npm - @umacloud/knowledge - Versions diffs - 1.0.1 - Mend

@umacloud/knowledge 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (418) hide show

package/00-governance/governance-capabilities.md +557 -0
package/00-governance/knowledge-map.md +39 -0
package/00-governance/maintenance-policy.md +76 -0
package/00-governance/review-checklist.md +81 -0
package/README.md +13 -0
package/ai/01-standards/agent-development-complete.md +691 -0
package/ai/01-standards/llm-application-complete.md +488 -0
package/ai/01-standards/mlops-complete.md +798 -0
package/ai/01-standards/prompt-engineering-complete.md +646 -0
package/ai/01-standards/rag-architecture-complete.md +649 -0
package/ai/02-playbooks/llm-evaluation-playbook.md +847 -0
package/ai/03-checklists/ai-project-checklist.md +215 -0
package/ai/04-antipatterns/ai-antipatterns.md +661 -0
package/ai/05-cases/case-rag-production.md +147 -0
package/ai/06-glossary/ai-glossary.md +162 -0
package/ai/agent-evaluation-benchmark.md +53 -0
package/ai/ai-agent-memory-context-management.md +41 -0
package/ai/ai-cost-capacity-optimization-playbook.md +42 -0
package/ai/ai-data-security-and-compliance-playbook.md +37 -0
package/ai/ai-domain-index-and-checklist.md +40 -0
package/ai/ai-governance-maturity-model.md +50 -0
package/ai/ai-model-selection-and-routing-strategy.md +47 -0
package/ai/ai-observability-and-oncall-runbook.md +52 -0
package/ai/ai-rag-engineering-playbook.md +42 -0
package/ai/ai-red-team-and-safety-evaluation.md +42 -0
package/ai/ai-release-readiness-and-rollback-gate.md +42 -0
package/ai/llm-agent-engineering-deep-dive.md +57 -0
package/ai/prompt-and-tool-guardrails.md +52 -0
package/api/01-standards/enterprise-api-standards.md +198 -0
package/api/01-standards/rest-api-design-guide.md +63 -0
package/api/02-playbooks/api-pagination-playbook.md +93 -0
package/api/02-playbooks/graphql-production-playbook.md +176 -0
package/api/03-checklists/api-review-checklist.md +55 -0
package/api/04-antipatterns/api-antipatterns.md +112 -0
package/architecture/01-standards/api-gateway-patterns.md +496 -0
package/architecture/01-standards/cloud-native-patterns.md +644 -0
package/architecture/01-standards/distributed-systems-patterns.md +591 -0
package/architecture/01-standards/event-driven-architecture.md +595 -0
package/architecture/01-standards/microservices-patterns-complete.md +968 -0
package/architecture/01-standards/microservices-patterns.md +495 -0
package/architecture/01-standards/system-design-interview.md +664 -0
package/architecture/02-playbooks/microservices-patterns-playbook.md +137 -0
package/architecture/02-playbooks/migration-playbook.md +780 -0
package/architecture/02-playbooks/system-design-playbook.md +779 -0
package/architecture/03-checklists/architecture-decision-checklist.md +297 -0
package/architecture/04-antipatterns/architecture-antipatterns.md +417 -0
package/architecture/05-cases/case-netflix-microservices.md +413 -0
package/architecture/06-glossary/architecture-glossary.md +164 -0
package/architecture/adr-template-and-examples.md +38 -0
package/architecture/api-gateway-deep-dive.md +1291 -0
package/architecture/configuration-management.md +1162 -0
package/architecture/distributed-transactions.md +1220 -0
package/architecture/microservices-complete.md +735 -0
package/architecture/resilience-and-disaster-patterns.md +37 -0
package/architecture/service-governance.md +1198 -0
package/architecture/system-architecture-deep-dive.md +37 -0
package/backend/01-standards/analytics-and-growth.md +65 -0
package/backend/01-standards/api-and-error-conventions.md +120 -0
package/backend/01-standards/application-layering-and-packaging.md +160 -0
package/backend/01-standards/auth-implementation.md +104 -0
package/backend/01-standards/backend-framework-idioms.md +74 -0
package/backend/01-standards/background-jobs-and-async.md +66 -0
package/backend/01-standards/caching-strategies-complete.md +390 -0
package/backend/01-standards/config-and-observability.md +77 -0
package/backend/01-standards/data-modeling-and-persistence.md +94 -0
package/backend/01-standards/django-complete.md +1765 -0
package/backend/01-standards/email-and-notifications.md +64 -0
package/backend/01-standards/fastapi-complete.md +925 -0
package/backend/01-standards/file-upload-and-storage.md +66 -0
package/backend/01-standards/graphql-api-complete.md +416 -0
package/backend/01-standards/llm-application-standard.md +78 -0
package/backend/01-standards/message-queue-patterns.md +379 -0
package/backend/01-standards/microservices-and-distributed.md +78 -0
package/backend/01-standards/nestjs-complete.md +2167 -0
package/backend/01-standards/payment-integration.md +80 -0
package/backend/01-standards/rate-limiting-complete.md +451 -0
package/backend/01-standards/realtime-and-websocket.md +65 -0
package/backend/01-standards/search-and-filtering.md +64 -0
package/backend/01-standards/spring-boot-complete.md +445 -0
package/backend/02-playbooks/api-design-playbook.md +718 -0
package/backend/02-playbooks/email-send-playbook.md +130 -0
package/backend/02-playbooks/file-upload-s3-playbook.md +153 -0
package/backend/02-playbooks/typescript-enterprise-playbook.md +133 -0
package/backend/02-playbooks/websocket-realtime-playbook.md +154 -0
