npm - @the-bearded-bear/claude-craft - Versions diffs - 8.9.0 → 8.10.0-next.d6b59c1 - Mend

@the-bearded-bear/claude-craft 8.9.0 → 8.10.0-next.d6b59c1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (173) hide show

package/Dev/i18n/base/Angular/rules/06-tooling.md CHANGED Viewed

@@ -203,7 +203,7 @@ npm install -D stylelint stylelint-config-standard-scss stylelint-order
 ## Testing Tools
-### Vitest (Recommended for Angular 21+)
+### Vitest (Recommended for Angular 22+)
 ```bash
 npm install -D vitest @analogjs/vitest-angular jsdom

package/Dev/i18n/base/Angular/rules/11-security-angular.md CHANGED Viewed

@@ -308,12 +308,15 @@ Content-Security-Policy:
 ### Server Configuration
 ```nginx
-# nginx.conf
+# nginx.conf — X-XSS-Protection est déprécié ; s'appuyer sur CSP Level 3
+add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self'; frame-ancestors 'none'; upgrade-insecure-requests;" always;
 add_header X-Content-Type-Options "nosniff" always;
 add_header X-Frame-Options "DENY" always;
-add_header X-XSS-Protection "1; mode=block" always;
 add_header Referrer-Policy "strict-origin-when-cross-origin" always;
 add_header Permissions-Policy "geolocation=(), microphone=(), camera=()" always;
+add_header Cross-Origin-Opener-Policy "same-origin" always;
+add_header Cross-Origin-Embedder-Policy "require-corp" always;
+add_header Cross-Origin-Resource-Policy "same-origin" always;
 ```
 ## Sensitive Data Protection

package/Dev/i18n/base/CSharp/commands/check-security.md CHANGED Viewed

@@ -150,12 +150,14 @@ else
     app.UseHsts();
 }
-// ✅ Security headers
+// ✅ Security headers — X-XSS-Protection est déprécié, s'appuyer sur CSP Level 3
 app.Use(async (context, next) =>
 {
     context.Response.Headers.Append("X-Content-Type-Options", "nosniff");
     context.Response.Headers.Append("X-Frame-Options", "DENY");
-    context.Response.Headers.Append("X-XSS-Protection", "1; mode=block");
+    context.Response.Headers.Append("Content-Security-Policy",
+        "default-src 'self'; script-src 'self'; style-src 'self'; frame-ancestors 'none'; upgrade-insecure-requests");
+    context.Response.Headers.Append("Cross-Origin-Opener-Policy", "same-origin");
     await next();
 });
 ```

package/Dev/i18n/base/CSharp/rules/11-security-csharp.md CHANGED Viewed

@@ -213,11 +213,12 @@ app.Use(async (context, next) =>
 {
     context.Response.Headers.Append("X-Content-Type-Options", "nosniff");
     context.Response.Headers.Append("X-Frame-Options", "DENY");
-    context.Response.Headers.Append("X-XSS-Protection", "1; mode=block");
+    // X-XSS-Protection est déprécié — s'appuyer sur CSP Level 3
     context.Response.Headers.Append("Referrer-Policy", "strict-origin-when-cross-origin");
     context.Response.Headers.Append(
         "Content-Security-Policy",
-        "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'");
+        "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; frame-ancestors 'none'; upgrade-insecure-requests");
+    context.Response.Headers.Append("Cross-Origin-Opener-Policy", "same-origin");
     await next();
 });

