@sun-asterisk/sunlint 1.3.1 → 1.3.3

package/config/rules/enhanced-rules-registry.json

@@ -5,26 +5,14 @@
       "description": "Each function should do one thing only",
       "category": "design",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C005_single_responsibility/analyzer.js",
       "config": "./rules/common/C005_single_responsibility/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "design",
-        "responsibility",
-        "maintainability"
-      ],
+      "tags": ["design", "responsibility", "maintainability"],
       "engineMappings": {
-        "eslint": [
-          "max-statements-per-line",
-          "complexity"
-        ]
+        "eslint": ["max-statements-per-line", "complexity"]
       }
     },
     "C019": {
@@ -32,27 +20,15 @@
       "description": "Không sử dụng log mức error cho lỗi không nghiêm trọng",
       "category": "logging",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "dart",
-        "kotlin",
-        "javascript"
-      ],
-      "analyzer": "./rules/C019_log_level_usage/analyzer.js",
-      "config": "./rules/C019_log_level_usage/config.json",
+      "languages": ["typescript", "dart", "kotlin", "javascript"],
+      "analyzer": "./rules/common/C019_log_level_usage/analyzer.js",
+      "config": "./rules/common/C019_log_level_usage/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "logging",
-        "error-handling",
-        "severity"
-      ],
+      "tags": ["logging", "error-handling", "severity"],
       "engineMappings": {
-        "eslint": [
-          "no-console",
-          "no-alert",
-          "no-debugger"
-        ]
+        "eslint": ["no-console", "no-alert", "no-debugger"],
+        "heuristic": ["rules/common/C019_log_level_usage/analyzer.js"]
       }
     },
     "C006": {
@@ -60,21 +36,12 @@
       "description": "Tên hàm phải là động từ/verb-noun pattern",
       "category": "naming",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "dart",
-        "kotlin",
-        "javascript"
-      ],
+      "languages": ["typescript", "dart", "kotlin", "javascript"],
       "analyzer": "./rules/C006_function_naming/analyzer.js",
       "config": "./rules/C006_function_naming/config.json",
       "version": "1.0.0",
       "status": "activated",
-      "tags": [
-        "naming",
-        "convention",
-        "readability"
-      ],
+      "tags": ["naming", "convention", "readability"],
       "engineMappings": {
         "eslint": [
           "func-names",
@@ -88,21 +55,12 @@
       "description": "Avoid comments that just describe the code",
       "category": "documentation",
       "severity": "info",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C007_meaningful_comments/analyzer.js",
       "config": "./rules/common/C007_meaningful_comments/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "documentation",
-        "comments",
-        "maintainability"
-      ],
+      "tags": ["documentation", "comments", "maintainability"],
       "engineMappings": {
         "eslint": [
           "spaced-comment",
@@ -116,31 +74,48 @@
       "description": "Limit nested blocks (if/for/while/switch) to maximum 3 levels for readability",
       "category": "complexity",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C010_limit_block_nesting/analyzer.js",
+      "config": "./rules/common/C010_limit_block_nesting/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["complexity", "readability", "nesting", "maintainability"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 75
+        }
+      }
+    },
+    "C013": {
+      "name": "No Dead Code",
+      "description": "Detect and remove commented out code, unused variables/functions, and unreachable code",
+      "category": "maintainability",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C013_no_dead_code/analyzer.js",
+      "config": "./rules/common/C013_no_dead_code/config.json",
       "version": "1.0.0",
       "status": "stable",
       "tags": [
-        "complexity",
-        "readability",
-        "nesting",
+        "dead-code",
+        "commented-code",
+        "unreachable-code",
+        "cleanup",
         "maintainability"
       ],
       "strategy": {
         "preferred": "ast",
-        "fallbacks": [
-          "ast",
-          "regex"
-        ],
+        "fallbacks": ["ast", "regex"],
         "accuracy": {
-          "ast": 95,
-          "regex": 75
+          "ast": 90,
+          "regex": 70
         }
+      },
+      "engineMappings": {
+        "eslint": ["no-unreachable", "no-unused-vars", "no-unused-expressions"]
       }
     },
     "C012": {
@@ -148,21 +123,12 @@
       "description": "Separate Command and Query operations (CQS principle)",
       "category": "design",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C012_command_query_separation/analyzer.js",
       "config": "./rules/common/C012_command_query_separation/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "design",
-        "separation",
-        "maintainability"
-      ],
+      "tags": ["design", "separation", "maintainability"],
       "engineMappings": {
         "eslint": [
           "consistent-return",
@@ -176,26 +142,59 @@
       "description": "Use domain language in class/function names",
       "category": "naming",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C015_domain_language/analyzer.js",
       "config": "./rules/common/C015_domain_language/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "naming",
-        "domain",
-        "readability"
-      ],
+      "tags": ["naming", "domain", "readability"],
       "engineMappings": {
-        "eslint": [
-          "@typescript-eslint/naming-convention",
-          "camelcase"
-        ]
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
+      }
+    },
+    "C018": {
+      "name": "Do not throw generic errors",
+      "description": "Always provide detailed messages and context.",
+      "category": "naming",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C018_no_throw_generic_error/analyzer.js",
+      "config": "./rules/common/C018_no_throw_generic_error/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["naming", "domain", "readability"],
+      "engineMappings": {
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
+      }
+    },
+    "C023": {
+      "name": "Do not declare duplicate variable",
+      "description": "Do not declare duplicate variable names in the same scope",
+      "category": "naming",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C023_no_duplicate_variable/analyzer.js",
