING, COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV, COMMON_PIPELINE_UNIT_TEST, COMMON_SAFETY_RULE, NEST_PATH_E2E, NEST_PATH_SRC, OVERVIEW_DOC, } from "./shared-snippets.js";
+import { NEST11_API_VERSIONING, NEST11_ASYNC_PROVIDERS, NEST11_CACHE_MANAGER, NEST11_CLASS_VALIDATOR_DTO, NEST11_DTO_AT_BOUNDARY, NEST11_E2E_SUPERTEST, NEST11_ENABLE_SHUTDOWN_HOOKS, NEST11_EXPLICIT_CORS, NEST11_FASTIFY_ADAPTER, NEST11_GLOBAL_VALIDATION_PIPE, NEST11_HELMET, NEST11_JWT_GUARDS, NEST11_LIFECYCLE_HOOKS, NEST11_LOGGER_WITH_CONTEXT, NEST11_MODULE_PER_FEATURE, NEST11_MODULE_PUBLIC_API, NEST11_NO_CIRCULAR_MODULES, NEST11_NO_LOG_SECRETS, NEST11_NO_QUERY_IN_CONTROLLER, NEST11_NO_SECRETS_IN_CODE, NEST11_PAGINATION_BY_DEFAULT, NEST11_REQUEST_RESPONSE_DTOS, NEST11_SERVICE_OWNS_DOMAIN, NEST11_STRUCTURED_LOGS, NEST11_SWAGGER_DECORATORS, NEST11_TERMINUS_HEALTH, NEST11_TEST_FILE_LAYOUT, NEST11_TESTING_MODULE, NEST11_THIN_CONTROLLERS, NEST11_THROTTLER, NEST11_TRUST_PROXY_AWARE, } from "./nest11-snippets.js";
+const NEST11_TAGS = ['nestjs', 'nest-11', 'backend'];
+const NEST11_NEXT_COMMANDS = [
+    'shrk doctor',
+    'shrk task "<task>"',
+    'shrk ci scaffold github-actions --quickstart',
+];
+// ─── 1) Architecture — modules, controllers, services, repos ─────────────
+export const NEST_11_ARCHITECTURE = definePreset({
+    id: 'nest-11-architecture',
+    title: 'NestJS 11 — module + controller + service architecture',
+    description: 'Module-per-feature, thin controllers (validate + delegate, nothing more), services own domain logic, repositories abstract data access, DTOs at every HTTP boundary, no circular module dependencies. The structural backbone of a maintainable Nest service.',
+    tags: [...NEST11_TAGS, 'architecture'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_THIN_CONTROLLERS,
+            NEST11_SERVICE_OWNS_DOMAIN,
+            NEST11_MODULE_PER_FEATURE,
+            NEST11_MODULE_PUBLIC_API,
+            NEST11_NO_CIRCULAR_MODULES,
+            NEST11_DTO_AT_BOUNDARY,
+            NEST11_NO_QUERY_IN_CONTROLLER,
+        ],
+        paths: [NEST_PATH_SRC, NEST_PATH_E2E],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 architecture', 'Module per feature under src/<feature>/. Controllers parse + delegate. Services own domain logic; data access goes through repositories. Modules export only their public providers. DTOs at every boundary; entities never leave the service layer.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 2) Validation — ValidationPipe + class-validator + DTOs ─────────────
+export const NEST_11_VALIDATION = definePreset({
+    id: 'nest-11-validation',
+    title: 'NestJS 11 — strict validation at the boundary',
+    description: 'Global ValidationPipe with whitelist + forbidNonWhitelisted + transform, class-validator decorators on every DTO field, separated request and response DTOs, @ApiProperty annotations for the OpenAPI contract.',
+    tags: [...NEST11_TAGS, 'validation'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_GLOBAL_VALIDATION_PIPE,
+            NEST11_CLASS_VALIDATOR_DTO,
+            NEST11_REQUEST_RESPONSE_DTOS,
+            NEST11_DTO_AT_BOUNDARY,
+            NEST11_SWAGGER_DECORATORS,
+        ],
+        paths: [NEST_PATH_SRC],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 validation', 'ValidationPipe is registered globally with strict options. Every DTO is a class with class-validator decorators; @Type() wires nested objects through class-transformer. Request and response DTOs are separate classes — input is whitelisted, output is projected.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 3) Async lifecycle + graceful shutdown ──────────────────────────────
+export const NEST_11_ASYNC_LIFECYCLE = definePreset({
+    id: 'nest-11-async-lifecycle',
+    title: 'NestJS 11 — async providers + graceful shutdown',