package/backend/03-checklists/api-launch-checklist.md +189 -0
package/backend/04-antipatterns/backend-antipatterns.md +1051 -0
package/blockchain/01-standards/blockchain-basics.md +557 -0
package/blockchain/01-standards/smart-contract-development.md +1315 -0
package/cicd/01-standards/deployment-and-delivery-standard.md +96 -0
package/cicd/01-standards/github-actions-complete.md +473 -0
package/cicd/01-standards/release-and-store-submission.md +75 -0
package/cicd/02-playbooks/cicd-pipeline-playbook.md +144 -0
package/cicd/02-playbooks/release-management-playbook.md +605 -0
package/cicd/03-checklists/pipeline-security-checklist.md +168 -0
package/cicd/04-antipatterns/cicd-antipatterns.md +589 -0
package/cicd/05-cases/case-deployment-automation.md +221 -0
package/cicd/05-cases/case-gitops-transformation.md +212 -0
package/cicd/06-glossary/cicd-glossary.md +114 -0
package/cicd/cicd-blueprint-deep-dive.md +38 -0
package/cicd/release-readiness-gate.md +37 -0
package/cloud-native/01-standards/container-security.md +741 -0
package/cloud-native/01-standards/kubernetes-complete.md +812 -0
package/cloud-native/02-playbooks/api-gateway-playbook.md +155 -0
package/cloud-native/02-playbooks/gitops-with-argocd.md +760 -0
package/cloud-native/02-playbooks/k8s-troubleshooting-playbook.md +1942 -0
package/cloud-native/02-playbooks/message-queue-playbook.md +129 -0
package/cloud-native/02-playbooks/multicloud-governance.md +726 -0
package/cloud-native/02-playbooks/serverless-patterns.md +788 -0
package/cloud-native/02-playbooks/service-mesh-playbook.md +612 -0
package/cloud-native/02-playbooks/terraform-iac-playbook.md +143 -0
package/cloud-native/03-checklists/container-security-checklist.md +431 -0
package/cloud-native/03-checklists/k8s-production-readiness-checklist.md +460 -0
package/cloud-native/04-antipatterns/container-antipatterns.md +660 -0
package/cloud-native/04-antipatterns/k8s-antipatterns.md +743 -0
package/cloud-native/05-cases/case-k8s-migration.md +478 -0
package/cloud-native/05-cases/case-k8s-scaling.md +642 -0
package/cloud-native/05-cases/case-k8s-security-incident.md +397 -0
package/cloud-native/06-glossary/cloud-native-glossary.md +337 -0
package/cross-platform/01-standards/cross-platform-frameworks.md +83 -0
package/cross-platform/01-standards/platform-selection-and-architecture.md +77 -0
package/data/01-standards/elasticsearch-complete.md +2098 -0
package/data/01-standards/postgresql-complete.md +1613 -0
package/data/01-standards/redis-complete.md +1527 -0
package/data/02-playbooks/database-optimization-playbook.md +403 -0
package/data/02-playbooks/elasticsearch-production-playbook.md +132 -0
package/data/03-checklists/database-launch-checklist.md +187 -0
package/data/04-antipatterns/database-antipatterns.md +873 -0
package/data/05-cases/case-database-migration.md +310 -0
package/data/06-glossary/database-glossary.md +440 -0
package/data/data-governance-and-modeling-deep-dive.md +39 -0
package/data-engineering/01-standards/airflow-complete.md +523 -0
package/data-engineering/01-standards/kafka-complete.md +1521 -0
package/data-engineering/02-playbooks/spark-etl-playbook.md +496 -0
package/data-engineering/03-checklists/pipeline-launch-checklist.md +194 -0
package/data-engineering/04-antipatterns/data-pipeline-antipatterns.md +684 -0
package/data-engineering/05-cases/case-real-time-pipeline.md +355 -0
package/data-engineering/06-glossary/data-engineering-glossary.md +429 -0
package/database/01-standards/database-schema-standards.md +147 -0
package/database/02-playbooks/postgresql-optimization-quick.md +52 -0
package/database/02-playbooks/postgresql-performance-optimization.md +58 -0
package/database/02-playbooks/postgresql-production-playbook.md +146 -0
package/database/02-playbooks/redis-caching-playbook.md +117 -0
package/database/03-checklists/database-review-checklist.md +50 -0
package/database/04-antipatterns/database-antipatterns.md +112 -0
package/design/01-standards/ui-design-system-complete.md +423 -0
package/design/02-playbooks/design-handoff-playbook.md +254 -0
package/design/02-playbooks/design-review-playbook.md +388 -0
package/design/03-checklists/design-review-checklist.md +246 -0
package/design/04-antipatterns/design-antipatterns.md +378 -0
package/design/05-cases/case-design-system-adoption.md +328 -0
package/design/06-glossary/design-glossary.md +329 -0
package/design/ui-full-lifecycle-cross-platform-playbook.md +571 -0
package/design/ux-system-deep-dive.md +38 -0
package/design-systems/00-craft-rules.md +71 -0
package/design-systems/aesthetic-families.md +43 -0
package/design-systems/anti-ai-slop.md +162 -0
package/design-systems/bold-geometric.md +120 -0
package/design-systems/brutalist-bold.md +103 -0
package/design-systems/editorial-clean.md +109 -0
package/design-systems/glass-aurora.md +108 -0
package/design-systems/modern-minimal.md +145 -0
package/design-systems/premium-luxury.md +106 -0
package/design-systems/product-type-design-map.md +48 -0
package/design-systems/soft-warm.md +123 -0
package/design-systems/tech-utility.md +113 -0
package/desktop/01-standards/desktop-app-standard.md +72 -0
package/desktop/01-standards/desktop-design.md +71 -0
package/development/00-governance/document-template.md +41 -0