+      "config": "./rules/common/C023_no_duplicate_variable/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["naming", "domain", "readability"],
+      "engineMappings": {
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
+      }
+    },
+    "C024": {
+      "name": "Do not scatter hardcoded constants throughout the logic",
+      "description": "The rule prevents scattering hardcoded constants throughout the logic. Instead, constants should be defined in a single place to improve maintainability and readability.",
+      "category": "naming",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C024_no_scatter_hardcoded_constants/analyzer.js",
+      "config": "./rules/common/C024_no_scatter_hardcoded_constants/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["naming", "domain", "readability"],
+      "engineMappings": {
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
       }
     },
     "C029": {
@@ -203,43 +202,24 @@
       "description": "Mọi catch block phải log nguyên nhân lỗi đầy đủ",
       "category": "error-handling",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "dart",
-        "kotlin",
-        "javascript"
-      ],
+      "languages": ["typescript", "dart", "kotlin", "javascript"],
       "analyzer": "./rules/C029_catch_block_logging/analyzer.js",
       "config": "./rules/C029_catch_block_logging/config.json",
       "version": "1.0.0",
       "status": "activated",
-      "tags": [
-        "error-handling",
-        "logging",
-        "debugging",
-        "monitoring"
-      ]
+      "tags": ["error-handling", "logging", "debugging", "monitoring"]
     },
     "C031": {
       "name": "Validation Logic Separation",
       "description": "Logic kiểm tra dữ liệu (validate) phải nằm riêng biệt",
       "category": "validation",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "dart",
-        "kotlin",
-        "javascript"
-      ],
+      "languages": ["typescript", "dart", "kotlin", "javascript"],
       "analyzer": "./rules/C031_validation_separation/analyzer.js",
       "config": "./rules/C031_validation_separation/config.json",
       "version": "1.0.0",
       "status": "experimental",
-      "tags": [
-        "validation",
-        "separation",
-        "architecture"
-      ],
+      "tags": ["validation", "separation", "architecture"],
       "engineMappings": {
         "eslint": [
           "no-implicit-coercion",
@@ -253,21 +233,12 @@
       "description": "Don't call external APIs in constructors or static blocks",
       "category": "design",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C032_no_constructor_api/analyzer.js",
       "config": "./rules/common/C032_no_constructor_api/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "design",
-        "constructor",
-        "initialization"
-      ],
+      "tags": ["design", "constructor", "initialization"],
       "engineMappings": {
         "eslint": [
           "no-new",
@@ -281,21 +252,12 @@
       "description": "Separate processing logic and data queries in service layer",
       "category": "architecture",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C033_separate_logic_data/analyzer.js",
       "config": "./rules/common/C033_separate_logic_data/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "architecture",
-        "separation",
-        "service"
-      ],
+      "tags": ["architecture", "separation", "service"],
       "engineMappings": {
         "eslint": [
           "prefer-const",
@@ -309,21 +271,12 @@
       "description": "Limit direct access to global state in domain logic",
       "category": "architecture",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C034_limit_global_state/analyzer.js",
       "config": "./rules/common/C034_limit_global_state/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "architecture",
-        "global-state",
-        "design"
-      ],
+      "tags": ["architecture", "global-state", "design"],
       "engineMappings": {
         "eslint": [
           "no-global-assign",
@@ -337,27 +290,14 @@
       "description": "When handling errors, must log full information related - structured logging with context",
       "category": "error-handling",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C035_error_logging_context/analyzer.js",
       "config": "./rules/common/C035_error_logging_context/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "logging",
-        "error-handling",
-        "observability",
-        "debugging"
-      ],
+      "tags": ["logging", "error-handling", "observability", "debugging"],
       "engineMappings": {
-        "eslint": [
-          "no-empty-catch",
-          "@typescript-eslint/no-unused-vars"
-        ]
+        "eslint": ["no-empty-catch", "@typescript-eslint/no-unused-vars"]
       }
     },
     "C037": {
@@ -365,21 +305,12 @@
       "description": "API handlers should return standard response objects (not raw strings)",
       "category": "api",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C037_standard_response/analyzer.js",
       "config": "./rules/common/C037_standard_response/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "api",
-        "response",
-        "standardization"
-      ],
+      "tags": ["api", "response", "standardization"],
       "engineMappings": {
         "eslint": [
           "consistent-return",
@@ -393,21 +324,12 @@
       "description": "Avoid logic depending on file/module loading order",
       "category": "architecture",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C038_no_loading_order/analyzer.js",
       "config": "./rules/common/C038_no_loading_order/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "architecture",
-        "loading",
-        "dependency"
-      ],
+      "tags": ["architecture", "loading", "dependency"],
       "engineMappings": {
         "eslint": [
           "import/no-dynamic-require",
@@ -421,21 +343,12 @@
       "description": "Don't scatter validation logic across multiple classes",
       "category": "validation",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart",
-        "kotlin"
-      ],
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
       "analyzer": "./rules/common/C040_centralized_validation/analyzer.js",
       "config": "./rules/common/C040_centralized_validation/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "validation",
-        "centralization",
-        "architecture"
-      ],
+      "tags": ["validation", "centralization", "architecture"],