+    description: 'Async configuration providers via useFactory, OnModuleInit / OnApplicationBootstrap / OnModuleDestroy / OnApplicationShutdown lifecycle hooks, enableShutdownHooks() at bootstrap so SIGTERM cleanly tears down DB pools and message clients.',
+    tags: [...NEST11_TAGS, 'lifecycle'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_LIFECYCLE_HOOKS,
+            NEST11_ENABLE_SHUTDOWN_HOOKS,
+            NEST11_ASYNC_PROVIDERS,
+        ],
+        paths: [NEST_PATH_SRC],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 lifecycle', 'enableShutdownHooks() in main.ts so the OnModuleDestroy / OnApplicationShutdown hooks fire on SIGTERM. Configuration that must resolve at boot uses { useFactory } async providers — not lazy init from inside a service.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 4) Performance — Fastify, cache, throttler, pagination ──────────────
+export const NEST_11_PERFORMANCE = definePreset({
+    id: 'nest-11-performance',
+    title: 'NestJS 11 — Fastify, caching, throttling, pagination',
+    description: 'NestFastifyApplication adapter for ~2× throughput vs. Express, @nestjs/cache-manager for hot reads, @nestjs/throttler for per-IP rate limiting, mandatory pagination on every list endpoint.',
+    tags: [...NEST11_TAGS, 'performance'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_FASTIFY_ADAPTER,
+            NEST11_CACHE_MANAGER,
+            NEST11_THROTTLER,
+            NEST11_PAGINATION_BY_DEFAULT,
+        ],
+        paths: [NEST_PATH_SRC],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 performance', 'Fastify adapter for high-throughput HTTP. Idempotent GETs cached via CacheInterceptor with explicit per-route TTLs. Global ThrottlerModule with sane defaults (60 req/min/IP); per-route overrides via @Throttle. List endpoints paginate by default; pageSize is capped server-side.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 5) Security — helmet, CORS, auth, secrets, trust-proxy ──────────────
+export const NEST_11_SECURITY = definePreset({
+    id: 'nest-11-security',
+    title: 'NestJS 11 — security baseline',
+    description: 'helmet middleware for HTTP security headers, explicit CORS allowlist (never `origin: true`), JWT auth via @nestjs/passport guards, no-secrets-in-source enforcement, trust-proxy configured for load-balanced deployments, throttler for abuse protection.',
+    tags: [...NEST11_TAGS, 'security'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_HELMET,
+            NEST11_EXPLICIT_CORS,
+            NEST11_JWT_GUARDS,
+            NEST11_NO_SECRETS_IN_CODE,
+            NEST11_TRUST_PROXY_AWARE,
+            NEST11_THROTTLER,
+        ],
+        paths: [NEST_PATH_SRC],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 security', 'helmet registered before any route. CORS allowlist explicit. Authentication runs through Guards (JwtAuthGuard + @UseGuards), not middleware. Secrets come from ConfigService.get only. trust-proxy configured. Throttler in place.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 6) Observability — Logger, structured logs, terminus ────────────────
+export const NEST_11_OBSERVABILITY = definePreset({
+    id: 'nest-11-observability',
+    title: 'NestJS 11 — structured logging + health checks',
+    description: 'Per-provider Logger instances with context names, structured JSON logs in production (pino / nest-winston), redact-list for secrets and PII, @nestjs/terminus health checks with separated liveness and readiness endpoints.',
+    tags: [...NEST11_TAGS, 'observability'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_LOGGER_WITH_CONTEXT,
+            NEST11_STRUCTURED_LOGS,
+            NEST11_NO_LOG_SECRETS,
+            NEST11_TERMINUS_HEALTH,
+        ],
