npm - @su-record/vibe - Versions diffs - 2.6.14 → 2.6.16 - Mend

@su-record/vibe 2.6.14 → 2.6.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (233) hide show

package/CLAUDE.md +1 -394
package/LICENSE +21 -21
package/README.md +203 -497
package/agents/architect-low.md +41 -41
package/agents/architect-medium.md +59 -59
package/agents/architect.md +80 -80
package/agents/build-error-resolver.md +115 -115
package/agents/compounder.md +261 -261
package/agents/diagrammer.md +178 -178
package/agents/e2e-tester.md +266 -266
package/agents/explorer-low.md +42 -42
package/agents/explorer-medium.md +59 -59
package/agents/explorer.md +48 -48
package/agents/implementer-low.md +43 -43
package/agents/implementer-medium.md +52 -52
package/agents/implementer.md +54 -54
package/agents/refactor-cleaner.md +143 -143
package/agents/research/best-practices-agent.md +199 -199
package/agents/research/codebase-patterns-agent.md +157 -157
package/agents/research/framework-docs-agent.md +188 -188
package/agents/research/security-advisory-agent.md +213 -213
package/agents/review/architecture-reviewer.md +107 -107
package/agents/review/complexity-reviewer.md +116 -116
package/agents/review/data-integrity-reviewer.md +88 -88
package/agents/review/git-history-reviewer.md +103 -103
package/agents/review/performance-reviewer.md +86 -86
package/agents/review/python-reviewer.md +150 -150
package/agents/review/rails-reviewer.md +139 -139
package/agents/review/react-reviewer.md +144 -144
package/agents/review/security-reviewer.md +80 -80
package/agents/review/simplicity-reviewer.md +140 -140
package/agents/review/test-coverage-reviewer.md +116 -116
package/agents/review/typescript-reviewer.md +127 -127
package/agents/searcher.md +54 -54
package/agents/simplifier.md +120 -120
package/agents/tester.md +49 -49
package/agents/ui-previewer.md +268 -268
package/commands/vibe.analyze.md +356 -356
package/commands/vibe.reason.md +329 -329
package/commands/vibe.review.md +412 -412
package/commands/vibe.run.md +1266 -1266
package/commands/vibe.spec.md +1054 -1054
package/commands/vibe.spec.review.md +319 -319
package/commands/vibe.trace.md +161 -161
package/commands/vibe.utils.md +376 -376
package/commands/vibe.verify.md +375 -375
package/dist/cli/collaborator.js +52 -52
package/dist/cli/detect.js +32 -32
package/dist/cli/hud.js +20 -20
package/dist/cli/index.js +118 -118
package/dist/cli/index.js.map +1 -1
package/dist/cli/llm.js +144 -144
package/dist/cli/mcp.d.ts +49 -0
package/dist/cli/mcp.d.ts.map +1 -0
package/dist/cli/mcp.js +169 -0
package/dist/cli/mcp.js.map +1 -0
package/dist/cli/postinstall.js +858 -858
package/dist/cli/setup/ProjectSetup.d.ts +3 -3
package/dist/cli/setup/ProjectSetup.d.ts.map +1 -1
package/dist/cli/setup/ProjectSetup.js +76 -30
package/dist/cli/setup/ProjectSetup.js.map +1 -1
package/dist/lib/DeepInit.js +24 -24
package/dist/lib/IterationTracker.js +11 -11
package/dist/lib/PythonParser.js +108 -108
package/dist/lib/ReviewRace.js +96 -96
package/dist/lib/SkillFrontmatter.js +28 -28
package/dist/lib/SkillQualityGate.js +9 -9
package/dist/lib/SkillRepository.js +159 -159
package/dist/lib/UltraQA.js +77 -77
package/dist/lib/gemini-api.js +5 -5
package/dist/lib/gemini-mcp.d.ts +10 -0
package/dist/lib/gemini-mcp.d.ts.map +1 -0
package/dist/lib/gemini-mcp.js +353 -0
package/dist/lib/gemini-mcp.js.map +1 -0
package/dist/lib/gpt-api.js +4 -4
package/dist/lib/gpt-mcp.d.ts +10 -0
package/dist/lib/gpt-mcp.d.ts.map +1 -0
package/dist/lib/gpt-mcp.js +352 -0
package/dist/lib/gpt-mcp.js.map +1 -0
package/dist/lib/memory/KnowledgeGraph.js +4 -4
package/dist/lib/memory/MemorySearch.js +20 -20
package/dist/lib/memory/MemoryStorage.js +64 -64
package/dist/orchestrator/AgentManager.js +12 -12
package/dist/orchestrator/MultiLlmResearch.js +8 -8
package/dist/orchestrator/SmartRouter.js +11 -11
package/dist/orchestrator/parallelResearch.js +24 -24
package/dist/tools/analytics/getUsageAnalytics.d.ts +10 -0
package/dist/tools/analytics/getUsageAnalytics.d.ts.map +1 -0