       "engineMappings": {
         "eslint": [
           "no-duplicate-imports",
@@ -449,25 +362,14 @@
       "description": "Do not use console.log or print in production code",
       "category": "logging",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript",
-        "dart"
-      ],
+      "languages": ["typescript", "javascript", "dart"],
       "analyzer": "./rules/common/C043_no_console_or_print/analyzer.js",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "logging",
-        "production",
-        "debugging",
-        "console"
-      ],
+      "tags": ["logging", "production", "debugging", "console"],
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {
           "regex": 90
         }
@@ -478,25 +380,15 @@
       "description": "Verify that if there is an error in access control, the system fails securely",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s001",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "access-control",
-        "fail-safe"
-      ],
+      "tags": ["security", "access-control", "fail-safe"],
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex",
-          "ast"
-        ],
+        "fallbacks": ["regex", "ast"],
         "accuracy": {
           "regex": 85,
           "ast": 90
@@ -508,71 +400,45 @@
       "description": "Insecure Direct Object Reference prevention",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s002",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "idor",
-        "access-control"
-      ]
+      "tags": ["security", "idor", "access-control"]
     },
     "S003": {
       "name": "No Unvalidated Redirect",
       "description": "Prevent unvalidated redirects and forwards",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s003",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "redirect",
-        "validation"
-      ]
+      "tags": ["security", "redirect", "validation"]
     },
     "S005": {
       "name": "No Origin Header Authentication",
       "description": "Do not use Origin header for authentication/access control",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "./rules/security/S005_no_origin_auth/analyzer.js",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "authentication",
-        "headers"
-      ],
+      "tags": ["security", "authentication", "headers"],
       "strategy": {
         "preferred": "ast",
-        "fallbacks": [
-          "ast",
-          "regex"
-        ],
+        "fallbacks": ["ast", "regex"],
         "accuracy": {
           "ast": 95,
           "regex": 85
         }
       },
       "engineMappings": {
-        "eslint": [
-          "custom/typescript_s005"
-        ]
+        "eslint": ["custom/typescript_s005"]
       }
     },
     "S006": {
@@ -580,19 +446,12 @@
       "description": "Do not send recovery or activation codes in plaintext",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "All languages"
-      ],
+      "languages": ["All languages"],
       "analyzer": "./rules/security/S006_no_plaintext_recovery_codes/analyzer.js",
       "config": "./rules/security/S006_no_plaintext_recovery_codes/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "owasp",
-        "cryptographic-failures",
-        "authentication"
-      ],
+      "tags": ["security", "owasp", "cryptographic-failures", "authentication"],
       "strategy": {
         "preferred": "regex",
         "fallback": "heuristic"
@@ -630,10 +489,7 @@
       ],
       "strategy": {
         "preferred": "heuristic",
-        "fallbacks": [
-          "heuristic",
-          "regex"
-        ],
+        "fallbacks": ["heuristic", "regex"],
         "accuracy": {
           "heuristic": 90,
           "regex": 75
@@ -648,158 +504,99 @@
       "description": "Ensure cryptographic agility and algorithm flexibility",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s008",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "cryptography",
-        "agility"
-      ]
+      "tags": ["security", "cryptography", "agility"]
     },
     "S009": {
       "name": "No Insecure Crypto",
       "description": "Prevent usage of insecure cryptographic methods",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s009",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "cryptography",
-        "insecure"
-      ]
+      "tags": ["security", "cryptography", "insecure"]
     },
     "S010": {
       "name": "No Insecure Random in Sensitive Context",
       "description": "Prevent insecure random generator usage in sensitive contexts",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s010",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "random",
-        "sensitive"
-      ]
+      "tags": ["security", "random", "sensitive"]
     },
     "S011": {
       "name": "No Insecure UUID",
       "description": "UUID must be version 4 and use CSPRNG",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s011",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "uuid",
-        "random"
-      ]
+      "tags": ["security", "uuid", "random"]
     },
     "S012": {
       "name": "No Hardcoded Secrets",
       "description": "Prevent hardcoded secrets in source code",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s012",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "secrets",
-        "hardcoded"
-      ]
+      "tags": ["security", "secrets", "hardcoded"]
     },
     "S013": {
       "name": "Verify TLS Connection",
       "description": "Verify that TLS connections are properly established and validated",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s013",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "tls",
-        "connection"
-      ]
+      "tags": ["security", "tls", "connection"]
     },
     "S014": {
       "name": "Insecure TLS Version",
       "description": "Prevent usage of insecure TLS versions",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s014",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "tls",
-        "encryption"
-      ]
+      "tags": ["security", "tls", "encryption"]
     },
     "S015": {
       "name": "Insecure TLS Certificate",
       "description": "Prevent usage of insecure TLS certificate configurations",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s015",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "tls",
-        "certificates"
-      ],
+      "tags": ["security", "tls", "certificates"],
       "strategy": {
         "preferred": "ast",
-        "fallbacks": [
-          "ast",
-          "regex"
-        ],