+        paths: [NEST_PATH_SRC],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_FEATURE_DEV],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 observability', 'Each provider holds its own Logger(MyService.name). Production logger is structured JSON via pino or nest-winston with a redact list for tokens / passwords / PII. /health/liveness and /health/readiness are separate endpoints; readiness fails 503 when a critical dep is down.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 7) Testing — TestingModule + e2e ───────────────────────────────────
+export const NEST_11_TESTING = definePreset({
+    id: 'nest-11-testing',
+    title: 'NestJS 11 — TestingModule + supertest e2e',
+    description: 'Unit tests via Test.createTestingModule + overrideProvider for slow deps, co-located *.spec.ts files; e2e under test/*.e2e-spec.ts driving the real AppModule through supertest with the validation pipeline live.',
+    tags: [...NEST11_TAGS, 'testing'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend],
+    weight: 11,
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            NEST11_TESTING_MODULE,
+            NEST11_E2E_SUPERTEST,
+            NEST11_TEST_FILE_LAYOUT,
+        ],
+        paths: [NEST_PATH_SRC, NEST_PATH_E2E],
+        templates: [],
+        pipelines: [COMMON_PIPELINE_CONTEXT_ONLY, COMMON_PIPELINE_UNIT_TEST],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 testing', 'Unit specs are co-located beside their unit; they use Test.createTestingModule + overrideProvider to fake the expensive deps. E2E specs live under test/, drive AppModule through supertest, and keep the real validation pipeline + guards + interceptors active — that is the contract being tested.'),
+        },
+    },
+    recommendedNextCommands: NEST11_NEXT_COMMANDS,
+});
+// ─── 8) The whole stack — composes 1-7 ──────────────────────────────────
+export const NEST_11_MODERN = definePreset({
+    id: 'nest-11-modern',
+    title: 'NestJS 11 — modern stack (architecture + validation + lifecycle + perf + security + obs + testing)',
+    description: 'The canonical preset for a new NestJS 11+ service. Composes the seven focused presets, then layers on API versioning. Use this unless you specifically want a narrower slice.',
+    tags: [...NEST11_TAGS, 'comprehensive'],
+    appliesTo: [WorkspaceProfile.HasNestJS, WorkspaceProfile.IsBackend, WorkspaceProfile.IsService],
+    weight: 12,
+    composes: [
+        'nest-11-architecture',
+        'nest-11-validation',
+        'nest-11-async-lifecycle',
+        'nest-11-performance',
+        'nest-11-security',
+        'nest-11-observability',
+        'nest-11-testing',
+    ],
+    includes: {
+        knowledge: [COMMON_AGENT_BRIEFING],
+        rules: [
+            COMMON_SAFETY_RULE,
+            // Extras that don't fit any single focused preset:
+            NEST11_API_VERSIONING,
+        ],
+        paths: [NEST_PATH_SRC, NEST_PATH_E2E],
+        templates: [],
+        pipelines: [
+            COMMON_PIPELINE_CONTEXT_ONLY,
+            COMMON_PIPELINE_FEATURE_DEV,
+            COMMON_PIPELINE_UNIT_TEST,
+        ],
+        docs: {
+            'overview.md': OVERVIEW_DOC('NestJS 11 modern stack', 'Module-per-feature architecture. Thin controllers, services own domain, repositories abstract data. Global ValidationPipe + class-validator. Fastify adapter, cache-manager, throttler, mandatory pagination. helmet + CORS allowlist + JWT guards + no-secrets. Per-provider Logger + structured JSON logs + terminus health. TestingModule unit specs + supertest e2e. URI versioning when the API has external consumers.'),
+        },
+    },
+    recommendedNextCommands: [
+        'shrk doctor',
+        'shrk task "<task>"',
+        'shrk ci scaffold github-actions --quickstart',
+        'nest g resource <feature>',
+    ],
+});
+export const NEST_11_PRESETS = Object.freeze([
+    NEST_11_ARCHITECTURE,
+    NEST_11_VALIDATION,
+    NEST_11_ASYNC_LIFECYCLE,
+    NEST_11_PERFORMANCE,
+    NEST_11_SECURITY,
+    NEST_11_OBSERVABILITY,
+    NEST_11_TESTING,
+    NEST_11_MODERN,
+]);