package/dist/tools/analytics/getUsageAnalytics.js +246 -0
package/dist/tools/analytics/getUsageAnalytics.js.map +1 -0
package/dist/tools/analytics/index.d.ts +5 -0
package/dist/tools/analytics/index.d.ts.map +1 -0
package/dist/tools/analytics/index.js +5 -0
package/dist/tools/analytics/index.js.map +1 -0
package/dist/tools/convention/analyzeComplexity.test.js +115 -115
package/dist/tools/convention/getCodingGuide.d.ts +7 -0
package/dist/tools/convention/getCodingGuide.d.ts.map +1 -0
package/dist/tools/convention/getCodingGuide.js +69 -0
package/dist/tools/convention/getCodingGuide.js.map +1 -0
package/dist/tools/convention/validateCodeQuality.test.js +104 -104
package/dist/tools/planning/analyzeRequirements.d.ts +9 -0
package/dist/tools/planning/analyzeRequirements.d.ts.map +1 -0
package/dist/tools/planning/analyzeRequirements.js +171 -0
package/dist/tools/planning/analyzeRequirements.js.map +1 -0
package/dist/tools/planning/createUserStories.d.ts +9 -0
package/dist/tools/planning/createUserStories.d.ts.map +1 -0
package/dist/tools/planning/createUserStories.js +124 -0
package/dist/tools/planning/createUserStories.js.map +1 -0
package/dist/tools/planning/featureRoadmap.d.ts +10 -0
package/dist/tools/planning/featureRoadmap.d.ts.map +1 -0
package/dist/tools/planning/featureRoadmap.js +207 -0
package/dist/tools/planning/featureRoadmap.js.map +1 -0
package/dist/tools/planning/generatePrd.d.ts +11 -0
package/dist/tools/planning/generatePrd.d.ts.map +1 -0
package/dist/tools/planning/generatePrd.js +161 -0
package/dist/tools/planning/generatePrd.js.map +1 -0
package/dist/tools/planning/index.d.ts +8 -0
package/dist/tools/planning/index.d.ts.map +1 -0
package/dist/tools/planning/index.js +8 -0
package/dist/tools/planning/index.js.map +1 -0
package/dist/tools/prompt/analyzePrompt.d.ts +7 -0
package/dist/tools/prompt/analyzePrompt.d.ts.map +1 -0
package/dist/tools/prompt/analyzePrompt.js +150 -0
package/dist/tools/prompt/analyzePrompt.js.map +1 -0
package/dist/tools/prompt/enhancePrompt.d.ts +8 -0
package/dist/tools/prompt/enhancePrompt.d.ts.map +1 -0
package/dist/tools/prompt/enhancePrompt.js +110 -0
package/dist/tools/prompt/enhancePrompt.js.map +1 -0
package/dist/tools/prompt/enhancePromptGemini.d.ts +8 -0
package/dist/tools/prompt/enhancePromptGemini.d.ts.map +1 -0
package/dist/tools/prompt/enhancePromptGemini.js +332 -0
package/dist/tools/prompt/enhancePromptGemini.js.map +1 -0
package/dist/tools/prompt/index.d.ts +7 -0
package/dist/tools/prompt/index.d.ts.map +1 -0
package/dist/tools/prompt/index.js +7 -0
package/dist/tools/prompt/index.js.map +1 -0
package/dist/tools/reasoning/applyReasoningFramework.d.ts +8 -0
package/dist/tools/reasoning/applyReasoningFramework.d.ts.map +1 -0
package/dist/tools/reasoning/applyReasoningFramework.js +266 -0
package/dist/tools/reasoning/applyReasoningFramework.js.map +1 -0
package/dist/tools/reasoning/index.d.ts +5 -0
package/dist/tools/reasoning/index.d.ts.map +1 -0
package/dist/tools/reasoning/index.js +5 -0
package/dist/tools/reasoning/index.js.map +1 -0
package/dist/tools/spec/prdParser.test.js +171 -171
package/dist/tools/spec/specGenerator.js +169 -169
package/dist/tools/spec/traceabilityMatrix.js +64 -64
package/dist/tools/spec/traceabilityMatrix.test.js +28 -28
package/dist/tools/thinking/analyzeProblem.d.ts +7 -0
package/dist/tools/thinking/analyzeProblem.d.ts.map +1 -0
package/dist/tools/thinking/analyzeProblem.js +55 -0
package/dist/tools/thinking/analyzeProblem.js.map +1 -0
package/dist/tools/thinking/breakDownProblem.d.ts +8 -0
package/dist/tools/thinking/breakDownProblem.d.ts.map +1 -0
package/dist/tools/thinking/breakDownProblem.js +145 -0
package/dist/tools/thinking/breakDownProblem.js.map +1 -0
package/dist/tools/thinking/createThinkingChain.d.ts +7 -0
package/dist/tools/thinking/createThinkingChain.d.ts.map +1 -0
package/dist/tools/thinking/createThinkingChain.js +44 -0
package/dist/tools/thinking/createThinkingChain.js.map +1 -0