+        "fallbacks": ["ast", "regex"],
         "accuracy": {
           "ast": 95,
           "regex": 80
@@ -811,139 +608,95 @@
       "description": "Prevent sensitive data in URL query parameters",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s016",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S016_no_sensitive_querystring/analyzer.js",
+      "config": "./rules/security/S016_no_sensitive_querystring/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "sensitive-data",
-        "url"
-      ]
+      "tags": ["security", "sensitive-data", "url"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 80
+        }
+      }
     },
     "S017": {
       "name": "No SQL Injection",
       "description": "Prevent SQL injection vulnerabilities",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s017",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S017_use_parameterized_queries/analyzer.js",
+      "config": "./rules/security/S017_use_parameterized_queries/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "sql-injection",
-        "database"
-      ]
+      "tags": ["security", "sql-injection", "database"]
     },
     "S018": {
       "name": "Positive Input Validation",
       "description": "Ensure positive input validation patterns",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s018",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "validation",
-        "input"
-      ]
+      "tags": ["security", "validation", "input"]
     },
     "S019": {
       "name": "No Raw User Input in Email",
       "description": "Prevent raw user input in email content",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s019",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "email",
-        "injection"
-      ]
+      "tags": ["security", "email", "injection"]
     },
     "S020": {
       "name": "No Eval Dynamic Execution",
       "description": "Prevent eval and dynamic code execution",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s020",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "eval",
-        "dynamic-execution"
-      ]
+      "tags": ["security", "eval", "dynamic-execution"]
     },
     "S022": {
       "name": "Output Encoding Required",
       "description": "Require output encoding for user input",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s022",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "encoding",
-        "xss"
-      ]
+      "tags": ["security", "encoding", "xss"]
     },
     "S023": {
       "name": "No JSON Injection",
       "description": "Prevent JSON injection vulnerabilities",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s023",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "json",
-        "injection"
-      ],
+      "tags": ["security", "json", "injection"],
       "strategy": {
         "preferred": "ast",
-        "fallbacks": [
-          "ast",
-          "regex"
-        ],
+        "fallbacks": ["ast", "regex"],
         "accuracy": {
           "ast": 95,
           "regex": 60
@@ -955,494 +708,393 @@
       "description": "Require server-side input validation",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s025",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "validation",
-        "server-side"
-      ]
+      "tags": ["security", "validation", "server-side"]
     },
     "S026": {
       "name": "JSON Schema Validation",
       "description": "Require JSON schema validation",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s026",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "validation",
-        "json-schema"
-      ]
+      "tags": ["security", "validation", "json-schema"]
     },
     "S027": {
       "name": "No Hardcoded Secrets Advanced",
       "description": "Advanced detection of hardcoded secrets",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s027",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "secrets",
-        "hardcoded"
-      ]
+      "tags": ["security", "secrets", "hardcoded"]
     },
     "S029": {
       "name": "Require CSRF Protection",
       "description": "Require CSRF protection for state-changing operations",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s029",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "csrf",
-        "protection"
-      ]
+      "tags": ["security", "csrf", "protection"]
     },
     "S030": {
       "name": "No Directory Browsing",
       "description": "Prevent directory browsing vulnerabilities",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s030",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "directory-browsing",
-        "information-disclosure"
-      ]
+      "tags": ["security", "directory-browsing", "information-disclosure"]
+    },
+    "S031": {
+      "name": "Set Secure flag for Session Cookies",
+      "description": "Set Secure flag for Session Cookies to protect via HTTPS. This ensures cookies are only transmitted over secure connections, preventing interception.",
+      "category": "security",
+      "severity": "error",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S031_secure_session_cookies/analyzer.js",
+      "config": "./rules/security/S031_secure_session_cookies/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["security", "cookies", "session", "https", "secure"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 85
+        }
+      },
+      "engineMappings": {
+        "heuristic": ["rules/security/S031_secure_session_cookies/analyzer.js"]
+      }
+    },
+    "S032": {
+      "name": "Set HttpOnly attribute for Session Cookies",
+      "description": "Set HttpOnly attribute for Session Cookies to prevent JavaScript access. This protects against XSS attacks by preventing client-side script access to sensitive cookies.",
+      "category": "security",
+      "severity": "error",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S032_httponly_session_cookies/analyzer.js",
+      "config": "./rules/security/S032_httponly_session_cookies/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["security", "cookies", "session", "httponly", "xss"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 85
+        }
+      },
+      "engineMappings": {
+        "heuristic": [
+          "rules/security/S032_httponly_session_cookies/analyzer.js"
+        ]
+      }
     },
     "S033": {
-      "name": "Require SameSite Cookie",
-      "description": "Require SameSite attribute for cookies",
+      "name": "Set SameSite attribute for Session Cookies",