package/dist/builtin/nest11-snippets.d.ts

@@ -0,0 +1,32 @@
+export declare const NEST11_THIN_CONTROLLERS: string;
+export declare const NEST11_SERVICE_OWNS_DOMAIN: string;
+export declare const NEST11_MODULE_PER_FEATURE: string;
+export declare const NEST11_MODULE_PUBLIC_API: string;
+export declare const NEST11_NO_CIRCULAR_MODULES: string;
+export declare const NEST11_DTO_AT_BOUNDARY: string;
+export declare const NEST11_GLOBAL_VALIDATION_PIPE: string;
+export declare const NEST11_CLASS_VALIDATOR_DTO: string;
+export declare const NEST11_REQUEST_RESPONSE_DTOS: string;
+export declare const NEST11_SWAGGER_DECORATORS: string;
+export declare const NEST11_LIFECYCLE_HOOKS: string;
+export declare const NEST11_ENABLE_SHUTDOWN_HOOKS: string;
+export declare const NEST11_ASYNC_PROVIDERS: string;
+export declare const NEST11_FASTIFY_ADAPTER: string;
+export declare const NEST11_CACHE_MANAGER: string;
+export declare const NEST11_THROTTLER: string;
+export declare const NEST11_PAGINATION_BY_DEFAULT: string;
+export declare const NEST11_HELMET: string;
+export declare const NEST11_EXPLICIT_CORS: string;
+export declare const NEST11_JWT_GUARDS: string;
+export declare const NEST11_NO_SECRETS_IN_CODE: string;
+export declare const NEST11_TRUST_PROXY_AWARE: string;
+export declare const NEST11_LOGGER_WITH_CONTEXT: string;
+export declare const NEST11_STRUCTURED_LOGS: string;
+export declare const NEST11_NO_LOG_SECRETS: string;
+export declare const NEST11_TERMINUS_HEALTH: string;
+export declare const NEST11_TESTING_MODULE: string;
+export declare const NEST11_E2E_SUPERTEST: string;
+export declare const NEST11_TEST_FILE_LAYOUT: string;
+export declare const NEST11_API_VERSIONING: string;
+export declare const NEST11_NO_QUERY_IN_CONTROLLER: string;
+//# sourceMappingURL=nest11-snippets.d.ts.map

package/dist/builtin/nest11-snippets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nest11-snippets.d.ts","sourceRoot":"","sources":["../../src/builtin/nest11-snippets.ts"],"names":[],"mappings":"AAkBA,eAAO,MAAM,uBAAuB,QAQlC,CAAC;AAEH,eAAO,MAAM,0BAA0B,QAQrC,CAAC;AAEH,eAAO,MAAM,yBAAyB,QAQpC,CAAC;AAEH,eAAO,MAAM,wBAAwB,QAQnC,CAAC;AAEH,eAAO,MAAM,0BAA0B,QAQrC,CAAC;AAEH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAIH,eAAO,MAAM,6BAA6B,QAQxC,CAAC;AAEH,eAAO,MAAM,0BAA0B,QAQrC,CAAC;AAEH,eAAO,MAAM,4BAA4B,QAQvC,CAAC;AAEH,eAAO,MAAM,yBAAyB,QAQpC,CAAC;AAIH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAEH,eAAO,MAAM,4BAA4B,QAQvC,CAAC;AAEH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAIH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAEH,eAAO,MAAM,oBAAoB,QAQ/B,CAAC;AAEH,eAAO,MAAM,gBAAgB,QAQ3B,CAAC;AAEH,eAAO,MAAM,4BAA4B,QAQvC,CAAC;AAIH,eAAO,MAAM,aAAa,QAQxB,CAAC;AAEH,eAAO,MAAM,oBAAoB,QAQ/B,CAAC;AAEH,eAAO,MAAM,iBAAiB,QAQ5B,CAAC;AAEH,eAAO,MAAM,yBAAyB,QAQpC,CAAC;AAEH,eAAO,MAAM,wBAAwB,QAQnC,CAAC;AAIH,eAAO,MAAM,0BAA0B,QAQrC,CAAC;AAEH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAEH,eAAO,MAAM,qBAAqB,QAQhC,CAAC;AAEH,eAAO,MAAM,sBAAsB,QAQjC,CAAC;AAIH,eAAO,MAAM,qBAAqB,QAQhC,CAAC;AAEH,eAAO,MAAM,oBAAoB,QAQ/B,CAAC;AAEH,eAAO,MAAM,uBAAuB,QAQlC,CAAC;AAIH,eAAO,MAAM,qBAAqB,QAQhC,CAAC;AAEH,eAAO,MAAM,6BAA6B,QAQxC,CAAC"}

package/dist/builtin/nest11-snippets.js

@@ -0,0 +1,270 @@
+// NestJS 11+ rule snippets.
+//
+// Covers the modern Nest service surface: module structure, thin
+// controllers, DTOs with class-validator, the global ValidationPipe with
+// strict options, async providers + lifecycle hooks, graceful shutdown,
+// the Fastify adapter, caching, throttling, helmet, explicit CORS, JWT
+// auth, structured logging via the Nest Logger, @nestjs/terminus health
+// checks, and the TestingModule patterns for unit + supertest e2e.
+//
+// Each snippet is a string injected verbatim into a generated
+// `sharkcraft/*.ts` file; `defineKnowledgeEntry`, `KnowledgeType`, and
+// `KnowledgePriority` are provided by the local-mirror preamble the
+// synthesizer prepends to the file.