package/Dev/i18n/base/Common/commands/aliases.md ADDED Viewed

@@ -0,0 +1,237 @@
+---
+name: aliases
+description: CLI aliases for frequently used commands
+tags: [shortcuts, aliases, productivity, quick-access]
+---
+# Claude Craft CLI Aliases
+Quick shortcuts for the most frequently used Claude Craft commands.
+## Overview
+These aliases reduce typing and improve productivity by providing short mnemonics for common operations.
+## Command Aliases
+### Common Namespace
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/ca` | `/common:audit-freshness` | Audit documentation freshness |
+| `/ci` | `/common:init` | Initialize Claude Craft |
+| `/cr` | `/common:release-checklist` | Pre-release verification checklist |
+| `/cs` | `/common:setup-project-context` | Setup project context for Claude |
+### Technology Check Compliance
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/sc` | `/symfony:check-compliance` | Check Symfony compliance |
+| `/rc` | `/react:check-compliance` | Check React compliance |
+| `/fc` | `/flutter:check-compliance` | Check Flutter compliance |
+| `/pc` | `/python:check-compliance` | Check Python compliance |
+| `/ac` | `/angular:check-compliance` | Check Angular compliance |
+| `/vc` | `/vuejs:check-compliance` | Check Vue.js compliance |
+| `/lc` | `/laravel:check-compliance` | Check Laravel compliance |
+| `/cc` | `/csharp:check-compliance` | Check C# compliance |
+### Team Namespace
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/ta` | `/team:audit` | Run team audit (sequential) |
+| `/ts` | `/team:sprint` | Sprint planning and management |
+| `/td` | `/team:delivery` | Delivery workflow |
+### Workflow Namespace
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/wi` | `/workflow:init` | Initialize workflow |
+| `/wp` | `/workflow:plan` | Planning phase |
+### QA Namespace
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/qr` | `/qa:recette` | Run acceptance testing (recette) |
+| `/qs` | `/qa:status` | QA status report |
+### Ralph (Continuous Loop)
+| Alias | Full Command | Description |
+|-------|-------------|-------------|
+| `/rr` | `/common:ralph-run` | Run Ralph continuous AI loop |
+## Usage Examples
+### Quick Project Setup
+```bash
+# Instead of: /common:init
+/ci
+# Instead of: /common:setup-project-context
+/cs
+```
+### Quick Compliance Checks
+```bash
+# Instead of: /symfony:check-compliance
+/sc
+# Instead of: /react:check-compliance
+/rc
+```
+### Quick Team Operations
+```bash
+# Instead of: /team:audit --sequential
+/ta --sequential
+# Instead of: /team:sprint --id=Sprint-3
+/ts --id=Sprint-3
+```
+### Quick QA
+```bash
+# Instead of: /qa:recette --scope=story --id=US-001
+/qr --scope=story --id=US-001
+# Instead of: /qa:status
+/qs
+```
+### Quick Ralph Loop
+```bash
+# Instead of: /common:ralph-run "fix all failing tests"
+/rr "fix all failing tests"
+```
+## Implementation
+These aliases are **virtual** — they exist as documentation shortcuts. Users can:
+1. **Use them directly in Claude Code** (Claude recognizes them via this file)
+2. **Create shell aliases** (for CLI usage)
+3. **Add to shell config** (~/.bashrc, ~/.zshrc, ~/.config/fish/config.fish)
+### Bash/Zsh Setup
+Add to `~/.bashrc` or `~/.zshrc`:
+```bash
+# Claude Craft Aliases
+alias ca='claude-code -p /common:audit-freshness'
+alias ci='claude-code -p /common:init'
+alias cr='claude-code -p /common:release-checklist'
