@sk8metal/michi-cli 0.3.0 → 0.5.0

package/scripts/utils/interactive-helpers.ts

@@ -0,0 +1,135 @@
+/**
+ * 対話的設定の共通ヘルパー関数
+ */
+
+import * as readline from 'readline';
+
+/**
+ * readlineインターフェースを作成
+ */
+export function createInterface(): readline.Interface {
+  return readline.createInterface({
+    input: process.stdin,
+    output: process.stdout,
+  });
+}
+
+/**
+ * 質問を表示して回答を取得
+ */
+export function question(rl: readline.Interface, query: string): Promise<string> {
+  return new Promise((resolve) => {
+    rl.question(query, (answer) => {
+      resolve(answer.trim());
+    });
+  });
+}
+
+/**
+ * 選択肢から選択
+ */
+export async function select(
+  rl: readline.Interface,
+  prompt: string,
+  choices: Array<{ value: string; label: string; description?: string }>,
+  defaultValue?: string,
+  maxRetries: number = 3,
+): Promise<string> {
+  if (choices.length === 0) {
+    throw new Error('select: choices must contain at least one option');
+  }
+
+  console.log(`\n${prompt}`);
+  choices.forEach((choice, index) => {
+    const defaultMark = defaultValue === choice.value ? ' (デフォルト)' : '';
+    const desc = choice.description ? ` - ${choice.description}` : '';
+    console.log(`  ${index + 1}. ${choice.label}${desc}${defaultMark}`);
+  });
+
+  const answer = await question(
+    rl,
+    `\n選択してください [1-${choices.length}]: `,
+  );
+
+  if (!answer && defaultValue) {
+    return defaultValue;
+  }
+
+  const index = parseInt(answer, 10) - 1;
+  if (index >= 0 && index < choices.length) {
+    return choices[index].value;
+  }
+
+  if (defaultValue) {
+    return defaultValue;
+  }
+
+  // 無効な入力の場合は再試行（最大試行回数まで）
+  if (maxRetries > 0) {
+    console.log(
+      `⚠️  無効な選択です。もう一度入力してください（残り試行回数: ${maxRetries}）。`,
+    );
+    return select(rl, prompt, choices, defaultValue, maxRetries - 1);
+  }
+
+  // 最大試行回数に達した場合はデフォルト値または最初の選択肢を返す
+  // 注: choices.length > 0 は関数冒頭で保証されている
+  const fallbackValue = defaultValue || choices[0].value;
+  console.log(
+    `⚠️  最大試行回数に達しました。デフォルト値を使用します: ${fallbackValue}`,
+  );
+  return fallbackValue;
+}
+
+/**
+ * Yes/No質問
+ */
+export async function confirm(
+  rl: readline.Interface,
+  prompt: string,
+  defaultValue: boolean = true,
+): Promise<boolean> {
+  const defaultText = defaultValue ? '[Y/n]' : '[y/N]';
+  const answer = await question(rl, `${prompt} ${defaultText}: `);
+
+  if (!answer) {
+    return defaultValue;
+  }
+
+  return answer.toLowerCase() === 'y' || answer.toLowerCase() === 'yes';
+}
+
+/**
+ * 複数選択
+ */
+export async function multiSelect(
+  rl: readline.Interface,
+  prompt: string,
+  choices: Array<{ value: string; label: string }>,
+  defaults: string[] = [],
+): Promise<string[]> {
+  console.log(`\n${prompt}`);
+  choices.forEach((choice, index) => {
+    const checked = defaults.includes(choice.value) ? '[x]' : '[ ]';
+    console.log(`  ${checked} ${index + 1}. ${choice.label}`);
+  });
+
+  const answer = await question(
+    rl,
+    '\n選択してください（カンマ区切り、例: 1,2,3）: ',
+  );
+
+  if (!answer && defaults.length > 0) {
+    return defaults;
+  }
+
+  if (!answer) {
+    return [];
+  }
+
+  const indices = answer
+    .split(',')
+    .map((s) => parseInt(s.trim(), 10) - 1)
+    .filter((i) => i >= 0 && i < choices.length);
+  return indices.map((i) => choices[i].value);
+}

package/scripts/utils/jira-issue-type-fetcher.ts

@@ -100,38 +100,46 @@ export async function getProjectIssueTypes(
     });
 