+import { ruleSnippet } from "./r26-snippets.js";
+// ─── Architecture: modules, controllers, services, repos ──────────────────
+export const NEST11_THIN_CONTROLLERS = ruleSnippet({
+    id: 'nest11.thin-controllers',
+    title: 'Controllers are thin — no business logic',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'architecture'],
+    appliesWhen: ['generate-controller', 'review'],
+    content: 'Controllers parse the request (params/query/body via DTOs), call ONE service method, and return the result. No conditionals over domain rules, no inline database access, no orchestration of multiple services. If a controller method body is more than a handful of lines or branches on domain state, the logic belongs in a service.',
+});
+export const NEST11_SERVICE_OWNS_DOMAIN = ruleSnippet({
+    id: 'nest11.service-owns-domain',
+    title: 'Services own domain logic; repositories own data access',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'architecture'],
+    appliesWhen: ['generate-service', 'review'],
+    content: 'Services express domain rules and orchestrate work. Data access lives behind a repository (TypeORM Repository, Prisma client, or a hand-rolled interface). Services depend on repository interfaces, not on the ORM directly — that boundary is what makes unit tests cheap.',
+});
+export const NEST11_MODULE_PER_FEATURE = ruleSnippet({
+    id: 'nest11.module-per-feature',
+    title: 'Module per feature, not per layer',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'architecture'],
+    appliesWhen: ['create-feature'],
+    content: 'Each feature gets its own module under src/<feature>/ owning controller(s), service(s), DTOs, and (optionally) entities. Top-level grab-bags like ControllersModule / ServicesModule are an anti-pattern — they couple every feature to every other.',
+});
+export const NEST11_MODULE_PUBLIC_API = ruleSnippet({
+    id: 'nest11.module-public-api',
+    title: 'Each module exports its public API only',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'architecture', 'boundaries'],
+    appliesWhen: ['generate-code', 'review'],
+    content: 'A module\'s `exports: [...]` lists exactly the providers other modules may inject. Internal services stay unexported. Avoid `exports: [SomeModule]` re-exports unless you intentionally want the entire surface to be transitive.',
+});
+export const NEST11_NO_CIRCULAR_MODULES = ruleSnippet({
+    id: 'nest11.no-circular-modules',
+    title: 'Avoid circular module dependencies',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'architecture'],
+    appliesWhen: ['generate-code', 'review'],
+    content: 'If module A imports module B and B imports A, extract the shared piece into a third module that both depend on. `forwardRef()` exists to escape genuine cycles in the dependency graph, not to paper over a missing abstraction.',
+});
+export const NEST11_DTO_AT_BOUNDARY = ruleSnippet({
+    id: 'nest11.dto-at-boundary',
+    title: 'DTOs at the HTTP boundary; never expose entities',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'dto', 'security'],
+    appliesWhen: ['generate-controller', 'generate-dto'],
+    content: 'Request shapes live in `<feature>.dto.ts`; response shapes either in a dedicated response DTO or as a serialized projection. Never return an ORM entity directly — that leaks internal columns (audit fields, soft-delete flags, foreign keys) and couples your HTTP contract to your schema.',
+});
+// ─── Validation: ValidationPipe + class-validator ─────────────────────────
+export const NEST11_GLOBAL_VALIDATION_PIPE = ruleSnippet({
+    id: 'nest11.global-validation-pipe',
+    title: 'Global ValidationPipe with whitelist + forbidNonWhitelisted + transform',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'validation', 'security'],
+    appliesWhen: ['bootstrap'],
+    content: 'main.ts registers a global ValidationPipe: `app.useGlobalPipes(new ValidationPipe({ whitelist: true, forbidNonWhitelisted: true, transform: true, transformOptions: { enableImplicitConversion: true } }))`. whitelist strips unknown properties, forbidNonWhitelisted rejects them, transform turns plain objects into the DTO class so class-validator + class-transformer decorators fire.',
+});
+export const NEST11_CLASS_VALIDATOR_DTO = ruleSnippet({
+    id: 'nest11.class-validator-dto',
+    title: 'DTOs are classes with class-validator decorators',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'validation', 'dto'],
+    appliesWhen: ['generate-dto'],
+    content: 'Define DTOs as classes (not interfaces) so class-validator can attach metadata. Use @IsString, @IsInt, @IsEmail, @IsUUID, @Length, @Min, @Max, @IsOptional, @IsEnum, @IsArray + @ValidateNested + @Type(() => Inner). Mark optional fields with @IsOptional() + a `?` on the property; the ValidationPipe will skip them when absent.',