+alias cs='claude-code -p /common:setup-project-context'
+alias sc='claude-code -p /symfony:check-compliance'
+alias rc='claude-code -p /react:check-compliance'
+alias fc='claude-code -p /flutter:check-compliance'
+alias pc='claude-code -p /python:check-compliance'
+alias ac='claude-code -p /angular:check-compliance'
+alias vc='claude-code -p /vuejs:check-compliance'
+alias lc='claude-code -p /laravel:check-compliance'
+alias cc='claude-code -p /csharp:check-compliance'
+alias ta='claude-code -p /team:audit'
+alias ts='claude-code -p /team:sprint'
+alias td='claude-code -p /team:delivery'
+alias wi='claude-code -p /workflow:init'
+alias wp='claude-code -p /workflow:plan'
+alias qr='claude-code -p /qa:recette'
+alias qs='claude-code -p /qa:status'
+alias rr='claude-code -p /common:ralph-run'
+```
+### Fish Setup
+Add to `~/.config/fish/config.fish`:
+```fish
+# Claude Craft Aliases
+alias ca 'claude-code -p /common:audit-freshness'
+alias ci 'claude-code -p /common:init'
+alias cr 'claude-code -p /common:release-checklist'
+alias cs 'claude-code -p /common:setup-project-context'
+alias sc 'claude-code -p /symfony:check-compliance'
+alias rc 'claude-code -p /react:check-compliance'
+alias fc 'claude-code -p /flutter:check-compliance'
+alias pc 'claude-code -p /python:check-compliance'
+alias ac 'claude-code -p /angular:check-compliance'
+alias vc 'claude-code -p /vuejs:check-compliance'
+alias lc 'claude-code -p /laravel:check-compliance'
+alias cc 'claude-code -p /csharp:check-compliance'
+alias ta 'claude-code -p /team:audit'
+alias ts 'claude-code -p /team:sprint'
+alias td 'claude-code -p /team:delivery'
+alias wi 'claude-code -p /workflow:init'
+alias wp 'claude-code -p /workflow:plan'
+alias qr 'claude-code -p /qa:recette'
+alias qs 'claude-code -p /qa:status'
+alias rr 'claude-code -p /common:ralph-run'
+```
+## Mnemonic Logic
+| Pattern | Examples | Logic |
+|---------|----------|-------|
+| **First letter + c** (check) | `/sc`, `/rc`, `/fc` | Technology + check-compliance |
+| **First letter + first letter** | `/ca`, `/ci`, `/cr` | Namespace + command |
+| **Namespace abbreviation** | `/ta`, `/ts`, `/qr` | Team/QA + command initial |
+| **Double letter** | `/rr`, `/cc` | Memorable repetition |
+## Discover More
+Use `/common:search` to discover commands by keyword:
+```bash
+/common:search testing
+/common:search security
+/common:search workflow
+```
+## Best Practices
+1. **Learn 5 aliases first** — Start with `/ci`, `/sc`, `/ta`, `/qr`, `/rr`
+2. **Use shell aliases for CLI** — Add to shell config for terminal usage
+3. **Use virtual aliases in Claude Code** — Just type the alias in conversation
+4. **Combine with arguments** — All aliases support the same arguments as full commands
+## Future Expansion
+Additional aliases can be proposed via:
+- GitHub issues
+- Pull requests
+- Community suggestions
+The goal: **20-30 aliases max** (avoid cognitive overload).
+---
+## Troubleshooting
+**Q: Alias not recognized in Claude Code?**
+A: Mention this file explicitly: "Use `/ca` as defined in `/common:aliases`"
+**Q: Alias not working in terminal?**
+A: Reload shell config: `source ~/.bashrc` or `source ~/.zshrc`
+**Q: Want to add custom aliases?**
+A: Add to `~/.claude/commands/custom/aliases.md` (project-specific)
+---
+**Version:** 1.0.0
+**Author:** The Bearded CTO
+**Date:** 2026-04-17