package/dist/tools/thinking/formatAsPlan.d.ts +9 -0
package/dist/tools/thinking/formatAsPlan.d.ts.map +1 -0
package/dist/tools/thinking/formatAsPlan.js +78 -0
package/dist/tools/thinking/formatAsPlan.js.map +1 -0
package/dist/tools/thinking/index.d.ts +10 -0
package/dist/tools/thinking/index.d.ts.map +1 -0
package/dist/tools/thinking/index.js +10 -0
package/dist/tools/thinking/index.js.map +1 -0
package/dist/tools/thinking/stepByStepAnalysis.d.ts +8 -0
package/dist/tools/thinking/stepByStepAnalysis.d.ts.map +1 -0
package/dist/tools/thinking/stepByStepAnalysis.js +63 -0
package/dist/tools/thinking/stepByStepAnalysis.js.map +1 -0
package/dist/tools/thinking/thinkAloudProcess.d.ts +8 -0
package/dist/tools/thinking/thinkAloudProcess.d.ts.map +1 -0
package/dist/tools/thinking/thinkAloudProcess.js +80 -0
package/dist/tools/thinking/thinkAloudProcess.js.map +1 -0
package/hooks/hooks.json +222 -222
package/hooks/scripts/code-check.js +22 -22
package/hooks/scripts/code-review.js +22 -22
package/hooks/scripts/complexity.js +22 -22
package/hooks/scripts/compound.js +23 -23
package/hooks/scripts/context-save.js +33 -33
package/hooks/scripts/gemini-ui-gen.js +281 -281
package/hooks/scripts/generate-brand-assets.js +474 -474
package/hooks/scripts/hud-multiline.js +262 -262
package/hooks/scripts/hud-status.js +291 -291
package/hooks/scripts/keyword-detector.js +214 -214
package/hooks/scripts/llm-orchestrate.js +171 -171
package/hooks/scripts/post-edit.js +97 -97
package/hooks/scripts/post-tool-verify.js +210 -210
package/hooks/scripts/pre-tool-guard.js +125 -125
package/hooks/scripts/recall.js +22 -22
package/hooks/scripts/session-start.js +30 -30
package/hooks/scripts/skill-injector.js +191 -191
package/hooks/scripts/utils.js +97 -97
package/languages/csharp-unity.md +515 -515
package/languages/gdscript-godot.md +470 -470
package/languages/ruby-rails.md +489 -489
package/languages/typescript-angular.md +433 -433
package/languages/typescript-astro.md +416 -416
package/languages/typescript-electron.md +406 -406
package/languages/typescript-nestjs.md +524 -524
package/languages/typescript-svelte.md +407 -407
package/languages/typescript-tauri.md +365 -365
package/package.json +84 -84
package/skills/brand-assets.md +141 -141
package/skills/commerce-patterns.md +361 -361
package/skills/context7-usage.md +102 -102
package/skills/e2e-commerce.md +304 -304
package/skills/frontend-design.md +92 -92
package/skills/git-worktree.md +181 -181
package/skills/parallel-research.md +77 -77
package/skills/priority-todos.md +239 -239
package/skills/seo-checklist.md +244 -244
package/skills/tool-fallback.md +190 -190
package/skills/vibe-capabilities.md +161 -161
package/vibe/constitution.md +227 -227
package/vibe/rules/core/communication-guide.md +98 -98
package/vibe/rules/core/development-philosophy.md +52 -52
package/vibe/rules/core/quick-start.md +102 -102
package/vibe/rules/quality/bdd-contract-testing.md +393 -393
package/vibe/rules/quality/checklist.md +276 -276
package/vibe/rules/quality/testing-strategy.md +440 -440
package/vibe/rules/standards/anti-patterns.md +541 -541
package/vibe/rules/standards/code-structure.md +291 -291
package/vibe/rules/standards/complexity-metrics.md +313 -313
package/vibe/rules/standards/naming-conventions.md +198 -198
package/vibe/setup.sh +31 -31
package/vibe/templates/constitution-template.md +252 -252
package/vibe/templates/contract-backend-template.md +526 -526
package/vibe/templates/contract-frontend-template.md +599 -599
package/vibe/templates/feature-template.md +96 -96
package/vibe/templates/spec-template.md +221 -221

package/skills/commerce-patterns.md CHANGED Viewed

@@ -1,361 +1,361 @@
----
-name: commerce-patterns
-description: "E-commerce domain patterns - cart, payment, inventory with transaction safety"
-triggers: [commerce, ecommerce, cart, payment, checkout, inventory, stock, order, pg, toss, stripe]
-priority: 70
----
-# Commerce Patterns Skill
-E-commerce domain patterns for reliable transactions.