+});
+export const NEST11_REQUEST_RESPONSE_DTOS = ruleSnippet({
+    id: 'nest11.request-response-dtos',
+    title: 'Separate request DTOs from response DTOs',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'dto'],
+    appliesWhen: ['generate-dto', 'generate-controller'],
+    content: 'CreateXDto, UpdateXDto, and XResponseDto are distinct classes — even when fields overlap. PartialType(CreateXDto) and PickType / OmitType from @nestjs/mapped-types compose them without duplication. This keeps the input surface (validated) and output surface (serialized) under independent control.',
+});
+export const NEST11_SWAGGER_DECORATORS = ruleSnippet({
+    id: 'nest11.swagger-decorators',
+    title: 'Annotate DTOs with @ApiProperty for OpenAPI',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'openapi', 'swagger'],
+    appliesWhen: ['generate-dto'],
+    content: 'Pair each class-validator decorator with @ApiProperty / @ApiPropertyOptional from @nestjs/swagger. Set example, description, enum, and type explicitly — Swagger UI is the canonical contract reference for clients.',
+});
+// ─── Async lifecycle + graceful shutdown ──────────────────────────────────
+export const NEST11_LIFECYCLE_HOOKS = ruleSnippet({
+    id: 'nest11.lifecycle-hooks',
+    title: 'Use Nest lifecycle hooks, not raw process events',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'lifecycle'],
+    appliesWhen: ['generate-service'],
+    content: 'Implement OnModuleInit / OnApplicationBootstrap for warm-up, OnModuleDestroy / OnApplicationShutdown for teardown. They run in DI-resolution order, so dependencies of a provider are still live during its destroy hook. Don\'t hook process.on(\'SIGTERM\') directly — Nest already wires it via enableShutdownHooks().',
+});
+export const NEST11_ENABLE_SHUTDOWN_HOOKS = ruleSnippet({
+    id: 'nest11.enable-shutdown-hooks',
+    title: 'Call app.enableShutdownHooks() in main.ts',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'lifecycle'],
+    appliesWhen: ['bootstrap'],
+    content: 'Without enableShutdownHooks() the OnModuleDestroy / OnApplicationShutdown hooks never fire on SIGTERM, leaving connections (DB pools, Kafka clients, etc.) dangling. Call it before app.listen().',
+});
+export const NEST11_ASYNC_PROVIDERS = ruleSnippet({
+    id: 'nest11.async-providers',
+    title: 'Use useFactory for async configuration providers',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'di'],
+    appliesWhen: ['generate-module'],
+    content: 'Configuration that must be resolved at boot (env, secrets vault, schema generation) goes through `{ provide: TOKEN, useFactory: async (cfg) => …, inject: [ConfigService] }`. Don\'t lazy-load it inside a service\'s onModuleInit — that delays the readiness signal.',
+});
+// ─── Performance: Fastify, cache, throttler, pagination ──────────────────
+export const NEST11_FASTIFY_ADAPTER = ruleSnippet({
+    id: 'nest11.fastify-adapter',
+    title: 'Use the Fastify adapter for high-throughput services',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'performance'],
+    appliesWhen: ['bootstrap'],
+    content: 'NestFactory.create<NestFastifyApplication>(AppModule, new FastifyAdapter()) gives ~2× the RPS of the default Express adapter and matches Nest\'s typed-decorator surface. Only stay on Express if you need a middleware that isn\'t available for Fastify (rare).',
+});
+export const NEST11_CACHE_MANAGER = ruleSnippet({
+    id: 'nest11.cache-manager',
+    title: 'Cache idempotent GETs via @nestjs/cache-manager',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'performance'],
+    appliesWhen: ['generate-controller', 'optimize'],
+    content: 'Register CacheModule with a TTL appropriate to the data (seconds for hot reads, minutes for slowly-changing references). Decorate idempotent GET endpoints with @UseInterceptors(CacheInterceptor) or inject CACHE_MANAGER for explicit key-based caches. Never cache user-private responses without a per-user key.',
+});
+export const NEST11_THROTTLER = ruleSnippet({
+    id: 'nest11.throttler',
+    title: 'Rate-limit with @nestjs/throttler',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'performance', 'security'],
+    appliesWhen: ['bootstrap', 'generate-controller'],
+    content: 'Register ThrottlerModule globally with sane defaults (e.g. 60 requests / minute / IP), then loosen or tighten per route via @Throttle({ default: { limit, ttl } }) or @SkipThrottle() for internal endpoints. Without throttler a single client can DOS your service trivially.',
+});
+export const NEST11_PAGINATION_BY_DEFAULT = ruleSnippet({
+    id: 'nest11.pagination-by-default',
+    title: 'List endpoints paginate by default',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'performance'],
+    appliesWhen: ['generate-controller'],