     const issueTypes = response.data.issueTypes || [];
-    
-    return issueTypes.map((it: any) => ({
+
+    return issueTypes.map((it: Partial<IssueTypeInfo> & { id: string; name: string }) => ({
       id: it.id,
       name: it.name,
       description: it.description || undefined,
       iconUrl: it.iconUrl || undefined,
       subtask: it.subtask || false
     }));
-  } catch (error: any) {
+  } catch (error: unknown) {
     // エラーをログに記録（デバッグ用）
-    if (error.response) {
-      // HTTPエラー（4xx, 5xx）
-      const status = error.response.status;
-      const statusText = error.response.statusText;
-      
-      if (status === 401) {
-        console.error('❌ JIRA認証に失敗しました。認証情報を確認してください。');
-      } else if (status === 403) {
-        console.error('❌ JIRAへのアクセス権限がありません。');
-      } else if (status === 404) {
-        console.error(`❌ JIRAプロジェクト "${projectKey}" が見つかりません。`);
+    // axios.isAxiosError()またはerror.response/requestの存在で判定
+    if (axios.isAxiosError(error) || (typeof error === 'object' && error !== null && ('response' in error || 'request' in error))) {
+      const axiosError = error as { response?: { status: number; statusText: string }; request?: unknown; message?: string };
+      if (axiosError.response) {
+        // HTTPエラー（4xx, 5xx）
+        const status = axiosError.response.status;
+        const statusText = axiosError.response.statusText;
+
+        if (status === 401) {
+          console.error('❌ JIRA認証に失敗しました。認証情報を確認してください。');
+        } else if (status === 403) {
+          console.error('❌ JIRAへのアクセス権限がありません。');
+        } else if (status === 404) {
+          console.error(`❌ JIRAプロジェクト "${projectKey}" が見つかりません。`);
+        } else {
+          console.error(`❌ JIRA APIエラー: ${status} ${statusText}`);
+        }
+      } else if (axiosError.request) {
+        // ネットワークエラー
+        console.error('❌ JIRA APIへの接続に失敗しました。ネットワークを確認してください。');
       } else {
-        console.error(`❌ JIRA APIエラー: ${status} ${statusText}`);
+        // その他のエラー
+        const message = axiosError.message || String(error);
+        console.error(`❌ エラー: ${message}`);
       }
-    } else if (error.request) {
-      // ネットワークエラー
-      console.error('❌ JIRA APIへの接続に失敗しました。ネットワークを確認してください。');
     } else {
-      // その他のエラー
-      console.error(`❌ エラー: ${error.message}`);
+      const message = error instanceof Error ? error.message : String(error);
+      console.error(`❌ エラー: ${message}`);
     }
-    
+
     return null;
   }
 }

package/scripts/utils/project-meta.ts

@@ -67,3 +67,30 @@ Team: ${meta.team.join(', ')}
 `.trim();
 }
 
+/**
+ * GitHub リポジトリ情報を取得
+ * repository フィールドから owner/repo 形式を抽出
+ *
+ * @param projectRoot プロジェクトルートディレクトリ（デフォルト: カレントディレクトリ）
+ * @returns owner/repo 形式のリポジトリ情報
+ * @throws リポジトリ情報が見つからない、または無効な形式の場合
+ */
+export function getRepositoryInfo(projectRoot: string = process.cwd()): string {
+  const meta = loadProjectMeta(projectRoot);
+
+  if (!meta.repository) {
+    throw new Error('Repository information not found in project.json');
+  }
+
+  // URL形式から owner/repo を抽出
+  // 例: https://github.com/owner/repo.git -> owner/repo
+  // 例: git@github.com:owner/repo.git -> owner/repo
+  const match = meta.repository.match(/github\.com[:/]([\w-]+\/[\w-]+)(\.git)?/);
+
+  if (!match) {
+    throw new Error(`Invalid GitHub repository format: ${meta.repository}`);
+  }
+
+  return match[1];
+}
+

package/scripts/utils/release-notes-generator.ts

@@ -101,8 +101,9 @@ export async function getCommits(
     }
 
     return commits;
-  } catch (error: any) {
-    console.error('Failed to get commits:', error.message);
+  } catch (error: unknown) {
+    const message = error instanceof Error ? error.message : String(error);
+    console.error('Failed to get commits:', message);
     return [];
   }
 }