package/development/01-standards/api-versioning-strategies.md +432 -0
package/development/01-standards/authentication-patterns-complete.md +479 -0
package/development/01-standards/css-architecture-complete.md +550 -0
package/development/01-standards/database-migration-strategies.md +484 -0
package/development/01-standards/elasticsearch-complete.md +347 -0
package/development/01-standards/git-complete.md +371 -0
package/development/01-standards/golang-complete.md +1565 -0
package/development/01-standards/graphql-complete.md +298 -0
package/development/01-standards/javascript-bundlers-complete.md +469 -0
package/development/01-standards/javascript-typescript-complete.md +528 -0
package/development/01-standards/jest-complete.md +275 -0
package/development/01-standards/linux-complete.md +234 -0
package/development/01-standards/logging-observability-complete.md +526 -0
package/development/01-standards/microservices-communication.md +502 -0
package/development/01-standards/mongodb-complete.md +406 -0
package/development/01-standards/oauth2-complete.md +285 -0
package/development/01-standards/performance-optimization-complete.md +289 -0
package/development/01-standards/playwright-complete.md +247 -0
package/development/01-standards/postgresql-complete.md +456 -0
package/development/01-standards/pytest-complete.md +340 -0
package/development/01-standards/python-async-programming.md +902 -0
package/development/01-standards/python-complete.md +956 -0
package/development/01-standards/python-decorators-complete.md +799 -0
package/development/01-standards/python-design-patterns.md +2854 -0
package/development/01-standards/python-packaging-distribution.md +420 -0
package/development/01-standards/python-testing-strategies.md +607 -0
package/development/01-standards/python-web-frameworks-comparison.md +471 -0
package/development/01-standards/redis-complete.md +317 -0
package/development/01-standards/rest-api-complete.md +316 -0
package/development/01-standards/rust-complete.md +578 -0
package/development/01-standards/typescript-advanced-types.md +1513 -0
package/development/01-standards/web-security-complete.md +292 -0
package/development/02-playbooks/api-design-playbook.md +810 -0
package/development/02-playbooks/database-migration-playbook.md +580 -0
package/development/02-playbooks/debugging-playbook.md +692 -0
package/development/02-playbooks/feature-delivery-playbook.md +430 -0
package/development/02-playbooks/incident-hotfix-playbook.md +387 -0
package/development/02-playbooks/performance-optimization-playbook.md +531 -0
package/development/02-playbooks/performance-tuning-playbook.md +652 -0
package/development/02-playbooks/refactor-playbook.md +403 -0
package/development/02-playbooks/release-playbook.md +469 -0
package/development/03-checklists/architecture-review-checklist.md +168 -0
package/development/03-checklists/data-migration-checklist.md +157 -0
package/development/03-checklists/oncall-handover-checklist.md +173 -0
package/development/03-checklists/pr-checklist.md +158 -0
package/development/03-checklists/production-readiness-checklist.md +190 -0
package/development/03-checklists/release-readiness-checklist.md +154 -0
package/development/03-checklists/security-review-checklist.md +182 -0
package/development/04-antipatterns/api-antipatterns.md +657 -0
package/development/04-antipatterns/architecture-antipatterns.md +686 -0
package/development/04-antipatterns/backend-antipatterns.md +648 -0
package/development/04-antipatterns/cicd-antipatterns.md +540 -0
package/development/04-antipatterns/code-smell-antipatterns.md +571 -0
package/development/04-antipatterns/data-antipatterns.md +658 -0
package/development/04-antipatterns/database-antipatterns.md +578 -0
package/development/04-antipatterns/frontend-antipatterns.md +635 -0
package/development/04-antipatterns/reliability-antipatterns.md +700 -0
package/development/04-antipatterns/security-antipatterns.md +747 -0
package/development/05-cases/case-api-version-migration.md +428 -0
package/development/05-cases/case-authorization-hardening.md +383 -0
package/development/05-cases/case-bluegreen-rollback.md +466 -0
package/development/05-cases/case-cache-snowball-protection.md +485 -0
package/development/05-cases/case-ci-cd-pipeline.md +544 -0
package/development/05-cases/case-database-scaling.md +500 -0
package/development/05-cases/case-db-hotspot-optimization.md +487 -0
package/development/05-cases/case-incident-mttr-reduction.md +563 -0
package/development/05-cases/case-microservice-migration.md +375 -0
package/development/05-cases/case-performance-optimization.md +406 -0
package/development/05-cases/case-security-incident-response.md +345 -0
package/development/06-glossary/full-stack-glossary.md +166 -0
package/development/09-maturity/quarterly-audit-template.md +35 -0
package/development/11-ui-excellence/ui-aesthetic-system.md +41 -0
package/development/11-ui-excellence/ui-engineering-excellence.md +435 -0
package/development/12-scenarios/development-scenarios-guide.md +565 -0
package/development/13-implementation-assets/implementation-toolkit.md +282 -0
package/development/13-implementation-assets/knowledge-gates-execution.md +43 -0
package/development/14-full-lifecycle/software-lifecycle-gates.md +511 -0