+    content: 'Every list endpoint accepts `?page=1&pageSize=20` (or cursor-based) and caps pageSize server-side (e.g. max 100). Returning an unbounded array works on day 1 and dies in week 3 — paginate from the start so the contract never has to break.',
+});
+// ─── Security: helmet, CORS, auth, secrets ────────────────────────────────
+export const NEST11_HELMET = ruleSnippet({
+    id: 'nest11.helmet',
+    title: 'Register helmet for HTTP security headers',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'security'],
+    appliesWhen: ['bootstrap'],
+    content: 'Add `app.register(helmet)` (Fastify) or `app.use(helmet())` (Express) before any route is mounted. helmet sets X-Content-Type-Options, X-Frame-Options, Strict-Transport-Security, and CSP defaults. Skipping it leaves you on every "missing security header" audit.',
+});
+export const NEST11_EXPLICIT_CORS = ruleSnippet({
+    id: 'nest11.explicit-cors',
+    title: 'CORS allowlist — never `origin: true` in production',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'security'],
+    appliesWhen: ['bootstrap'],
+    content: 'Configure CORS with an explicit `origin: ["https://app.example.com"]` array (or a function that validates against an allowlist). `origin: true` reflects whatever the request sent — fine for local dev, catastrophic in prod for any cookie-/credential-bearing endpoint.',
+});
+export const NEST11_JWT_GUARDS = ruleSnippet({
+    id: 'nest11.jwt-guards',
+    title: 'Authentication via Guards, not middleware',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'security', 'auth'],
+    appliesWhen: ['generate-controller'],
+    content: 'Auth runs through @nestjs/passport + a JwtAuthGuard (or custom AuthGuard) applied via @UseGuards() at controller or method level. Guards see the full execution context (request, handler metadata) and integrate with @SetMetadata for role-based / permission-based checks. Middleware can\'t do that.',
+});
+export const NEST11_NO_SECRETS_IN_CODE = ruleSnippet({
+    id: 'nest11.no-secrets-in-code',
+    title: 'Secrets come from the env, never from source',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'security'],
+    appliesWhen: ['generate-code', 'review'],
+    content: 'JWT signing keys, DB passwords, third-party API keys, encryption secrets — all loaded through @nestjs/config (ConfigService.get) from environment variables, .env (local only, in .gitignore), or a vault. A literal secret in a `.ts` file is a CVE waiting for a commit.',
+});
+export const NEST11_TRUST_PROXY_AWARE = ruleSnippet({
+    id: 'nest11.trust-proxy-aware',
+    title: 'Configure trust-proxy when behind a load balancer',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'security'],
+    appliesWhen: ['bootstrap'],
+    content: 'When the service runs behind an ALB / Cloudflare / nginx, set the trust-proxy option on the adapter so req.ip + X-Forwarded-For resolve correctly. Otherwise throttler keys, audit logs, and rate-limiting all degenerate to the proxy\'s IP.',
+});
+// ─── Observability: Logger, structured logs, terminus ────────────────────
+export const NEST11_LOGGER_WITH_CONTEXT = ruleSnippet({
+    id: 'nest11.logger-with-context',
+    title: 'Logger instances carry a context name',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'observability'],
+    appliesWhen: ['generate-service'],
+    content: 'In each provider, do `private readonly logger = new Logger(MyService.name)`. The context name appears in every log line so filtering by component is trivial. Don\'t share a single Logger instance across the app — you lose the grouping.',
+});
+export const NEST11_STRUCTURED_LOGS = ruleSnippet({
+    id: 'nest11.structured-logs',
+    title: 'JSON-structured logs in production (pino or nest-winston)',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'observability'],
+    appliesWhen: ['bootstrap', 'configure'],
+    content: 'Plug a structured logger (nestjs-pino or nest-winston) and route the Nest Logger through it. Production logs are JSON one-line records that ship cleanly into Loki / CloudWatch / Datadog. The default ConsoleLogger is fine for dev only.',
+});
+export const NEST11_NO_LOG_SECRETS = ruleSnippet({
+    id: 'nest11.no-log-secrets',
+    title: 'Never log secrets, tokens, PII, or full request bodies',
+    priority: 'critical',
+    tags: ['nestjs', 'nest-11', 'observability', 'security'],
+    appliesWhen: ['generate-code', 'review'],
+    content: 'Redact Authorization headers, JWTs, passwords, credit-card numbers, government IDs, and full request/response bodies that may contain user data. Configure the logger redact paths once (pino: redact: [\'req.headers.authorization\', \'body.password\']) so the discipline survives drive-by edits.',
+});
+export const NEST11_TERMINUS_HEALTH = ruleSnippet({
+    id: 'nest11.terminus-health',