package/scripts/utils/security-validator.ts

@@ -0,0 +1,286 @@
+/**
+ * security-validator.ts
+ * セキュリティ検証ユーティリティ
+ *
+ * 環境変数やAPIトークンなど機密情報のバリデーションとセキュリティチェックを行います。
+ */
+
+import { statSync } from 'fs';
+
+/**
+ * バリデーション結果
+ */
+export interface ValidationResult {
+  isValid: boolean;
+  errors: string[];
+  warnings: string[];
+}
+
+/**
+ * APIトークン形式の検証
+ */
+export function validateAtlassianToken(token: string): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  if (!token || token.trim() === '') {
+    errors.push('Atlassian API token is empty');
+    return { isValid: false, errors, warnings };
+  }
+
+  if (token.includes(' ')) {
+    errors.push('Atlassian API token contains spaces');
+  }
+
+  if (token === 'your-token-here' || token === 'test-token' || token === 'token123') {
+    errors.push('Atlassian API token is a placeholder value');
+  }
+
+  if (token.length < 20) {
+    warnings.push('Atlassian API token seems too short (expected >20 characters)');
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}
+
+/**
+ * GitHub Personal Access Token の検証
+ */
+export function validateGitHubToken(token: string): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  if (!token || token.trim() === '') {
+    errors.push('GitHub token is empty');
+  } else if (token.includes(' ')) {
+    errors.push('GitHub token contains spaces');
+  } else if (!token.startsWith('ghp_') && !token.startsWith('github_pat_')) {
+    warnings.push('GitHub token does not start with expected prefix (ghp_ or github_pat_)');
+  } else if (token === 'ghp_xxx' || token === 'your-github-token' || token === 'github-token') {
+    errors.push('GitHub token is a placeholder value');
+  } else if (token.length < 30) {
+    warnings.push('GitHub token seems too short');
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}
+
+/**
+ * メールアドレス形式の検証
+ */
+export function validateEmail(email: string): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  if (!email || email.trim() === '') {
+    errors.push('Email is empty');
+  } else {
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (!emailRegex.test(email)) {
+      errors.push('Email format is invalid');
+    } else if (
+      email === 'user@example.com' ||
+      email.includes('your-email') ||
+      email === 'test@example.com'
+    ) {
+      errors.push('Email is a placeholder value');
+    }
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}
+
+/**
+ * URL形式の検証
+ */
+export function validateUrl(url: string, expectedDomain?: string): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  if (!url || url.trim() === '') {
+    errors.push('URL is empty');
+  } else {
+    try {
+      const parsedUrl = new URL(url);
+
+      if (parsedUrl.protocol !== 'https:' && parsedUrl.protocol !== 'http:') {
+        errors.push(`Invalid URL protocol: ${parsedUrl.protocol} (expected https: or http:)`);
+      }
+
+      if (parsedUrl.protocol === 'http:') {
+        warnings.push('URL uses insecure http:// protocol (consider using https://)');
+      }
+
+      if (expectedDomain && !parsedUrl.hostname.includes(expectedDomain)) {
+        errors.push(`URL hostname ${parsedUrl.hostname} does not contain expected domain: ${expectedDomain}`);
+      }
+
+      if (url === 'https://example.com' || url === 'https://your-domain.atlassian.net') {
+        errors.push('URL is a placeholder value');
+      }
+    } catch (error) {
+      errors.push(`URL parsing failed: ${error instanceof Error ? error.message : error}`);
+    }
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}
+
+/**
+ * Atlassian URL の検証
+ */
+export function validateAtlassianUrl(url: string): ValidationResult {
+  const result = validateUrl(url, 'atlassian.net');
+
+  if (result.isValid) {
+    try {
+      const parsedUrl = new URL(url);
+      if (!parsedUrl.hostname.endsWith('.atlassian.net')) {
+        result.errors.push('Atlassian URL must end with .atlassian.net');
+        result.isValid = false;