-## When to Use
-- Shopping cart implementation
-- Payment integration (PG, Stripe, Toss)
-- Inventory/stock management
-- Order processing systems
-## Core Patterns
-### 1. Cart (Shopping Cart)
-#### State Model
-```typescript
-interface CartItem {
-  productId: string;
-  variantId?: string;
-  quantity: number;
-  price: number;           // Snapshot at add time
-  originalPrice: number;   // For comparison
-  addedAt: Date;
-}
-interface Cart {
-  id: string;
-  userId?: string;         // null for guest
-  sessionId: string;       // For guest merge
-  items: CartItem[];
-  couponCode?: string;
-  updatedAt: Date;
-  expiresAt: Date;         // Cart expiration
-}
-```
-#### Key Patterns
-| Pattern | Description |
-|---------|-------------|
-| **Guest → User Merge** | Merge localStorage cart on login |
-| **Price Snapshot** | Store price at add time, revalidate at checkout |
-| **Expiration** | Clear abandoned carts after N days |
-| **Validation** | Check stock/price at checkout entry |
-#### Implementation
-```typescript
-class CartService {
-  async addItem(cartId: string, item: AddItemRequest): Promise<Cart> {
-    // 1. Validate product exists and in stock
-    const product = await this.productService.get(item.productId);
-    if (!product || product.stock < item.quantity) {
-      throw new OutOfStockError();
-    }
-    // 2. Snapshot current price
-    const cartItem: CartItem = {
-      ...item,
-      price: product.currentPrice,
-      originalPrice: product.originalPrice,
-      addedAt: new Date(),
-    };
-    // 3. Add or update quantity
-    return this.cartRepository.upsertItem(cartId, cartItem);
-  }
-  async mergeGuestCart(userId: string, sessionId: string): Promise<Cart> {
-    const guestCart = await this.cartRepository.findBySession(sessionId);
-    const userCart = await this.cartRepository.findByUser(userId);
-    if (!guestCart) return userCart;
-    // Merge: user cart takes priority for duplicates
-    const merged = this.mergeItems(userCart.items, guestCart.items);
-    await this.cartRepository.delete(guestCart.id);
-    return this.cartRepository.update(userCart.id, { items: merged });
-  }
-}
-```
-### 2. Payment
-#### State Machine
-```
-PENDING → PROCESSING → AUTHORIZED → CAPTURED → COMPLETED
-                    ↘ FAILED
-                    ↘ CANCELED
-COMPLETED → REFUND_REQUESTED → REFUNDED (partial/full)
-```
-#### Idempotency Pattern (Critical)
-```typescript
-interface PaymentRequest {
-  orderId: string;
-  amount: number;
-  currency: string;
-  idempotencyKey: string;  // REQUIRED: `order_${orderId}_${timestamp}`
-  paymentMethod: PaymentMethod;
-}
-class PaymentService {
-  async processPayment(request: PaymentRequest): Promise<PaymentResult> {
-    // 1. Check idempotency - prevent duplicate charges
-    const existing = await this.paymentRepository.findByIdempotencyKey(
-      request.idempotencyKey
-    );
-    if (existing) {
-      return existing.result;  // Return cached result
-    }
-    // 2. Create payment record (PENDING)
-    const payment = await this.paymentRepository.create({
-      ...request,
-      status: 'PENDING',
-    });
-    try {
-      // 3. Call PG adapter
-      const pgResult = await this.pgAdapter.authorize(request);
-      // 4. Update status
-      return this.paymentRepository.update(payment.id, {
-        status: pgResult.success ? 'AUTHORIZED' : 'FAILED',
-        pgTransactionId: pgResult.transactionId,
-        result: pgResult,
-      });
-    } catch (error) {
-      await this.paymentRepository.update(payment.id, {
-        status: 'FAILED',
-        error: error.message,
-      });
-      throw error;
-    }
-  }
-}
-```
-#### PG Adapter Pattern
-```typescript
-interface PGAdapter {
-  authorize(request: PaymentRequest): Promise<PGResult>;
-  capture(transactionId: string): Promise<PGResult>;
-  cancel(transactionId: string): Promise<PGResult>;
-  refund(transactionId: string, amount?: number): Promise<PGResult>;
-}
-// Implementations
-class TossPaymentsAdapter implements PGAdapter { /* ... */ }
-class StripeAdapter implements PGAdapter { /* ... */ }
-class PortOneAdapter implements PGAdapter { /* ... */ }
-```
-#### Webhook Handling
-```typescript
-class PaymentWebhookHandler {
-  async handle(event: WebhookEvent): Promise<void> {
-    // 1. Verify signature