+    title: 'Expose /health via @nestjs/terminus with liveness + readiness',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'observability'],
+    appliesWhen: ['generate-controller'],
+    content: 'Use @nestjs/terminus HealthCheckService to compose indicators (db.pingCheck, http.pingCheck, memory.heapCheck). Expose /health/liveness (process is up) AND /health/readiness (deps are reachable) separately — Kubernetes treats them differently. Don\'t return 200 from readiness when the DB is down.',
+});
+// ─── Testing: TestingModule + e2e ────────────────────────────────────────
+export const NEST11_TESTING_MODULE = ruleSnippet({
+    id: 'nest11.testing-module',
+    title: 'Unit tests use Test.createTestingModule + overrideProvider',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'testing'],
+    appliesWhen: ['generate-test'],
+    content: 'Build a TestingModule that imports the module under test, then `overrideProvider(SlowDep).useValue(mock)` for whatever you want to fake. Resolve the unit under test with `module.get(MyService)`. Avoid `new MyService(...)` outside of testing the constructor itself — DI is part of the contract.',
+});
+export const NEST11_E2E_SUPERTEST = ruleSnippet({
+    id: 'nest11.e2e-supertest',
+    title: 'E2E with supertest against the real AppModule',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'testing'],
+    appliesWhen: ['generate-test'],
+    content: 'E2E tests bootstrap a TestingModule from AppModule, build a Nest application, and drive it with supertest (`request(app.getHttpServer()).get(...)`). Override only the truly slow/expensive deps (external HTTP, message brokers); keep the validation pipeline, guards, and interceptors live — that\'s the contract being tested.',
+});
+export const NEST11_TEST_FILE_LAYOUT = ruleSnippet({
+    id: 'nest11.test-file-layout',
+    title: 'Unit specs co-located; e2e under test/',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'testing'],
+    appliesWhen: ['generate-test'],
+    content: 'Unit specs live next to the unit (`users.service.spec.ts` beside `users.service.ts`). E2E specs live under `test/*.e2e-spec.ts` — Nest\'s default jest-e2e.json glob matches that pattern. Don\'t mix the two; they have different setup costs and different debugging stories.',
+});
+// ─── API design ──────────────────────────────────────────────────────────
+export const NEST11_API_VERSIONING = ruleSnippet({
+    id: 'nest11.api-versioning',
+    title: 'Enable versioning when the contract is consumed externally',
+    priority: 'medium',
+    tags: ['nestjs', 'nest-11', 'api'],
+    appliesWhen: ['bootstrap', 'generate-controller'],
+    content: 'For any service whose API has external consumers, call `app.enableVersioning({ type: VersioningType.URI, defaultVersion: \'1\' })` at bootstrap. Annotate controllers with @Controller({ path: \'users\', version: \'1\' }). Breaking changes ship as v2 alongside v1 — never as a silent overwrite.',
+});
+export const NEST11_NO_QUERY_IN_CONTROLLER = ruleSnippet({
+    id: 'nest11.no-query-in-controller',
+    title: 'Never query the database from a controller',
+    priority: 'high',
+    tags: ['nestjs', 'nest-11', 'architecture'],
+    appliesWhen: ['generate-controller', 'review'],
+    content: 'Repositories are injected into services, not controllers. A controller that imports `Repository<User>` or `prisma.user` directly is on the path to a 600-line "controller that does everything" — back it out into a service.',
+});

package/dist/builtin/react19-presets.d.ts

@@ -0,0 +1,12 @@
+import type { IPreset } from '../model/preset.js';
+export declare const REACT_19_MODERN_COMPONENTS: IPreset;
+export declare const REACT_19_HOOKS_DISCIPLINE: IPreset;
+export declare const REACT_19_ACTIONS_FORMS: IPreset;
+export declare const REACT_19_STATE: IPreset;
+export declare const REACT_19_PERFORMANCE: IPreset;
+export declare const REACT_19_CONCURRENT: IPreset;
+export declare const REACT_19_TESTING: IPreset;
+export declare const REACT_19_RSC: IPreset;
+export declare const REACT_19_MODERN: IPreset;
+export declare const REACT_19_PRESETS: readonly IPreset[];
+//# sourceMappingURL=react19-presets.d.ts.map

package/dist/builtin/react19-presets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"react19-presets.d.ts","sourceRoot":"","sources":["../../src/builtin/react19-presets.ts"],"names":[],"mappings":"AAgBA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAmElD,eAAO,MAAM,0BAA0B,EAAE,OAgCvC,CAAC;AAIH,eAAO,MAAM,yBAAyB,EAAE,OA+BtC,CAAC;AAIH,eAAO,MAAM,sBAAsB,EAAE,OA8BnC,CAAC;AAIH,eAAO,MAAM,cAAc,EAAE,OA6B3B,CAAC;AAIH,eAAO,MAAM,oBAAoB,EAAE,OA6BjC,CAAC;AAIH,eAAO,MAAM,mBAAmB,EAAE,OA6BhC,CAAC;AAIH,eAAO,MAAM,gBAAgB,EAAE,OA4B7B,CAAC;AAIH,eAAO,MAAM,YAAY,EAAE,OA6BzB,CAAC;AAIH,eAAO,MAAM,eAAe,EAAE,OA8C5B,CAAC;AAEH,eAAO,MAAM,gBAAgB,EAAE,SAAS,OAAO,EAU7C,CAAC"}