+      }
+    } catch {
+      // Already handled in validateUrl
+    }
+  }
+
+  return result;
+}
+
+/**
+ * GitHub リポジトリ URL の検証
+ */
+export function validateGitHubRepositoryUrl(url: string): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  if (!url || url.trim() === '') {
+    errors.push('Repository URL is empty');
+  } else {
+    // GitHub URL 形式のパターン
+    const httpsPattern = /^https:\/\/github\.com\/[\w-]+\/[\w-]+(\.git)?$/;
+    const sshPattern = /^git@github\.com:[\w-]+\/[\w-]+(\.git)?$/;
+
+    if (!httpsPattern.test(url) && !sshPattern.test(url)) {
+      errors.push(
+        'Repository URL must be in format: https://github.com/owner/repo.git or git@github.com:owner/repo.git',
+      );
+    }
+
+    if (url.includes('your-org') || url.includes('your-repo')) {
+      errors.push('Repository URL contains placeholder values');
+    }
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}
+
+/**
+ * 環境変数の包括的検証
+ */
+export interface EnvValidationConfig {
+  atlassianUrl?: string;
+  atlassianEmail?: string;
+  atlassianApiToken?: string;
+  githubOrg?: string;
+  githubToken?: string;
+  repositoryUrl?: string;
+}
+
+export function validateEnvironmentConfig(config: EnvValidationConfig): ValidationResult {
+  const allErrors: string[] = [];
+  const allWarnings: string[] = [];
+
+  if (config.atlassianUrl !== undefined) {
+    const result = validateAtlassianUrl(config.atlassianUrl);
+    allErrors.push(...result.errors.map((e) => `ATLASSIAN_URL: ${e}`));
+    allWarnings.push(...result.warnings.map((w) => `ATLASSIAN_URL: ${w}`));
+  }
+
+  if (config.atlassianEmail !== undefined) {
+    const result = validateEmail(config.atlassianEmail);
+    allErrors.push(...result.errors.map((e) => `ATLASSIAN_EMAIL: ${e}`));
+    allWarnings.push(...result.warnings.map((w) => `ATLASSIAN_EMAIL: ${w}`));
+  }
+
+  if (config.atlassianApiToken !== undefined) {
+    const result = validateAtlassianToken(config.atlassianApiToken);
+    allErrors.push(...result.errors.map((e) => `ATLASSIAN_API_TOKEN: ${e}`));
+    allWarnings.push(...result.warnings.map((w) => `ATLASSIAN_API_TOKEN: ${w}`));
+  }
+
+  if (config.githubOrg !== undefined) {
+    if (!config.githubOrg || config.githubOrg.trim() === '') {
+      allErrors.push('GITHUB_ORG: GitHub organization is empty');
+    } else if (config.githubOrg.includes('your-org')) {
+      allErrors.push('GITHUB_ORG: GitHub organization is a placeholder value');
+    }
+  }
+
+  if (config.githubToken !== undefined) {
+    const result = validateGitHubToken(config.githubToken);
+    allErrors.push(...result.errors.map((e) => `GITHUB_TOKEN: ${e}`));
+    allWarnings.push(...result.warnings.map((w) => `GITHUB_TOKEN: ${w}`));
+  }
+
+  if (config.repositoryUrl !== undefined) {
+    const result = validateGitHubRepositoryUrl(config.repositoryUrl);
+    allErrors.push(...result.errors.map((e) => `repository: ${e}`));
+    allWarnings.push(...result.warnings.map((w) => `repository: ${w}`));
+  }
+
+  return {
+    isValid: allErrors.length === 0,
+    errors: allErrors,
+    warnings: allWarnings,
+  };
+}
+
+/**
+ * ファイルパーミッションの検証（Unix系のみ）
+ */
+export function validateFilePermissions(filePath: string, expectedMode: number = 0o600): ValidationResult {
+  const errors: string[] = [];
+  const warnings: string[] = [];
+
+  try {
+    const stats = statSync(filePath);
+    const actualMode = stats.mode & 0o777;
+
+    if (actualMode !== expectedMode) {
+      const actualOctal = actualMode.toString(8);
+      const expectedOctal = expectedMode.toString(8);
+      warnings.push(
+        `File permissions are ${actualOctal} but should be ${expectedOctal} for security. Run: chmod ${expectedOctal} ${filePath}`,
+      );
+    }
+  } catch (error) {
+    errors.push(`Failed to check file permissions: ${error instanceof Error ? error.message : error}`);
+  }
+
+  return {
+    isValid: errors.length === 0,
+    errors,
+    warnings,
+  };
+}