package/development/15-lifecycle-templates/project-templates-collection.md +791 -0
package/development/api-contract-and-versioning-guide.md +36 -0
package/development/api-governance-complete.md +43 -0
package/development/backend-engineering-complete.md +43 -0
package/development/code-review-quality-complete.md +43 -0
package/development/concurrency-reliability-complete.md +43 -0
package/development/database-engineering-complete.md +43 -0
package/development/engineering-effectiveness-complete.md +43 -0
package/development/engineering-standards-deep-dive.md +38 -0
package/development/frontend-engineering-complete.md +43 -0
package/development/performance-capacity-complete.md +43 -0
package/development/refactor-migration-complete.md +42 -0
package/development/refactoring-and-techdebt-playbook.md +37 -0
package/development/security-in-development-complete.md +43 -0
package/devops/01-standards/cicd-pipeline-complete.md +262 -0
package/devops/01-standards/docker-complete.md +1490 -0
package/devops/01-standards/github-actions-complete.md +337 -0
package/devops/01-standards/kubernetes-complete.md +638 -0
package/devops/01-standards/terraform-complete.md +2117 -0
package/devops/02-playbooks/docker-compose-playbook.md +233 -0
package/devops/02-playbooks/docker-k8s-production-playbook.md +186 -0
package/devops/02-playbooks/docker-production-playbook.md +952 -0
package/edge-iot/01-standards/edge-iot-complete.md +473 -0
package/experts/architect/api-design.md +178 -0
package/experts/architect/methodology.md +124 -0
package/experts/architect/security.md +75 -0
package/experts/backend-lead/methodology.md +216 -0
package/experts/devops/methodology.md +160 -0
package/experts/frontend-lead/methodology.md +178 -0
package/experts/product-manager/industry/ecommerce.md +43 -0
package/experts/product-manager/industry/saas.md +40 -0
package/experts/product-manager/methodology.md +97 -0
package/experts/qa-lead/methodology.md +123 -0
package/experts/qa-lead/test-strategy.md +128 -0
package/experts/uiux-designer/methodology.md +125 -0
package/frontend/01-standards/accessibility-complete.md +532 -0
package/frontend/01-standards/accessibility-standard.md +74 -0
package/frontend/01-standards/admin-dashboard-and-crud.md +72 -0
package/frontend/01-standards/design-tokens-complete.md +444 -0
package/frontend/01-standards/forms-and-validation.md +77 -0
package/frontend/01-standards/frontend-architecture-and-layering.md +119 -0
package/frontend/01-standards/i18n-and-localization.md +65 -0
package/frontend/01-standards/nextjs-complete.md +451 -0
package/frontend/01-standards/react-complete.md +713 -0
package/frontend/01-standards/react-hooks-complete-guide.md +1100 -0
package/frontend/01-standards/react-hooks-complete.md +1171 -0
package/frontend/01-standards/seo-and-web-vitals.md +77 -0
package/frontend/01-standards/state-management-complete.md +444 -0
package/frontend/01-standards/vue-complete.md +499 -0
package/frontend/01-standards/vue3-complete.md +2002 -0
package/frontend/01-standards/web-framework-best-practices.md +64 -0
package/frontend/01-standards/web-performance-complete.md +495 -0
package/frontend/02-playbooks/accessibility-a11y-playbook.md +161 -0
package/frontend/02-playbooks/frontend-performance-playbook.md +707 -0
package/frontend/02-playbooks/i18n-internationalization-playbook.md +120 -0
package/frontend/02-playbooks/performance-optimization-playbook.md +163 -0
package/frontend/02-playbooks/react-nextjs-production-playbook.md +167 -0
package/frontend/02-playbooks/react-state-management-playbook.md +173 -0
package/frontend/03-checklists/component-quality-checklist.md +166 -0
package/frontend/03-checklists/frontend-launch-checklist.md +299 -0
package/frontend/04-antipatterns/frontend-antipatterns.md +886 -0
package/frontend/05-cases/case-performance-optimization.md +274 -0
package/harmony/01-standards/harmonyos-arkts-standard.md +75 -0
package/harmony/01-standards/harmonyos-design.md +65 -0
package/high-quality-engineering-playbook.md +54 -0
package/incident/01-standards/incident-response-complete.md +303 -0
package/incident/02-playbooks/chaos-engineering-playbook.md +883 -0
package/incident/02-playbooks/postmortem-playbook.md +398 -0
package/incident/03-checklists/incident-readiness-checklist.md +181 -0
package/incident/04-antipatterns/incident-antipatterns.md +490 -0
package/incident/05-cases/case-cascade-failure.md +176 -0
package/incident/06-glossary/incident-glossary.md +114 -0
package/incident/postmortem-and-response-deep-dive.md +39 -0
package/industries/ecommerce/ecommerce-complete.md +631 -0
package/industries/education/education-complete.md +555 -0
package/industries/fintech/fintech-complete.md +501 -0
package/industries/gaming/gaming-complete.md +587 -0
package/industries/healthcare/healthcare-complete.md +452 -0
package/low-code/01-standards/low-code-complete.md +944 -0
package/miniprogram/01-standards/ai-common-mistakes.md +61 -0
package/miniprogram/01-standards/miniprogram-custom-navbar-capsule.md +77 -0
package/miniprogram/01-standards/miniprogram-design.md +61 -0
package/miniprogram/01-standards/miniprogram-standard.md +81 -0
package/mobile/01-standards/android-material-design.md +70 -0
package/mobile/01-standards/flutter-complete.md +384 -0
package/mobile/01-standards/ios-design-hig.md +78 -0