+      "description": "Set SameSite attribute for Session Cookies to reduce CSRF risk. This prevents the browser from sending cookies along with cross-site requests, mitigating CSRF attacks.",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s033",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S033_samesite_session_cookies/analyzer.js",
+      "config": "./rules/security/S033_samesite_session_cookies/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "cookies",
-        "samesite"
-      ]
+      "tags": ["security", "cookies", "session", "samesite", "csrf"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 85
+        }
+      },
+      "engineMappings": {
+        "heuristic": [
+          "rules/security/S033_samesite_session_cookies/analyzer.js"
+        ]
+      }
     },
     "S034": {
-      "name": "Require Host Cookie Prefix",
-      "description": "Require __Host- prefix for secure cookies",
+      "name": "Use __Host- prefix for Session Cookies",
+      "description": "Use __Host- prefix for Session Cookies to prevent subdomain sharing. The __Host- prefix ensures cookies are only sent to the exact domain that set them, preventing subdomain cookie sharing attacks.",
       "category": "security",
-      "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s034",
+      "severity": "warning",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S034_host_prefix_session_cookies/analyzer.js",
+      "config": "./rules/security/S034_host_prefix_session_cookies/config.json",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "cookies",
-        "host-prefix"
-      ]
+      "tags": ["security", "cookies", "session", "host-prefix", "subdomain"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": {
+          "ast": 95,
+          "regex": 85
+        }
+      },
+      "engineMappings": {
+        "heuristic": [
+          "rules/security/S034_host_prefix_session_cookies/analyzer.js"
+        ]
+      }
     },
     "S035": {
-      "name": "Cookie Specific Path",
-      "description": "Require specific path for sensitive cookies",
+      "name": "Set Path attribute for Session Cookies",
+      "description": "Set Path attribute for Session Cookies to limit access scope",
       "category": "security",
-      "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s035",
+      "severity": "warning",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "heuristic",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "cookies",
-        "path"
-      ]
+      "tags": ["security", "cookies", "path"],
+      "strategy": {
+        "defaultEngine": "heuristic",
+        "engineMappings": {
+          "heuristic": ["rules/security/S035_path_session_cookies/analyzer.js"]
+        }
+      },
+      "configPath": "rules/security/S035_path_session_cookies/config.json",
+      "analyzerPath": ["rules/security/S035_path_session_cookies/analyzer.js"]
     },
     "S036": {
       "name": "No Unsafe File Include",
       "description": "Prevent unsafe file inclusion vulnerabilities",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s036",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "file-inclusion",
-        "path-traversal"
-      ]
+      "tags": ["security", "file-inclusion", "path-traversal"]
     },
     "S037": {
       "name": "Require Anti Cache Headers",
       "description": "Require anti-cache headers for sensitive content",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s037",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "caching",
-        "headers"
-      ]
+      "tags": ["security", "caching", "headers"]
     },
     "S038": {
       "name": "No Version Disclosure",
       "description": "Prevent version information disclosure",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s038",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "information-disclosure",
-        "version"
-      ]
+      "tags": ["security", "information-disclosure", "version"]
     },
     "S039": {
       "name": "No Session Token in URL",
       "description": "Prevent session tokens in URL parameters",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s039",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "session",
-        "url"
-      ]
+      "tags": ["security", "session", "url"]
     },
     "S041": {
       "name": "Require Session Invalidate on Logout",
       "description": "Require session invalidation on logout",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s041",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "session",
-        "logout"
-      ]
+      "tags": ["security", "session", "logout"]
     },
     "S042": {
       "name": "Require Periodic Reauthentication",
       "description": "Require periodic re-authentication for sensitive operations",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s042",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "authentication",
-        "periodic"
-      ]
+      "tags": ["security", "authentication", "periodic"]
     },
     "S043": {
       "name": "Terminate Sessions on Password Change",
       "description": "Terminate all sessions when password changes",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s043",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "session",
-        "password"
-      ]
+      "tags": ["security", "session", "password"]
     },
     "S044": {
       "name": "Require Full Session for Sensitive Operations",
       "description": "Require full session validation for sensitive operations",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s044",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "session",
-        "validation"
-      ]
+      "tags": ["security", "session", "validation"]
     },
     "S045": {
       "name": "Anti Automation Controls",
       "description": "Implement anti-automation controls",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s045",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "automation",
-        "protection"
-      ]
+      "tags": ["security", "automation", "protection"]
     },
     "S046": {
       "name": "Secure Notification on Auth Change",
       "description": "Require secure notification on authentication changes",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s046",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "notification",
-        "authentication"
-      ]
+      "tags": ["security", "notification", "authentication"]
     },
     "S047": {
       "name": "Secure Random Password Generation",