package/Dev/i18n/base/Common/commands/audit-freshness.md ADDED Viewed

@@ -0,0 +1,176 @@
+---
+description: Audit de fraîcheur multi-stack (versions + best practices) via équipe d'agents parallèles Context7 + Web
+argument-hint: [--wave=1|2|3|all] [--stack=<nom>]
+---
+# Audit de Fraîcheur claude-craft
+Orchestre une **équipe de 17 agents parallèles** pour vérifier que l'ensemble des skills, commands, agents, references et rules du projet sont alignés avec les dernières versions stables et best practices 2026 des frameworks/outils déclarés. Utilise le **MCP Context7** (`mcp__context7__resolve-library-id` + `query-docs`) et **WebSearch** pour les release notes officielles.
+**Résultat :** rapport consolidé `docs/audit/freshness-YYYY-MM-DD.md` — aucune modification automatique des skills/commands/refs.
+## Arguments
+$ARGUMENTS
+- `--wave=1|2|3|all` (défaut `all`) : exécuter uniquement une vague donnée
+- `--stack=<nom>` : limiter la vague 1 à un stack (symfony, react, flutter, python, angular, laravel, vuejs, reactnative, csharp, php)
+## MISSION
+### Étape 1 — Préparer le rapport cible
+1. Déterminer la date du jour (format YYYY-MM-DD)
+2. Créer `docs/audit/freshness-<date>.md` avec un en-tête (version claude-craft, date, nombre d'agents lancés, légende écarts : critique/majeur/mineur/aucun)
+3. Relire `.claude/CLAUDE.md` (table versions) et `.claude/COMPATIBILITY.md` pour la source de vérité des versions déclarées
+### Étape 2 — Vague 1 : Stacks techniques (10 agents EN PARALLÈLE)
+**Lancer les 10 agents dans UN SEUL message** (10 tool_use Task/Agent). Chaque agent reçoit ce prompt (adapter `<STACK>`) :
+```
+Tu audites la fraîcheur du stack <STACK> dans le dépôt claude-craft.
+ÉTAPES :
+1. Lire la version déclarée du framework/langage <STACK> dans :
+   - .claude/CLAUDE.md (table Supported Technologies)
+   - .claude/references/<stack>/CLAUDE.md et project-context.md
+   - .claude/agents/<stack>-reviewer.md (frontmatter + body)
+   - Skills .claude/skills/<stack>-*/SKILL.md
+   - Commandes .claude/commands/<stack>/*.md
+2. Via mcp__context7__resolve-library-id puis mcp__context7__query-docs,
+   récupérer la version stable actuelle + patterns recommandés 2026.
+3. Via WebSearch, vérifier les release notes officielles (site officiel,
+   GitHub releases) — confirmer version stable, breaking changes, nouvelles
+   best practices (ex: signals Angular, async Symfony Messenger, etc.).
+4. Identifier :
+   - Écart de version (déclarée vs stable)
+   - Best practices obsolètes dans les skills/refs/commands
+   - Patterns nouveaux absents du repo (ex: React Compiler, Flutter Impeller)
+5. Retourner EXACTEMENT ce format Markdown (<300 mots) :
+## <STACK>
+- **Version déclarée** : X.Y (source: <path>:<line>)
+- **Version stable actuelle** : X.Y (source: <context7-lib-id> ou <URL>)
+- **Écart** : aucun | mineur | majeur | critique
+- **Best practices à revoir** :
+  - <finding> — source: <URL ou context7 ID>
+- **Patterns manquants** :
+  - <pattern> — source: <URL>
+- **Fichiers claude-craft impactés** : <path1>, <path2>, ...
+- **Sources consultées** : context7=<ids> / web=<urls>
+CONTRAINTE : citer systématiquement les sources. Ne rien inventer. Si une
+info n'est pas trouvée, écrire "non trouvé" explicitement.
+```
+**Stacks couverts :** symfony, react, flutter, python, angular, laravel, vuejs, reactnative, csharp, php
+### Étape 3 — Vague 2 : Transverse (4 agents EN PARALLÈLE)
+Lancer les 4 agents dans un seul message. Chaque agent audite une famille :
+| Agent | Cibles |
+|-------|--------|
+| **Principes** | `.claude/rules/04-solid-principles.md`, `05-kiss-dry-yagni.md`, `01-workflow-analysis.md`, skills `solid-principles`, `kiss-dry-yagni`, `workflow-analysis`. Vérifier : Clean Architecture 2026, Hexagonal evolutions, DDD maturité. |