package/mobile/01-standards/mobile-app-standard.md +85 -0
package/mobile/01-standards/react-native-complete.md +352 -0
package/mobile/02-playbooks/mobile-cross-platform-playbook.md +175 -0
package/mobile/02-playbooks/mobile-performance.md +473 -0
package/mobile/03-checklists/mobile-release-checklist.md +234 -0
package/mobile/04-antipatterns/mobile-antipatterns.md +798 -0
package/mobile/05-cases/case-app-performance.md +500 -0
package/mobile/05-cases/case-app-startup-optimization.md +218 -0
package/mobile/06-glossary/mobile-glossary.md +484 -0
package/observability/01-standards/observability-standards.md +103 -0
package/observability/02-playbooks/prometheus-grafana-playbook.md +135 -0
package/observability/02-playbooks/structured-logging-playbook.md +73 -0
package/observability/03-checklists/observability-checklist.md +54 -0
package/observability/04-antipatterns/observability-antipatterns.md +106 -0
package/operations/01-standards/prometheus-monitoring-complete.md +1578 -0
package/operations/02-playbooks/capacity-planning-playbook.md +620 -0
package/operations/03-checklists/production-launch-checklist.md +365 -0
package/operations/04-antipatterns/operations-antipatterns.md +664 -0
package/operations/05-cases/case-sre-practices.md +581 -0
package/operations/06-glossary/operations-glossary.md +120 -0
package/operations/aiops-anomaly-detection.md +758 -0
package/operations/capacity-planning.md +1061 -0
package/operations/chaos-engineering.md +659 -0
package/operations/incident-command-system.md +38 -0
package/operations/observability-complete.md +442 -0
package/operations/slo-sli-playbook.md +517 -0
package/operations/sre-operations-deep-dive.md +39 -0
package/package.json +8 -0
package/performance/01-standards/performance-and-scalability.md +80 -0
package/performance/01-standards/performance-standards.md +156 -0
package/performance/02-playbooks/query-optimization-playbook.md +103 -0
package/performance/03-checklists/performance-checklist.md +56 -0
package/performance/04-antipatterns/performance-antipatterns.md +146 -0
package/product/01-standards/product-management-complete.md +285 -0
package/product/02-playbooks/feature-launch-playbook.md +207 -0
package/product/02-playbooks/user-research-playbook.md +532 -0
package/product/03-checklists/feature-launch-checklist.md +275 -0
package/product/04-antipatterns/product-antipatterns.md +355 -0
package/product/05-cases/case-mvp-to-scale.md +384 -0
package/product/06-glossary/product-glossary.md +462 -0
package/product/feature-prioritization-framework.md +40 -0
package/product/kpi-and-metric-tree.md +37 -0
package/product/product-discovery-and-prd-deep-dive.md +41 -0
package/quantum/01-standards/quantum-complete.md +1186 -0
package/security/01-standards/api-security-complete.md +511 -0
package/security/01-standards/container-runtime-security.md +574 -0
package/security/01-standards/data-protection-gdpr.md +543 -0
package/security/01-standards/owasp-top10-complete.md +1890 -0
package/security/01-standards/secure-coding-baseline.md +90 -0
package/security/01-standards/supply-chain-security.md +441 -0
package/security/01-standards/web-security-checklist.md +108 -0
package/security/01-standards/zero-trust-architecture.md +521 -0
package/security/02-playbooks/auth-sso-playbook.md +166 -0
package/security/02-playbooks/incident-response-security-playbook.md +588 -0
package/security/02-playbooks/owasp-api-security-playbook.md +129 -0
package/security/02-playbooks/payment-integration-playbook.md +119 -0
package/security/02-playbooks/penetration-testing-playbook.md +517 -0
package/security/03-checklists/security-audit-checklist.md +356 -0
package/security/04-antipatterns/security-coding-antipatterns.md +580 -0
package/security/05-cases/case-log4shell-incident.md +537 -0
package/security/05-cases/case-major-breaches.md +468 -0
package/security/06-glossary/security-glossary.md +212 -0
package/security/compliance-automation.md +993 -0
package/security/container-security.md +680 -0
package/security/devsecops-complete.md +426 -0
package/security/sast-dast-sca.md +775 -0
package/security/secrets-management.md +594 -0
package/security/security-architecture-deep-dive.md +37 -0
package/security/threat-modeling-stride-playbook.md +40 -0
package/seed-templates/auth-system.md +59 -0
package/seed-templates/blog-content.md +94 -0
package/seed-templates/dashboard.md +89 -0
package/seed-templates/docs-site.md +73 -0
package/seed-templates/e-commerce.md +50 -0
package/seed-templates/saas-landing.md +92 -0
package/seed-templates/settings-page.md +51 -0
package/testing/01-standards/test-strategy-and-layering.md +83 -0
package/testing/01-standards/testing-strategy-complete.md +422 -0
package/testing/01-standards/unit-testing-best-practices.md +118 -0
package/testing/02-playbooks/e2e-testing-playbook.md +988 -0
package/testing/02-playbooks/testing-strategy-playbook.md +126 -0
package/testing/03-checklists/test-strategy-checklist.md +208 -0
package/testing/04-antipatterns/testing-antipatterns.md +718 -0
package/testing/05-cases/case-testing-transformation.md +300 -0
package/testing/06-glossary/testing-glossary.md +110 -0
package/testing/risk-based-test-matrix.md +36 -0
package/testing/testing-strategy-deep-dive.md +37 -0