       "description": "Require secure and random initial password generation",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s047",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "password",
-        "random"
-      ]
+      "tags": ["security", "password", "random"]
     },
     "S048": {
       "name": "Password Credential Recovery",
       "description": "Secure password credential recovery process",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s048",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "password",
-        "recovery"
-      ]
+      "tags": ["security", "password", "recovery"]
     },
     "S050": {
       "name": "Session Token Weak Hash",
       "description": "Prevent weak hashing for session tokens",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s050",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "session",
-        "hashing"
-      ]
+      "tags": ["security", "session", "hashing"]
     },
     "S052": {
       "name": "Secure Random Authentication Code",
       "description": "Require secure random number generation for authentication codes",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s052",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "random",
-        "authentication"
-      ]
+      "tags": ["security", "random", "authentication"]
     },
     "S054": {
       "name": "Verification Default Account",
       "description": "Verify and secure default accounts",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s054",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "accounts",
-        "default"
-      ]
+      "tags": ["security", "accounts", "default"]
     },
     "S055": {
       "name": "REST Content-Type Verification",
       "description": "Verify incoming Content-Type in REST API endpoints",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s055",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "rest",
-        "content-type"
-      ]
+      "tags": ["security", "rest", "content-type"]
     },
     "S057": {
       "name": "UTC Logging",
       "description": "Enforce UTC usage in time formatting and logging",
       "category": "security",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s057",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "logging",
-        "timezone"
-      ]
+      "tags": ["security", "logging", "timezone"]
     },
     "S058": {
       "name": "No SSRF",
       "description": "Detect SSRF vulnerabilities via unvalidated user-controlled URLs",
       "category": "security",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "analyzer": "eslint",
       "eslintRule": "custom/typescript_s058",
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "security",
-        "ssrf",
-        "url-validation"
-      ]
+      "tags": ["security", "ssrf", "url-validation"]
     },
     "C002": {
       "id": "C002",
@@ -1450,25 +1102,16 @@
       "description": "Auto-migrated rule C002 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-duplicate-code"
-        ]
+        "eslint": ["custom/no-duplicate-code"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1478,84 +1121,55 @@
       "description": "Auto-migrated rule C003 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "version": "1.0.0",
-      "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
-      "engineMappings": {
-        "eslint": [
-          "custom/no-vague-abbreviations"
-        ]
-      },
-      "strategy": {
-        "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
-        "accuracy": {}
-      }
-    },
-    "C013": {
-      "id": "C013",
-      "name": "Rule C013",
-      "description": "Auto-migrated rule C013 from ESLint mapping",
-      "category": "general",
-      "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
-      "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "status": "migrated",
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-dead-code"
-        ]
+        "eslint": ["custom/no-vague-abbreviations"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
     "C014": {
-      "id": "C014",
-      "name": "Rule C014",
-      "description": "Auto-migrated rule C014 from ESLint mapping",
-      "category": "general",
+      "name": "Dependency Injection Pattern",
+      "description": "Use Dependency Injection instead of direct instantiation in business logic. Increases testability and reduces coupling.",
+      "category": "design",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/common/C014_dependency_injection/analyzer.js",
+      "config": "./rules/common/C014_dependency_injection/config.json",
       "version": "1.0.0",
-      "status": "migrated",
+      "status": "stable",
       "tags": [
-        "migrated"
+        "design",
+        "dependency-injection",
+        "testability",
+        "coupling",
+        "SOLID"
       ],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": [],
+        "accuracy": {
+          "ast": 95
+        },
+        "requirements": {
+          "ast": {
+            "semanticEngine": true,
+            "description": "C014 requires symbol-based analysis for accurate dependency injection pattern detection"
+          }
+        }
+      },
       "engineMappings": {
         "eslint": [
           "no-new",
           "no-new-wrappers",
           "@typescript-eslint/no-unnecessary-constructor"
         ]
-      },
-      "strategy": {
-        "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
-        "accuracy": {}
       }
     },
     "C017": {
@@ -1564,27 +1178,16 @@
       "description": "Auto-migrated rule C017 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/limit-constructor-logic"
-        ]
+        "eslint": ["custom/limit-constructor-logic"]
       },
       "strategy": {
         "preferred": "semantic",
-        "fallbacks": [
-          "semantic",
-          "ast", 
-          "regex"
-        ],
+        "fallbacks": ["semantic", "ast", "regex"],
         "accuracy": {
           "semantic": 95,
           "ast": 85,
@@ -1592,87 +1195,22 @@
         }
       }
     },
-    "C018": {
-      "id": "C018",
-      "name": "Rule C018",
-      "description": "Auto-migrated rule C018 from ESLint mapping",
-      "category": "general",
-      "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "version": "1.0.0",
-      "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
-      "engineMappings": {
-        "eslint": [
-          "custom/no-generic-throw"
-        ]
-      },
-      "strategy": {
-        "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
-        "accuracy": {}