-    if (!this.verifySignature(event)) {
-      throw new UnauthorizedError();
-    }
-    // 2. Idempotency check - process each event only once
-    const processed = await this.eventStore.find(event.id);
-    if (processed) {
-      return;  // Already processed
-    }
-    // 3. Process event
-    await this.processEvent(event);
-    // 4. Mark as processed
-    await this.eventStore.save({
-      eventId: event.id,
-      processedAt: new Date(),
-    });
-  }
-}
-```
-### 3. Inventory (Stock Management)
-#### Reservation Pattern (Two-Phase)
-```typescript
-interface StockReservation {
-  id: string;
-  productId: string;
-  quantity: number;
-  orderId: string;
-  status: 'RESERVED' | 'COMMITTED' | 'RELEASED';
-  expiresAt: Date;         // Auto-release if not committed
-  createdAt: Date;
-}
-class InventoryService {
-  // Phase 1: Reserve stock (at checkout start)
-  async reserve(orderId: string, items: OrderItem[]): Promise<void> {
-    for (const item of items) {
-      // Atomic decrement with check
-      const result = await this.db.query(`
-        UPDATE products
-        SET reserved_stock = reserved_stock + $1
-        WHERE id = $2
-          AND (available_stock - reserved_stock) >= $1
-        RETURNING *
-      `, [item.quantity, item.productId]);
-      if (result.rowCount === 0) {
-        // Rollback previous reservations
-        await this.releaseAll(orderId);
-        throw new InsufficientStockError(item.productId);
-      }
-      await this.reservationRepository.create({
-        orderId,
-        productId: item.productId,
-        quantity: item.quantity,
-        status: 'RESERVED',
-        expiresAt: addMinutes(new Date(), 15),  // 15min hold
-      });
-    }
-  }
-  // Phase 2: Commit stock (after payment success)
-  async commit(orderId: string): Promise<void> {
-    const reservations = await this.reservationRepository.findByOrder(orderId);
-    for (const reservation of reservations) {
-      await this.db.query(`
-        UPDATE products
-        SET
-          available_stock = available_stock - $1,
-          reserved_stock = reserved_stock - $1
-        WHERE id = $2
-      `, [reservation.quantity, reservation.productId]);
-      await this.reservationRepository.update(reservation.id, {
-        status: 'COMMITTED',
-      });
-    }
-  }
-  // Rollback: Release stock (payment failed or timeout)
-  async release(orderId: string): Promise<void> {
-    const reservations = await this.reservationRepository.findByOrder(orderId);
-    for (const reservation of reservations) {
-      if (reservation.status === 'RESERVED') {
-        await this.db.query(`
-          UPDATE products
-          SET reserved_stock = reserved_stock - $1
-          WHERE id = $2
-        `, [reservation.quantity, reservation.productId]);
-        await this.reservationRepository.update(reservation.id, {
-          status: 'RELEASED',
-        });
-      }
-    }
-  }
-}
-```
-#### Concurrency Control
-```typescript
-// Option 1: Optimistic Locking
-await db.query(`
-  UPDATE products
-  SET stock = stock - $1, version = version + 1
-  WHERE id = $2 AND version = $3 AND stock >= $1
-`, [quantity, productId, expectedVersion]);
-// Option 2: Pessimistic Locking (for high contention)
-await db.query(`
-  SELECT * FROM products WHERE id = $1 FOR UPDATE
-`, [productId]);
-// Option 3: Redis Distributed Lock
-const lock = await redlock.lock(`stock:${productId}`, 5000);
-try {
-  // Update stock
-} finally {
-  await lock.unlock();
-}
-```
-## Order Flow (Complete)
-```
-┌─────────────────────────────────────────────────────────────┐
-│  CHECKOUT FLOW                                              │
-├─────────────────────────────────────────────────────────────┤
-│                                                             │
-│  1. Cart Validation                                         │
-│     └─ Revalidate prices, check stock availability          │
-│                                                             │
-│  2. Order Creation (PENDING)                                │
-│     └─ Generate orderId, snapshot cart                      │
-│                                                             │
-│  3. Stock Reservation                                       │
-│     └─ Reserve inventory (15min hold)                       │