+| **Testing** | `.claude/rules/07-testing.md`, skills `testing`, `testing-{react,reactnative,python,symfony,flutter}`. Vérifier versions Pest 4, Vitest 2+, Jest 29+, pytest 8+, PHPUnit 11+, patterns AAA/BDD Gherkin. |
+| **Security** | `.claude/rules/11-security.md`, skills `security`, `security-{react,reactnative,flutter,symfony}`. Vérifier OWASP Top 10 2025, headers CSP Level 3, CVE récentes frameworks, JWT bonnes pratiques 2026. |
+| **Git/Docs/DDD** | `.claude/rules/09-git-workflow.md`, `10-documentation.md`, skills `git-workflow`, `documentation`, `ddd-patterns`, `value-objects`, `aggregates`, `domain-events`, `cqrs`, `multitenant`, `i18n`, `async`. Vérifier Conventional Commits v1, OpenAPI 3.1, patterns DDD tactiques. |
+Prompt type (adapter la famille) :
+```
+Tu audites la famille "<FAMILLE>" de claude-craft.
+1. Lire tous les fichiers listés : <paths>
+2. Via mcp__context7__query-docs + WebSearch, identifier l'état de l'art
+   2026 sur ces sujets (versions d'outils, patterns, standards).
+3. Lister les obsolescences, références à des versions anciennes, patterns
+   dépréciés.
+4. Retourner le même format Markdown que la vague 1 (<300 mots, sources citées).
+```
+### Étape 4 — Vague 3 : Infrastructure (3 agents EN PARALLÈLE)
+| Agent | Cibles |
+|-------|--------|
+| **Conteneurs** | Commandes `/docker:*`, `/kubernetes:*`, `/coolify:*` — Docker Compose spec actuelle, K8s API stable, Coolify version. |
+| **IaC** | Commandes `/opentofu:*`, `/ansible:*`, `/hcloud:*` — OpenTofu stable, Ansible core, Hetzner Cloud provider. |
+| **Runtime/DB** | Commandes `/frankenphp:*`, `/pgbouncer:*` — FrankenPHP stable, PgBouncer release. |
+Même pattern de prompt que vague 2.
+### Étape 5 — Agrégation
+1. Récupérer les 17 rapports
+2. Construire dans `docs/audit/freshness-<date>.md` :
+```markdown
+# Audit de Fraîcheur claude-craft — <date>
+**Version claude-craft** : 8.0.0
+**Agents lancés** : 17 (10 stacks + 4 transverse + 3 infra)
+**MCP utilisé** : context7
+**Sources web** : release notes officielles + CHANGELOG
+## Résumé exécutif
+| Sévérité | Nombre |
+|----------|--------|
+| 🔴 Critique | N |
+| 🟠 Majeur | N |
+| 🟡 Mineur | N |
+| ✅ Aucun | N |
+## Tableau global — Versions
+| Stack | Déclarée | Stable actuelle | Écart |
+|-------|----------|-----------------|-------|
+| Symfony | ... | ... | ... |
+| ... | ... | ... | ... |
+## Findings détaillés
+### Vague 1 — Stacks techniques
+<coller chaque rapport>
+### Vague 2 — Transverse
+<coller chaque rapport>
+### Vague 3 — Infrastructure
+<coller chaque rapport>
+## Top 10 actions prioritaires
+1. [Critique] ...
+2. [Majeur] ...
+...
+## Méthodologie
+- Outils : MCP context7 (`resolve-library-id`, `query-docs`), WebSearch
+- Sources de vérité pour versions déclarées : `.claude/CLAUDE.md`,
+  `.claude/references/*/`, `.claude/agents/*-reviewer.md`
+- Aucune modification du dépôt hors `docs/audit/`
+```
+3. Vérifier que seuls `docs/audit/freshness-<date>.md` (et éventuellement `docs/audit/` créé) apparaissent dans `git status`.
+## Règles strictes
+- **NE JAMAIS modifier** skills/commands/agents/references/rules/CLAUDE.md existants
+- **Toutes les affirmations de version doivent citer une source** (context7 ID ou URL)
+- **En cas d'échec d'un sous-agent**, laisser la section correspondante avec `⚠️ audit incomplet : <raison>`
+- **Parallélisme obligatoire** au sein de chaque vague (un seul message = N Task calls)
+- **Langue du rapport** : français, avec accents
+## Exemple
+```
+/common:audit-freshness
+/common:audit-freshness --wave=1 --stack=symfony
+```