-      }
-    },
-    "C023": {
-      "id": "C023",
-      "name": "Rule C023",
-      "description": "Auto-migrated rule C023 from ESLint mapping",
-      "category": "general",
-      "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
-      "version": "1.0.0",
-      "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
-      "engineMappings": {
-        "eslint": [
-          "custom/no-duplicate-variable-name-in-scope"
-        ]
-      },
-      "strategy": {
-        "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
-        "accuracy": {}
-      }
-    },
     "C030": {
       "id": "C030",
       "name": "Rule C030",
       "description": "Auto-migrated rule C030 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/use-custom-error-classes"
-        ]
+        "eslint": ["custom/use-custom-error-classes"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1682,25 +1220,16 @@
       "description": "Auto-migrated rule C041 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-config-inline"
-        ]
+        "eslint": ["custom/no-config-inline"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1710,25 +1239,16 @@
       "description": "Auto-migrated rule C042 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/boolean-name-prefix"
-        ]
+        "eslint": ["custom/boolean-name-prefix"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1738,58 +1258,66 @@
       "description": "Auto-migrated rule C047 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-duplicate-retry-logic"
-        ]
+        "eslint": ["custom/no-duplicate-retry-logic"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
+    "C048": {
+      "name": "Do not bypass architectural layers (controller/service/repository)",
+      "description": "Maintain a clear layered architecture, ensuring logic and data flow are well-structured and maintainable.",
+      "category": "naming",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C048_no_bypass_architectural_layers/analyzer.js",
+      "config": "./rules/common/C048_no_bypass_architectural_layers/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["naming", "domain", "readability"],
+      "engineMappings": {
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
+      }
+    },
+    "C052": {
+      "name": "Parsing or data transformation logic must be separated from controllers",
+      "description": "Enforce separation of concerns — controllers should only handle requests and delegate processing, improving testability, maintainability, and reuse.",
+      "category": "naming",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart", "kotlin"],
+      "analyzer": "./rules/common/C052_parsing_or_data_transformation/analyzer.js",
+      "config": "./rules/common/C052_parsing_or_data_transformation/config.json",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["naming", "domain", "readability"],
+      "engineMappings": {
+        "eslint": ["@typescript-eslint/naming-convention", "camelcase"]
+      }
+    },
     "C072": {
       "id": "C072",
       "name": "Single Test Behavior",
       "description": "Each test should assert only one behavior",
       "category": "testing",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "testing",
-        "unit-test",
-        "single-behavior"
-      ],
+      "tags": ["testing", "unit-test", "single-behavior"],
       "engineMappings": {
-        "eslint": [
-          "custom/c072-one-assert-per-test"
-        ],
-        "heuristic": [
-          "rules/common/C072_single_test_behavior/analyzer.js"
-        ]
+        "eslint": ["custom/c072-one-assert-per-test"],
+        "heuristic": ["rules/common/C072_single_test_behavior/analyzer.js"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1799,25 +1327,16 @@
       "description": "Auto-migrated rule C075 from ESLint mapping",
       "category": "general",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/explicit-function-return-types"
-        ]
+        "eslint": ["custom/explicit-function-return-types"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1827,17 +1346,10 @@
       "description": "All public functions must declare explicit types for arguments",
       "category": "type-safety",
       "severity": "error",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "stable",
-      "tags": [
-        "type-safety",
-        "public-api",
-        "explicit-types"
-      ],
+      "tags": ["type-safety", "public-api", "explicit-types"],
       "engineMappings": {
         "heuristic": [
           "rules/common/C076_explicit_function_types/semantic-analyzer.js"
@@ -1845,9 +1357,7 @@
       },
       "strategy": {
         "preferred": "symbol",
-        "fallbacks": [
-          "symbol"
-        ],
+        "fallbacks": ["symbol"],
         "accuracy": {}
       }
     },
@@ -1857,25 +1367,16 @@
       "description": "Auto-migrated rule T002 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/interface-prefix-i"
-        ]
+        "eslint": ["custom/interface-prefix-i"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1885,25 +1386,16 @@
       "description": "Auto-migrated rule T003 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/ts-ignore-reason"
-        ]
+        "eslint": ["custom/ts-ignore-reason"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1913,25 +1405,16 @@
       "description": "Auto-migrated rule T004 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-empty-type"
-        ]
+        "eslint": ["custom/no-empty-type"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1941,25 +1424,16 @@
       "description": "Auto-migrated rule T007 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-fn-in-constructor"
-        ]
+        "eslint": ["custom/no-fn-in-constructor"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1969,25 +1443,16 @@
       "description": "Auto-migrated rule T010 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-nested-union-tuple"
-        ]
+        "eslint": ["custom/no-nested-union-tuple"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -1997,25 +1462,16 @@
       "description": "Auto-migrated rule T019 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-this-assign"
-        ]
+        "eslint": ["custom/no-this-assign"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2025,25 +1481,16 @@
       "description": "Auto-migrated rule T020 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/no-default-multi-export"
-        ]