-│                                                             │
-│  4. Payment Processing                                      │
-│     ├─ Success → Order PAID, Stock COMMIT                   │
-│     └─ Failure → Order FAILED, Stock RELEASE                │
-│                                                             │
-│  5. Order Confirmation                                      │
-│     └─ Send notification, trigger fulfillment               │
-│                                                             │
-└─────────────────────────────────────────────────────────────┘
-```
-## Common Bugs & Prevention
-| Bug | Cause | Prevention |
-|-----|-------|------------|
-| **Duplicate payment** | User double-click, webhook retry | Idempotency key |
-| **Negative stock** | Race condition | Atomic update with check |
-| **Price mismatch** | Price changed during checkout | Snapshot + revalidation |
-| **Orphan reservation** | Payment timeout without release | TTL + scheduled cleanup |
-| **Lost webhook** | Network failure | Retry + idempotent handler |
-| **Order state corruption** | Concurrent updates | State machine + versioning |
-## Integration with /vibe.run
-During commerce feature implementation:
-1. **Phase 1**: Define domain models (Cart, Order, Payment, Inventory)
-2. **Phase 2**: Implement core services with patterns above
-3. **Phase 3**: Add PG adapter and webhook handlers
-4. **Phase 4**: Implement compensating transactions (Saga)
-5. **Phase 5**: E2E test critical flows
-## Checklist
-### Cart
-- [ ] Guest/user cart merge on login
-- [ ] Price snapshot at add time
-- [ ] Stock validation at checkout
-- [ ] Cart expiration cleanup
-### Payment
-- [ ] Idempotency key on all requests
-- [ ] Webhook signature verification
-- [ ] Duplicate event handling
-- [ ] Timeout/retry strategy
-- [ ] Refund flow tested
-### Inventory
-- [ ] Two-phase reservation (reserve → commit/release)
-- [ ] Atomic stock updates
-- [ ] Reservation TTL and cleanup job
-- [ ] Concurrency control tested
+---
+name: commerce-patterns
+description: "E-commerce domain patterns - cart, payment, inventory with transaction safety"
+triggers: [commerce, ecommerce, cart, payment, checkout, inventory, stock, order, pg, toss, stripe]
+priority: 70
+---
+# Commerce Patterns Skill
+E-commerce domain patterns for reliable transactions.
+## When to Use
+- Shopping cart implementation
+- Payment integration (PG, Stripe, Toss)
+- Inventory/stock management
+- Order processing systems
+## Core Patterns
+### 1. Cart (Shopping Cart)
+#### State Model
+```typescript
+interface CartItem {
+  productId: string;
+  variantId?: string;
+  quantity: number;
+  price: number;           // Snapshot at add time
+  originalPrice: number;   // For comparison
+  addedAt: Date;
+}
+interface Cart {
+  id: string;
+  userId?: string;         // null for guest
+  sessionId: string;       // For guest merge
+  items: CartItem[];
+  couponCode?: string;
+  updatedAt: Date;
+  expiresAt: Date;         // Cart expiration
+}
+```
+#### Key Patterns
+| Pattern | Description |
+|---------|-------------|
+| **Guest → User Merge** | Merge localStorage cart on login |
+| **Price Snapshot** | Store price at add time, revalidate at checkout |
+| **Expiration** | Clear abandoned carts after N days |
+| **Validation** | Check stock/price at checkout entry |
+#### Implementation
+```typescript
+class CartService {
+  async addItem(cartId: string, item: AddItemRequest): Promise<Cart> {
+    // 1. Validate product exists and in stock
+    const product = await this.productService.get(item.productId);
+    if (!product || product.stock < item.quantity) {
+      throw new OutOfStockError();
+    }
+    // 2. Snapshot current price
+    const cartItem: CartItem = {
+      ...item,
+      price: product.currentPrice,
+      originalPrice: product.originalPrice,
+      addedAt: new Date(),
+    };
+    // 3. Add or update quantity
+    return this.cartRepository.upsertItem(cartId, cartItem);
+  }
+  async mergeGuestCart(userId: string, sessionId: string): Promise<Cart> {
+    const guestCart = await this.cartRepository.findBySession(sessionId);
+    const userCart = await this.cartRepository.findByUser(userId);
+    if (!guestCart) return userCart;
+    // Merge: user cart takes priority for duplicates
+    const merged = this.mergeItems(userCart.items, guestCart.items);