package/development/api-contract-and-versioning-guide.md ADDED Viewed

@@ -0,0 +1,36 @@
+---
+id: api-contract-and-versioning-guide
+title: api-contract-and-versioning-guide
+domain: development
+category: api-contract-and-versioning-guide.md
+difficulty: intermediate
+tags: [and, api, contract, development, guide, versioning, 契约与版本治理指南]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## API 契约与版本治理指南
+### 目标
+- 保证前后端与外部调用方在接口演进中保持稳定兼容。
+### 契约规范
+- 请求参数：类型、必填、默认值、边界说明。
+- 响应结构：成功与错误统一结构。
+- 错误码：分层编码，具备可定位语义。
+- 幂等性：关键写操作必须定义幂等策略。
+### 版本策略
+- 兼容更新：新增字段保持向后兼容。
+- 非兼容更新：必须升主版本并提供迁移窗口。
+- 废弃流程：公告期、灰度期、关闭期三阶段执行。
+### 发布检查项
+- 契约变更是否同步更新文档与示例。
+- 是否补充契约测试与回归测试。
+- 是否评估现有调用方影响范围。
+### 常见失败模式
+- 文档与真实返回结构不一致。
+- 非兼容变更未升版本导致线上故障。

package/development/api-governance-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: api-governance-complete
+title: api-governance-complete
+domain: development
+category: api-governance-complete.md
+difficulty: intermediate
+tags: [api, api治理完整知识库, complete, development, governance]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## API治理完整知识库
+### 1. 契约优先
+- 接口先定义契约，再进入实现。
+- 请求参数必须有类型、范围、必填规则。
+- 响应结构必须区分成功与失败模型。
+### 2. 版本治理
+- 向后兼容变更优先，不兼容变更必须升主版本。
+- 旧版本下线需经过公告期、迁移期、冻结期。
+- 每次变更必须评估调用方影响范围。
+### 3. 认证与授权
+- 认证负责识别身份，授权负责资源访问控制。
+- 敏感接口必须校验主体、租户、资源归属。
+- Token策略需定义过期、续签、撤销机制。
+### 4. 幂等与防重
+- 写接口应支持幂等键。
+- 重复提交必须返回一致结果或可识别错误。
+- 异步回调场景必须具备去重机制。
+### 5. 质量与门禁
+- 每个接口必须有契约测试。
+- API错误码必须接入监控与告警。
+- 上线前必须通过兼容性检查。
+### 6. 网关治理
+- 限流、黑白名单、签名校验在网关统一实施。
+- 高风险接口必须启用审计追踪。
+- 流量异常时支持按路由快速熔断。

package/development/backend-engineering-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: backend-engineering-complete
+title: backend-engineering-complete
+domain: development
+category: backend-engineering-complete.md
+difficulty: intermediate
+tags: [backend, complete, development, engineering, 后端工程完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 后端工程完整知识库
+### 1. 分层架构
+- 路由层只做协议适配与参数接收。
+- 服务层编排业务流程与事务边界。
+- 仓储层封装数据访问，不泄露底层实现细节。
+### 2. 领域建模
+- 主实体必须定义唯一标识、生命周期状态、关键约束。
+- 跨聚合写操作必须明确一致性策略。
+- 领域事件用于解耦非核心同步流程。
+### 3. 异常与错误码
+- 错误码分层：业务错误、系统错误、依赖错误。
+- 错误响应结构统一，便于前端和监控系统消费。
+- 不向外暴露内部堆栈与敏感实现细节。
+### 4. 依赖调用治理
+- 所有外部调用必须配置超时。
+- 仅对可恢复错误启用有限重试。
+- 依赖异常触发熔断与降级策略。
+### 5. 配置与环境
+- 配置集中管理，分环境隔离。
+- 敏感配置仅通过安全存储注入。
+- 变更配置必须可回滚并可审计。
+### 6. 可观测性
+- 日志统一包含请求ID、用户ID、租户ID。
+- 关键链路暴露时延、成功率、错误率指标。
+- 分布式调用必须具备追踪ID贯通能力。

package/development/code-review-quality-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: code-review-quality-complete
+title: code-review-quality-complete
+domain: development
+category: code-review-quality-complete.md
+difficulty: intermediate
+tags: [code, complete, development, quality, review, 代码评审与质量完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 代码评审与质量完整知识库
+### 1. 评审原则
+- 评审关注正确性、可维护性、安全性、性能、可观测性。
+- 评审意见必须具体、可执行、可验证。
+- 对高风险变更执行严格评审等级。
+### 2. PR质量标准
+- PR必须聚焦单一主题。
+- 变更必须包含测试与文档更新。
+- 变更说明需覆盖影响范围与回滚策略。
+### 3. 安全评审清单
+- 是否存在越权风险与输入校验缺失。
+- 是否可能泄露敏感信息。
+- 是否存在危险默认配置。
+### 4. 性能评审清单
+- 是否引入额外高复杂度计算。
+- 是否增加高频链路IO与序列化开销。
+- 是否影响缓存命中与数据库负载。
+### 5. 可运维性评审清单
+- 是否补充关键日志与指标。
+- 是否可在异常时快速定位问题。
+- 是否可安全回滚到上一个稳定版本。
+### 6. 评审闭环
+- 阻断级问题必须修复后才可合并。
+- 复发问题应沉淀到评审清单与模板。
+- 评审质量按缺陷逃逸率持续优化。

package/development/concurrency-reliability-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: concurrency-reliability-complete
+title: concurrency-reliability-complete
+domain: development
+category: concurrency-reliability-complete.md
+difficulty: intermediate
+tags: [complete, concurrency, development, reliability, 并发与稳定性完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 并发与稳定性完整知识库
+### 1. 并发模型
+- 共享资源必须定义并发访问策略。
+- 读多写少场景优先无锁或读写锁优化。
+- 避免粗粒度锁导致吞吐下降。
+### 2. 分布式锁
+- 锁必须有过期时间与续约机制。
+- 锁粒度需最小化，避免全局串行化。
+- 失败重试必须限制次数并具备退避策略。
+### 3. 任务调度与消费
+- 定时任务必须具备幂等保证。
+- 消费者必须处理重复消息与乱序消息。
+- 死信队列需有自动告警与处理流程。
+### 4. 稳定性防护
+- 限流保护核心资源。
+- 熔断阻断异常依赖扩散。
+- 降级保障核心链路可用。
+### 5. 故障演练
+- 周期执行依赖超时、网络抖动、节点宕机演练。
+- 验证告警是否有效、恢复是否可执行。
+- 演练结果必须回写到runbook与门禁策略。
+### 6. 高可用架构
+- 核心服务避免单点依赖。
+- 明确同城容灾与异地容灾策略。
+- 对关键链路定义可降级最小功能集。