package/scripts/utils/spec-updater.ts

@@ -29,12 +29,24 @@ export interface SpecJson {
       url?: string;
       title?: string;
     };
+    // 旧形式フィールド（後方互換性のため）
+    requirementsPageId?: string;
+    requirementsUrl?: string;
+    designPageId?: string;
+    designUrl?: string;
+    tasksPageId?: string;
+    tasksUrl?: string;
   };
   jira?: {
     projectKey?: string;
     epicKey?: string;
     epicUrl?: string;
     storyKeys?: string[];
+    // 旧形式フィールド（後方互換性のため）
+    stories?: {
+      created?: number;
+      total?: number;
+    };
   };
   environmentSetup?: {
     completed?: boolean;
@@ -48,6 +60,16 @@ export interface SpecJson {
     designCompleted?: boolean;
     tasksCompleted?: boolean;
     jiraSyncCompleted?: boolean;
+    // 旧形式フィールド（後方互換性のため）
+    requirements?: {
+      completed?: boolean;
+    };
+    design?: {
+      completed?: boolean;
+    };
+    tasks?: {
+      completed?: boolean;
+    };
   };
   lastUpdated?: string;
 }
@@ -144,14 +166,14 @@ export function updateSpecJsonAfterConfluenceSync(
 
   // 旧形式（後方互換性のため併記）
   if (docType === 'requirements') {
-    (spec.confluence as any).requirementsPageId = pageInfo.pageId;
-    (spec.confluence as any).requirementsUrl = pageInfo.url;
+    spec.confluence.requirementsPageId = pageInfo.pageId;
+    spec.confluence.requirementsUrl = pageInfo.url;
   } else if (docType === 'design') {
-    (spec.confluence as any).designPageId = pageInfo.pageId;
-    (spec.confluence as any).designUrl = pageInfo.url;
+    spec.confluence.designPageId = pageInfo.pageId;
+    spec.confluence.designUrl = pageInfo.url;
   } else if (docType === 'tasks') {
-    (spec.confluence as any).tasksPageId = pageInfo.pageId;
-    (spec.confluence as any).tasksUrl = pageInfo.url;
+    spec.confluence.tasksPageId = pageInfo.pageId;
+    spec.confluence.tasksUrl = pageInfo.url;
   }
 
   // マイルストーンを更新
@@ -163,24 +185,24 @@ export function updateSpecJsonAfterConfluenceSync(
   if (docType === 'requirements') {
     spec.milestones.requirementsCompleted = true;
     // 旧形式（後方互換性のため併記）
-    if (!(spec.milestones as any).requirements) {
-      (spec.milestones as any).requirements = {};
+    if (!spec.milestones.requirements) {
+      spec.milestones.requirements = {};
     }
-    (spec.milestones as any).requirements.completed = true;
+    spec.milestones.requirements.completed = true;
   } else if (docType === 'design') {
     spec.milestones.designCompleted = true;
     // 旧形式（後方互換性のため併記）
-    if (!(spec.milestones as any).design) {
-      (spec.milestones as any).design = {};
+    if (!spec.milestones.design) {
+      spec.milestones.design = {};
     }
-    (spec.milestones as any).design.completed = true;
+    spec.milestones.design.completed = true;
   } else if (docType === 'tasks') {
     spec.milestones.tasksCompleted = true;
     // 旧形式（後方互換性のため併記）
-    if (!(spec.milestones as any).tasks) {
-      (spec.milestones as any).tasks = {};
+    if (!spec.milestones.tasks) {
+      spec.milestones.tasks = {};
     }
-    (spec.milestones as any).tasks.completed = true;
+    spec.milestones.tasks.completed = true;
   }
 
   saveSpecJson(featureName, spec, projectRoot);

package/scripts/utils/tasks-converter.ts

@@ -4,8 +4,7 @@
  * AI-DLC形式のtasks.mdをMichiが期待するPhase構造に変換
  */
 
-import { writeFileSync, copyFileSync, existsSync } from 'fs';
-import { join, dirname } from 'path';
+import { writeFileSync, copyFileSync } from 'fs';
 import type {
   AIDLCDocument,
   AIDLCCategory,
@@ -20,7 +19,6 @@ import { readFileSync } from 'fs';
 import {
   getWeekdayNotation,
   getWeekdayRangeNotation,
-  getWeekNumber,
   ensureBusinessDay,
 } from './business-days.js';
 
@@ -77,8 +75,8 @@ interface PhaseMapping {
  */
 function mapCategoryToPhase(
   category: AIDLCCategory,
-  index: number,
-  totalCategories: number,
+  _index: number,
+  _totalCategories: number,
 ): PhaseMapping {
   const title = category.title.toLowerCase();
 
@@ -364,7 +362,7 @@ export function convertToMichiFormat(
     const group = phaseGroups.get(mapping.phaseId)!;
 
     // タスクをStoryに変換
-    category.tasks.forEach((task, taskIndex) => {
+    category.tasks.forEach(task => {
       const storyContent = convertTaskToStory(
         task,
         mapping.phaseId,

package/scripts/utils/tasks-format-validator.ts

@@ -41,19 +41,6 @@ export function validateTasksFormat(tasksPath: string): void {
 
   // 2. フェーズ構造の検証（新旧両方をサポート）
 
-  // 新ワークフロー構造（推奨）
-  const newWorkflowPhases = [
-    'Phase 0.1:', // 要件定義
-    'Phase 0.2:', // 設計
-    'Phase 1:',   // 環境構築（任意）
-    'Phase 2:',   // TDD実装
-    'Phase A:',   // PR前自動テスト（任意）
-    'Phase 3:',   // 追加QA（任意）
-    'Phase B:',   // リリース準備テスト（任意）
-    'Phase 4:',   // リリース準備
-    'Phase 5:',   // リリース
-  ];
-
   // 旧6-Phase構造（互換性のためサポート）
   const legacyPhases = [
     'Phase 0: 要件定義（Requirements）',