+        "eslint": ["custom/no-default-multi-export"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2053,25 +1500,16 @@
       "description": "Auto-migrated rule T021 from ESLint mapping",
       "category": "typescript",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "custom/limit-nested-generics"
-        ]
+        "eslint": ["custom/limit-nested-generics"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2081,15 +1519,10 @@
       "description": "Auto-migrated rule R001 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
         "eslint": [
           "react/no-this-in-sfc",
@@ -2100,9 +1533,7 @@
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2112,15 +1543,10 @@
       "description": "Auto-migrated rule R002 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
         "eslint": [
           "react-hooks/rules-of-hooks",
@@ -2131,9 +1557,7 @@
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2143,15 +1567,10 @@
       "description": "Auto-migrated rule R003 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
         "eslint": [
           "react/no-direct-mutation-state",
@@ -2161,9 +1580,7 @@
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2173,26 +1590,16 @@
       "description": "Auto-migrated rule R004 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "no-param-reassign",
-          "react/forbid-foreign-prop-types"
-        ]
+        "eslint": ["no-param-reassign", "react/forbid-foreign-prop-types"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2202,25 +1609,16 @@
       "description": "Auto-migrated rule R005 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "react/jsx-no-bind"
-        ]
+        "eslint": ["react/jsx-no-bind"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2230,15 +1628,10 @@
       "description": "Auto-migrated rule R006 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
         "eslint": [
           "react/jsx-pascal-case",
@@ -2248,9 +1641,7 @@
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2260,25 +1651,16 @@
       "description": "Auto-migrated rule R007 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "react-hooks/rules-of-hooks"
-        ]
+        "eslint": ["react-hooks/rules-of-hooks"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2288,25 +1670,16 @@
       "description": "Auto-migrated rule R008 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "react-hooks/rules-of-hooks"
-        ]
+        "eslint": ["react-hooks/rules-of-hooks"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     },
@@ -2316,25 +1689,16 @@
       "description": "Auto-migrated rule R009 from ESLint mapping",
       "category": "react",
       "severity": "warning",
-      "languages": [
-        "typescript",
-        "javascript"
-      ],
+      "languages": ["typescript", "javascript"],
       "version": "1.0.0",
       "status": "migrated",
-      "tags": [
-        "migrated"
-      ],
+      "tags": ["migrated"],
       "engineMappings": {
-        "eslint": [
-          "react-hooks/rules-of-hooks"
-        ]
+        "eslint": ["react-hooks/rules-of-hooks"]
       },
       "strategy": {
         "preferred": "regex",
-        "fallbacks": [
-          "regex"
-        ],
+        "fallbacks": ["regex"],
         "accuracy": {}
       }
     }
@@ -2353,6 +1717,7 @@
         "C017",
         "C018",
         "C023",
+        "C024",
         "C029",
         "C030",
         "C035",
@@ -2360,6 +1725,8 @@
         "C042",
         "C043",
         "C047",
+        "C048",
+        "C052",
         "C072",
         "C075",
         "T002",
@@ -2409,6 +1776,8 @@
         "S027",
         "S029",
         "S030",
+        "S031",
+        "S032",
         "S033",
         "S034",
         "S035",
@@ -2436,46 +1805,31 @@
     "logging": {
       "name": "Logging Standards",
       "description": "Rules related to logging practices",
-      "rules": [
-        "C019",
-        "S057"
-      ],
+      "rules": ["C019", "S057"],
       "severity": "warning"
     },
     "naming": {
       "name": "Naming Conventions",
       "description": "Rules for consistent naming patterns",
-      "rules": [
-        "C006"
-      ],
+      "rules": ["C006"],
       "severity": "warning"
     },
     "design": {
       "name": "Design Principles",
       "description": "Rules for software design best practices",
-      "rules": [
-        "C006"
-      ],
+      "rules": ["C006"],
       "severity": "warning"
     },
     "validation": {
       "name": "Data Validation",
       "description": "Rules for proper data validation practices",
-      "rules": [
-        "C031",
-        "S018",
-        "S025",
-        "S026"
-      ],
+      "rules": ["C031", "S018", "S025", "S026"],
       "severity": "error"
     },
     "architecture": {
       "name": "Architecture Guidelines",
       "description": "Rules for system architecture best practices",
-      "rules": [
-        "C014",
-        "C033"
-      ],
+      "rules": ["C014", "C033"],
       "severity": "error"
     }
   },
@@ -2512,44 +1866,33 @@
   },
   "languages": {
     "typescript": {
-      "extensions": [
-        ".ts",
-        ".tsx"
-      ],
+      "extensions": [".ts", ".tsx"],
       "analyzer": "ast",
       "parser": "@typescript-eslint/parser"
     },
     "javascript": {
-      "extensions": [
-        ".js",
-        ".jsx"
-      ],
+      "extensions": [".js", ".jsx"],
       "analyzer": "ast",
       "parser": "@typescript-eslint/parser"
     },
     "dart": {
-      "extensions": [
-        ".dart"
-      ],
+      "extensions": [".dart"],
       "analyzer": "pattern",
       "parser": "regex"
     },
     "kotlin": {
-      "extensions": [
-        ".kt",
-        ".kts"
-      ],
+      "extensions": [".kt", ".kts"],
       "analyzer": "ast",
       "parser": "kotlin-parser"
     }
   },
   "metadata": {
-    "version": "1.1.6",
-    "lastUpdated": "2025-07-24",
-    "totalRules": 44,
+    "version": "1.1.7",
+    "lastUpdated": "2025-08-25",
+    "totalRules": 97,
     "qualityRules": 33,
-    "securityRules": 47,
-    "stableRules": 43,
+    "securityRules": 49,
+    "stableRules": 45,
     "experimentalRules": 1,
     "supportedLanguages": 4,
     "features": [
@@ -2558,7 +1901,9 @@
       "Dynamic rule configuration",
       "ESLint 9.x integration",
       "React rules integration",
-      "Memory leak fixes"
-    ]
+      "Memory leak fixes",
+      "S032 HttpOnly session cookies"
+    ],
+    "consolidatedFrom": "/Users/bach.ngoc.hoai/Docs/ee/coding-quality/extensions/sunlint/config/rules/rules-registry.json"
   }
-}
+}