package/Dev/i18n/base/Common/commands/init.md ADDED Viewed

@@ -0,0 +1,154 @@
+# /init - Bootstrap Claude-Craft Structure
+Initialise la structure Claude-Craft pour un nouveau projet.
+## Étapes
+### 1. Identifier la Technologie
+Demander à l'utilisateur quelle technologie utiliser:
+- **C# / .NET** - Clean Architecture, CQRS, MediatR
+- **Symfony / PHP** - Clean Architecture, DDD, Hexagonal
+- **Flutter / Dart** - Clean Architecture, BLoC/Riverpod
+### 2. Créer la Structure
+Selon la technologie choisie, créer:
+```
+.claude/
+├── CLAUDE.md               # Quick reference (copie depuis template)
+├── INDEX.md                # Index complet
+└── references/
+    └── [technology]/       # Références spécifiques
+        └── project-context.md  # Personnalisé pour le projet
+```
+### 3. Personnaliser project-context.md
+Demander les informations du projet:
+- Nom du projet
+- Description brève
+- Entités principales
+- Services externes
+- Contraintes particulières
+### 4. Templates par Technologie
+#### C# / .NET
+```markdown
+# Claude-Craft - {{PROJECT_NAME}}
+**Stack**: .NET 10 LTS, C# 14, Clean Architecture, CQRS, MediatR, EF Core, xUnit
+## Quick Reference
+See `@.claude/INDEX.md` for condensed checklists and patterns.
+## Full Documentation
+For detailed rules: `@.claude/references/csharp/`
+## Available Commands
+- `/csharp:check-compliance` - Full compliance audit
+- `/csharp:check-architecture` - Architecture validation
+- `/csharp:check-code-quality` - Code quality analysis
+- `/csharp:check-testing` - Test coverage analysis
+- `/csharp:check-security` - Security audit (OWASP)
+- `/csharp:generate-feature` - Generate CQRS feature
+## Docker Requirement
+Always use Docker for commands to abstract from local environment.
+```
+#### Symfony / PHP
+```markdown
+# Claude-Craft - {{PROJECT_NAME}}
+**Stack**: PHP 8.5, Symfony 8.1, Clean Architecture, DDD, Doctrine ORM
+## Quick Reference
+See `@.claude/references/symfony/CLAUDE.md` for quick patterns.
+## Full Documentation
+For detailed rules: `@.claude/references/symfony/`
+## Key Files
+- `architecture.md` - Clean Architecture DDD
+- `quality-tools.md` - PHPStan 2.x, Rector 2.x, Deptrac v4
+- `json-streamer.md` - JSON Streamer Component
+- `object-mapper.md` - ObjectMapper Component
+## Docker Requirement
+Always use Docker for commands to abstract from local environment.
+```
+#### Flutter / Dart
+```markdown
+# Claude-Craft - {{PROJECT_NAME}}
+**Stack**: Flutter 3.44+, Dart 3.12+, Clean Architecture, Riverpod/BLoC
+## Quick Reference
+See `@.claude/references/flutter/CLAUDE.md` for quick patterns.
+## Full Documentation
+For detailed rules: `@.claude/references/flutter/`
+## Key Files
+- `wasm.md` - WebAssembly compilation
+- `mcp-integration.md` - Model Context Protocol
+- `web-performance-2026.md` - Web optimization
+## Docker Requirement
+Use Docker for CI/CD. Local dev with flutter CLI.
+```
+### 5. Vérification
+Après création, afficher:
+- Fichiers créés
+- Prochaines étapes recommandées
+- Commandes disponibles
+## Exemple d'Utilisation
+```
+User: /init
+Claude: Quelle technologie souhaitez-vous configurer?
+- C# / .NET (Clean Architecture, CQRS)
+- Symfony / PHP (DDD, Hexagonal)
+- Flutter / Dart (BLoC/Riverpod)
+User: Symfony
+Claude: Parfait! Quelques questions:
+1. Nom du projet?
+2. Description brève?
+3. Entités métier principales?
+[... création des fichiers ...]
+Structure créée avec succès!
+- .claude/CLAUDE.md
+- .claude/references/symfony/project-context.md
+Prochaines étapes:
+1. Personnaliser project-context.md avec vos entités
+2. Consulter symfony/CLAUDE.md pour les patterns
+3. Utiliser make quality pour vérifier le code
+```