package/development/database-engineering-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: database-engineering-complete
+title: database-engineering-complete
+domain: development
+category: database-engineering-complete.md
+difficulty: intermediate
+tags: [complete, database, development, engineering, 数据库工程完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 数据库工程完整知识库
+### 1. 数据模型设计
+- 核心表必须定义主键、唯一约束、审计字段。
+- 状态字段需有明确状态机规则。
+- 跨表关系需明确级联策略与删除策略。
+### 2. 索引与查询治理
+- 每个高频查询都应有索引策略。
+- 慢SQL需定期分析并持续优化。
+- 禁止无条件全表扫描进入生产核心链路。
+### 3. 事务与一致性
+- 明确读写一致性级别与事务边界。
+- 关键写流程必须具备失败补偿机制。
+- 分布式场景优先最终一致并设计对账策略。
+### 4. 分库分表与扩展
+- 按业务增长预估选择拆分时机。
+- 路由规则必须稳定且可回溯。
+- 拆分方案必须附带迁移与回滚路径。
+### 5. 缓存一致性
+- 采用写后删缓存或订阅失效策略。
+- 热点数据必须防击穿、穿透、雪崩。
+- 缓存命中率与失效率需持续监控。
+### 6. 数据生命周期
+- 定义保留、归档、清理规则。
+- 敏感数据必须脱敏与访问审计。
+- 备份与恢复演练必须周期化执行。

package/development/engineering-effectiveness-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: engineering-effectiveness-complete
+title: engineering-effectiveness-complete
+domain: development
+category: engineering-effectiveness-complete.md
+difficulty: intermediate
+tags: [complete, development, effectiveness, engineering, 工程效能完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 工程效能完整知识库
+### 1. 流程标准化
+- 从需求到发布定义统一流程节点。
+- 每个节点有明确输入、输出、责任人。
+- 流程变更必须有试运行与复盘。
+### 2. CI/CD效能
+- 构建、测试、扫描、发布全自动执行。
+- 流水线分层：快速反馈层与深度验证层。
+- 失败必须自动通知并定位到责任模块。
+### 3. DORA指标
+- 部署频率、变更前置时间、变更失败率、恢复时间。
+- 指标按团队和模块分解，支持改进追踪。
+- 指标用于改进而非惩罚。
+### 4. Git工作流
+- 分支策略统一，避免长期分叉。
+- 提交信息规范，支持自动生成变更日志。
+- 发布分支必须可追溯与可审计。
+### 5. 环境一致性
+- 本地、测试、预发、生产尽可能同构。
+- 基础镜像、依赖版本、配置模板统一管理。
+- 环境差异必须显式记录并审批。
+### 6. 组织学习
+- 每次故障、延期、返工都要复盘。
+- 复盘结论进入知识库与门禁规则。
+- 沉淀模板和脚手架降低重复劳动。

package/development/engineering-standards-deep-dive.md ADDED Viewed

@@ -0,0 +1,38 @@
+---
+id: engineering-standards-deep-dive
+title: engineering-standards-deep-dive
+domain: development
+category: engineering-standards-deep-dive.md
+difficulty: intermediate
+tags: [deep, development, dive, engineering, standards, 开发环节深度知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 开发环节深度知识库
+### 目标
+- 让实现质量稳定、可回归、可协作，避免“个人风格驱动”。
+### 工程规范
+- 命名统一：领域语义优先，禁止无业务含义缩写。
+- 模块边界：路由、服务、仓储、模型职责清晰。
+- 错误模型：统一错误码、错误分级、用户可见提示规范。
+- 配置管理：环境变量最小集、默认值安全、敏感信息隔离。
+### 编码实践
+- 关键分支必须有单测覆盖。
+- 高风险逻辑必须提供幂等或去重机制。
+- 外部调用必须具备超时、重试、熔断与降级。
+- 写接口先定义契约，再实现与联调。
+### 评审基线
+- 是否存在跨层依赖污染。
+- 是否存在高复杂函数且缺乏测试保护。
+- 是否有日志但无请求上下文标识。
+- 是否有潜在破坏性变更但无回滚说明。
+### 常见失败模式
+- 把业务规则散落在控制器与工具函数中。
+- 只修当前 bug，不补充防回归测试。

package/development/frontend-engineering-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: frontend-engineering-complete
+title: frontend-engineering-complete
+domain: development
+category: frontend-engineering-complete.md
+difficulty: intermediate
+tags: [complete, development, engineering, frontend, 前端工程完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 前端工程完整知识库
+### 1. 分层与模块边界
+- 页面层负责编排，组件层负责复用，服务层负责数据访问。
+- 禁止在视图层写复杂业务规则。
+- 组件必须区分展示组件与业务组件。
+### 2. 设计系统与一致性
+- 建立颜色、间距、字体、圆角、阴影设计令牌。
+- 同语义操作使用同交互模式和文案。
+- 状态矩阵必须覆盖加载、空态、错误、权限、成功反馈。
+### 3. 状态管理策略
+- 本地状态优先，跨页面共享状态再上全局状态。
+- 远程数据与UI状态隔离管理。
+- 状态变更必须可追踪并可重放。
+### 4. 前端性能治理
+- 建立首屏、交互、资源体积性能预算。
+- 采用路由级代码分割与懒加载。
+- 对高频渲染组件做记忆化与虚拟列表优化。
+### 5. 可观测性与错误治理
+- 错误上报必须包含页面、用户、请求ID、版本号。
+- 关键交互路径埋点必须有成功率指标。
+- JS异常、接口异常、资源加载异常分级处理。
+### 6. 可访问性与国际化
+- 支持键盘可操作与语义标签。
+- 文案国际化键值统一，禁止硬编码。
+- 日期、货币、时区按地区规则展示。