+    await this.cartRepository.delete(guestCart.id);
+    return this.cartRepository.update(userCart.id, { items: merged });
+  }
+}
+```
+### 2. Payment
+#### State Machine
+```
+PENDING → PROCESSING → AUTHORIZED → CAPTURED → COMPLETED
+                    ↘ FAILED
+                    ↘ CANCELED
+COMPLETED → REFUND_REQUESTED → REFUNDED (partial/full)
+```
+#### Idempotency Pattern (Critical)
+```typescript
+interface PaymentRequest {
+  orderId: string;
+  amount: number;
+  currency: string;
+  idempotencyKey: string;  // REQUIRED: `order_${orderId}_${timestamp}`
+  paymentMethod: PaymentMethod;
+}
+class PaymentService {
+  async processPayment(request: PaymentRequest): Promise<PaymentResult> {
+    // 1. Check idempotency - prevent duplicate charges
+    const existing = await this.paymentRepository.findByIdempotencyKey(
+      request.idempotencyKey
+    );
+    if (existing) {
+      return existing.result;  // Return cached result
+    }
+    // 2. Create payment record (PENDING)
+    const payment = await this.paymentRepository.create({
+      ...request,
+      status: 'PENDING',
+    });
+    try {
+      // 3. Call PG adapter
+      const pgResult = await this.pgAdapter.authorize(request);
+      // 4. Update status
+      return this.paymentRepository.update(payment.id, {
+        status: pgResult.success ? 'AUTHORIZED' : 'FAILED',
+        pgTransactionId: pgResult.transactionId,
+        result: pgResult,
+      });
+    } catch (error) {
+      await this.paymentRepository.update(payment.id, {
+        status: 'FAILED',
+        error: error.message,
+      });
+      throw error;
+    }
+  }
+}
+```
+#### PG Adapter Pattern
+```typescript
+interface PGAdapter {
+  authorize(request: PaymentRequest): Promise<PGResult>;
+  capture(transactionId: string): Promise<PGResult>;
+  cancel(transactionId: string): Promise<PGResult>;
+  refund(transactionId: string, amount?: number): Promise<PGResult>;
+}
+// Implementations
+class TossPaymentsAdapter implements PGAdapter { /* ... */ }
+class StripeAdapter implements PGAdapter { /* ... */ }
+class PortOneAdapter implements PGAdapter { /* ... */ }
+```
+#### Webhook Handling
+```typescript
+class PaymentWebhookHandler {
+  async handle(event: WebhookEvent): Promise<void> {
+    // 1. Verify signature
+    if (!this.verifySignature(event)) {
+      throw new UnauthorizedError();
+    }
+    // 2. Idempotency check - process each event only once
+    const processed = await this.eventStore.find(event.id);
+    if (processed) {
+      return;  // Already processed
+    }
+    // 3. Process event
+    await this.processEvent(event);
+    // 4. Mark as processed
+    await this.eventStore.save({
+      eventId: event.id,
+      processedAt: new Date(),
+    });
+  }
+}
+```
+### 3. Inventory (Stock Management)
+#### Reservation Pattern (Two-Phase)
+```typescript
+interface StockReservation {
+  id: string;
+  productId: string;
+  quantity: number;
+  orderId: string;
+  status: 'RESERVED' | 'COMMITTED' | 'RELEASED';
+  expiresAt: Date;         // Auto-release if not committed
+  createdAt: Date;
+}
+class InventoryService {
+  // Phase 1: Reserve stock (at checkout start)
+  async reserve(orderId: string, items: OrderItem[]): Promise<void> {
+    for (const item of items) {
+      // Atomic decrement with check
+      const result = await this.db.query(`
+        UPDATE products
+        SET reserved_stock = reserved_stock + $1
+        WHERE id = $2
+          AND (available_stock - reserved_stock) >= $1
+        RETURNING *
+      `, [item.quantity, item.productId]);
+      if (result.rowCount === 0) {
+        // Rollback previous reservations
+        await this.releaseAll(orderId);
+        throw new InsufficientStockError(item.productId);
+      }
+      await this.reservationRepository.create({
+        orderId,
+        productId: item.productId,
+        quantity: item.quantity,
+        status: 'RESERVED',
+        expiresAt: addMinutes(new Date(), 15),  // 15min hold
+      });
+    }
+  }
+  // Phase 2: Commit stock (after payment success)
+  async commit(orderId: string): Promise<void> {
+    const reservations = await this.reservationRepository.findByOrder(orderId);
+    for (const reservation of reservations) {
+      await this.db.query(`
+        UPDATE products
+        SET
+          available_stock = available_stock - $1,
+          reserved_stock = reserved_stock - $1
+        WHERE id = $2
+      `, [reservation.quantity, reservation.productId]);
+      await this.reservationRepository.update(reservation.id, {
+        status: 'COMMITTED',
+      });
+    }
+  }
+  // Rollback: Release stock (payment failed or timeout)
+  async release(orderId: string): Promise<void> {
+    const reservations = await this.reservationRepository.findByOrder(orderId);
+    for (const reservation of reservations) {
+      if (reservation.status === 'RESERVED') {
+        await this.db.query(`
+          UPDATE products
+          SET reserved_stock = reserved_stock - $1
+          WHERE id = $2
+        `, [reservation.quantity, reservation.productId]);
+        await this.reservationRepository.update(reservation.id, {
+          status: 'RELEASED',
+        });
+      }
+    }
+  }
+}
+```
+#### Concurrency Control
+```typescript
+// Option 1: Optimistic Locking
+await db.query(`
+  UPDATE products
+  SET stock = stock - $1, version = version + 1
+  WHERE id = $2 AND version = $3 AND stock >= $1
+`, [quantity, productId, expectedVersion]);
+// Option 2: Pessimistic Locking (for high contention)
+await db.query(`
+  SELECT * FROM products WHERE id = $1 FOR UPDATE
+`, [productId]);
+// Option 3: Redis Distributed Lock
+const lock = await redlock.lock(`stock:${productId}`, 5000);
+try {
+  // Update stock
+} finally {
+  await lock.unlock();
+}
+```
+## Order Flow (Complete)
+```
+┌─────────────────────────────────────────────────────────────┐
+│  CHECKOUT FLOW                                              │
+├─────────────────────────────────────────────────────────────┤
+│                                                             │
+│  1. Cart Validation                                         │
+│     └─ Revalidate prices, check stock availability          │
+│                                                             │
+│  2. Order Creation (PENDING)                                │
+│     └─ Generate orderId, snapshot cart                      │
+│                                                             │
+│  3. Stock Reservation                                       │
+│     └─ Reserve inventory (15min hold)                       │
+│                                                             │
+│  4. Payment Processing                                      │
+│     ├─ Success → Order PAID, Stock COMMIT                   │
+│     └─ Failure → Order FAILED, Stock RELEASE                │
+│                                                             │
+│  5. Order Confirmation                                      │
+│     └─ Send notification, trigger fulfillment               │
+│                                                             │
+└─────────────────────────────────────────────────────────────┘
+```
+## Common Bugs & Prevention
+| Bug | Cause | Prevention |
+|-----|-------|------------|
+| **Duplicate payment** | User double-click, webhook retry | Idempotency key |
+| **Negative stock** | Race condition | Atomic update with check |
+| **Price mismatch** | Price changed during checkout | Snapshot + revalidation |
+| **Orphan reservation** | Payment timeout without release | TTL + scheduled cleanup |
+| **Lost webhook** | Network failure | Retry + idempotent handler |
+| **Order state corruption** | Concurrent updates | State machine + versioning |
+## Integration with /vibe.run
+During commerce feature implementation:
+1. **Phase 1**: Define domain models (Cart, Order, Payment, Inventory)
+2. **Phase 2**: Implement core services with patterns above
+3. **Phase 3**: Add PG adapter and webhook handlers
+4. **Phase 4**: Implement compensating transactions (Saga)
+5. **Phase 5**: E2E test critical flows
+## Checklist
+### Cart
+- [ ] Guest/user cart merge on login
+- [ ] Price snapshot at add time
+- [ ] Stock validation at checkout
+- [ ] Cart expiration cleanup
+### Payment
+- [ ] Idempotency key on all requests
+- [ ] Webhook signature verification
+- [ ] Duplicate event handling
+- [ ] Timeout/retry strategy
+- [ ] Refund flow tested
+### Inventory
+- [ ] Two-phase reservation (reserve → commit/release)
+- [ ] Atomic stock updates
+- [ ] Reservation TTL and cleanup job
+- [ ] Concurrency control tested