package/development/performance-capacity-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: performance-capacity-complete
+title: performance-capacity-complete
+domain: development
+category: performance-capacity-complete.md
+difficulty: intermediate
+tags: [capacity, complete, development, performance, 性能与容量完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 性能与容量完整知识库
+### 1. 性能预算
+- 定义核心接口 P95、P99、吞吐量目标。
+- 定义页面加载与交互时延预算。
+- 超预算变更不得直接进入发布。
+### 2. 压测方法
+- 覆盖基线压测、峰值压测、持续压测。
+- 场景必须包含正常流量与异常流量。
+- 输出容量瓶颈与扩容建议。
+### 3. 热点治理
+- 定位热点接口、热点SQL、热点缓存键。
+- 对热点路径实施缓存、批处理、异步化。
+- 对突发流量实施限流与优先级保护。
+### 4. 资源池调优
+- 线程池参数按CPU核数与阻塞比例配置。
+- 连接池参数按下游容量与峰值QPS配置。
+- 防止线程池耗尽和连接池泄漏。
+### 5. 运行时优化
+- 定期分析GC与内存分配特征。
+- 识别对象抖动与频繁序列化瓶颈。
+- 关键服务建立性能回归基线。
+### 6. 性能门禁
+- 发布前必须通过性能回归检查。
+- 回归幅度超阈值自动阻断发布。
+- 性能问题必须有归因与修复计划。

package/development/refactor-migration-complete.md ADDED Viewed

@@ -0,0 +1,42 @@
+---
+id: refactor-migration-complete
+title: refactor-migration-complete
+domain: development
+category: refactor-migration-complete.md
+difficulty: intermediate
+tags: [complete, development, migration, refactor, 重构与迁移完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 重构与迁移完整知识库
+### 1. 重构触发条件
+- 缺陷密度持续偏高。
+- 修改成本显著高于同类模块。
+- 性能与稳定性难以通过局部优化解决。
+### 2. 重构路径
+- 增量重构优先，避免一次性大爆炸改造。
+- 先加测试护栏，再改代码结构。
+- 关键路径采用双写或灰度迁移策略。
+### 3. 迁移策略
+- 数据迁移必须定义校验与回滚脚本。
+- 接口迁移必须提供兼容层与下线计划。
+- 配置迁移必须支持快速回退。
+### 4. 风险控制
+- 每次变更控制在可评审范围内。
+- 高风险模块重构必须双人评审。
+- 发布采用分阶段放量并观察核心指标。
+### 5. 验收标准
+- 功能回归全部通过。
+- 性能与稳定性指标不劣化。
+- 技术债指标明显下降并可量化。
+### 6. 常见失败模式
+- 重构与新功能并行交叉，导致目标失焦。
+- 迁移缺少兼容窗口，造成调用方中断。

package/development/refactoring-and-techdebt-playbook.md ADDED Viewed

@@ -0,0 +1,37 @@
+---
+id: refactoring-and-techdebt-playbook
+title: refactoring-and-techdebt-playbook
+domain: development
+category: refactoring-and-techdebt-playbook.md
+difficulty: intermediate
+tags: [and, development, playbook, refactoring, techdebt, 重构与技术债治理手册]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 重构与技术债治理手册
+### 目标
+- 在不影响业务连续性的前提下，持续降低系统复杂度与维护成本。
+### 技术债分类
+- 结构债：模块耦合过高、职责不清。
+- 质量债：缺测试、缺边界处理、缺监控。
+- 性能债：慢查询、重复计算、资源浪费。
+- 运营债：发布流程脆弱、回滚成本高。
+### 重构策略
+- 小步提交：每次重构聚焦单一问题。
+- 双轨验证：重构前后跑同一回归集。
+- 防回归：为历史缺陷补充测试用例。
+- 可回滚：重构必须可快速回退。
+### 排期规则
+- P0债务：直接影响稳定性与安全，立即处理。
+- P1债务：影响交付效率，纳入迭代固定配额。
+- P2债务：影响长期演进，按季度集中治理。
+### 常见失败模式
+- 大规模重构一次性上线，风险不可控。
+- 只重构代码，不同步更新文档与测试。

package/development/security-in-development-complete.md ADDED Viewed

@@ -0,0 +1,43 @@
+---
+id: security-in-development-complete
+title: security-in-development-complete
+domain: development
+category: security-in-development-complete.md
+difficulty: intermediate
+tags: [complete, development, security, 开发安全完整知识库]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 开发：Excellent（11964948@qq.com）
+## 开发安全完整知识库
+### 1. 安全左移
+- 在需求与设计阶段完成威胁建模。
+- 在编码阶段执行安全基线检查。
+- 在发布阶段执行漏洞与配置扫描。
+### 2. 输入与输出安全
+- 输入参数白名单校验与长度限制。
+- 输出前进行敏感数据脱敏。
+- 文件上传必须限制类型、大小、解析策略。
+### 3. 身份与权限
+- 最小权限原则覆盖接口、数据、操作。
+- 高风险操作必须二次确认或审批。
+- 权限变更必须可审计可追溯。
+### 4. 依赖与供应链
+- 依赖版本锁定与漏洞持续扫描。
+- 高危漏洞有时限修复策略。
+- 构建制品需签名并可验签。
+### 5. 密钥与机密管理
+- 禁止把密钥写入代码库。
+- 密钥轮换周期与访问审计必须制度化。
+- 非必要场景不得下发高权限凭证。
+### 6. 事件响应
+- 发现漏洞后先止损再修复。
+- 关键安全事件必须形成复盘与防复发措施。
+- 安全改进项进入发布门禁持续执行。