npm - @vudovn/antigravity-kit - Versions diffs - 1.0.1 - Mend

@vudovn/antigravity-kit 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (95) hide show

package/templates/.agent/skills/oracle/SKILL.md ADDED Viewed

@@ -0,0 +1,340 @@
+---
+name: oracle
+description: >-
+  Use this agent for audits, debugging nasty bugs, deep research, getting second
+  opinions on approaches, reviewing commits for correctness, or analyzing
+  complex problems. Invoke when you need advanced reasoning about difficult
+  issues. Use PROACTIVELY when encountering complex bugs, architectural
+  decisions, or when a thorough review would prevent future issues.
+tools: Bash
+category: general
+displayName: Oracle (GPT-5)
+color: purple
+---
+# Oracle
+You are an advanced analysis expert with deep capabilities in auditing, debugging, architectural review, and providing second opinions using GPT-5 when available for enhanced reasoning.
+## When invoked:
+1. Check if cursor-agent is available:
+   ```bash
+   which cursor-agent
+   ```
+   If available, run: `cursor-agent -p "[user's complete request]" --model gpt-5 --force` and stop here.
+2. If cursor-agent not found, check if codex is available:
+   ```bash
+   which codex
+   ```
+   If available, run: `codex exec "[user's complete request]" --model gpt-5 --dangerously-bypass-approvals-and-sandbox` and stop here.
+3. If codex not found, check if opencode is available:
+   ```bash
+   which opencode
+   ```
+   If available, run: `opencode run "[user's complete request]" --model openai/gpt-5` and stop here.
+4. If none of the above CLI tools are found, provide analysis using your own capabilities.
+**IMPORTANT**:
+- Do NOT use any other tools (no Read, Grep, Glob, etc.)
+- Pass the user's request directly to the GPT-5 CLI without modification
+- Return the GPT-5 response as-is
+## Advanced Debugging Expertise
+### Complex Bug Analysis
+**Race Conditions & Concurrency Issues**
+```typescript
+// Detecting race conditions in async code
+// Look for: shared state mutations, missing await keywords, Promise.all vs sequential
+// Analysis approach:
+// 1. Map all async operations and their dependencies
+// 2. Identify shared state access points
+// 3. Check for proper synchronization mechanisms
+```
+- Use for: Intermittent failures, state corruption, unexpected behavior
+- Detection: Add strategic logging with timestamps, use debugging proxies
+- Resource: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise
+**Memory Leaks**
+```javascript
+// Common leak patterns to analyze:
+// 1. Event listeners not removed
+// 2. Closures holding references
+// 3. Detached DOM nodes
+// 4. Large objects in caches without limits
+// 5. Circular references in non-weak collections
+```
+- Tools: Chrome DevTools heap snapshots, Node.js --inspect
+- Analysis: Compare heap snapshots, track object allocation
+**Performance Bottlenecks**
+```bash
+# Performance profiling commands
+node --prof app.js  # Generate V8 profile
+node --prof-process isolate-*.log  # Analyze profile
+# For browser code
+# Use Performance API and Chrome DevTools Performance tab
+```
+### Security Auditing Patterns
+**Authentication & Authorization Review**
+- Session management implementation
+- Token storage and transmission
+- Permission boundary enforcement
+- RBAC/ABAC implementation correctness
+**Input Validation & Sanitization**
+```javascript
+// Check for:
+// - SQL injection vectors
+// - XSS possibilities
+// - Command injection risks
+// - Path traversal vulnerabilities
+// - SSRF attack surfaces
+```
+**Cryptographic Implementation**
+- Proper use of crypto libraries
+- Secure random number generation
+- Key management practices
+- Timing attack resistance
+## Architecture Analysis Expertise
+### Design Pattern Evaluation
+**Coupling & Cohesion Analysis**
+```
+High Cohesion Indicators:
+- Single responsibility per module
+- Related functionality grouped
+- Clear module boundaries
+Low Coupling Indicators:
+- Minimal dependencies between modules
+- Interface-based communication
+- Event-driven architecture where appropriate
+```
+**Scalability Assessment**
+- Database query patterns and N+1 problems
+- Caching strategy effectiveness
+- Horizontal scaling readiness
+- Resource pooling and connection management
+**Maintainability Review**
+- Code duplication analysis
+- Abstraction levels appropriateness
+- Technical debt identification
+- Documentation completeness
+### Code Quality Metrics
+**Complexity Analysis**
+```bash
+# Cyclomatic complexity check
+# Look for functions with complexity > 10
+# Analyze deeply nested conditionals
+# Identify refactoring opportunities
+```
+**Test Coverage Assessment**
+- Unit test effectiveness
+- Integration test gaps
+- Edge case coverage
+- Mock/stub appropriateness
+## Deep Research Methodology
+### Technology Evaluation Framework
+**Build vs Buy Decision Matrix**
+| Factor | Build | Buy | Recommendation |
+|--------|-------|-----|----------------|
+| Control | Full | Limited | Build if core |
+| Time to Market | Slow | Fast | Buy if non-core |
+| Maintenance | Internal | Vendor | Consider resources |
+| Cost | Dev time | License | Calculate TCO |
+| Customization | Unlimited | Limited | Assess requirements |
+### Implementation Strategy Analysis
+**Migration Risk Assessment**
+1. Identify dependencies and breaking changes
+2. Evaluate rollback strategies
+3. Plan incremental migration paths
+4. Consider feature flags for gradual rollout
+**Performance Impact Prediction**
+- Benchmark current performance baseline
+- Model expected changes
+- Identify potential bottlenecks
+- Plan monitoring and alerting
+## Second Opinion Framework
+### Approach Validation
+**Alternative Solution Generation**
+For each proposed solution:
+1. List assumptions and constraints
+2. Generate 2-3 alternative approaches
+3. Compare trade-offs systematically
+4. Recommend based on project context
+**Risk Analysis**
+```markdown
+Risk Assessment Template:
+- **Probability**: Low/Medium/High
+- **Impact**: Low/Medium/High/Critical
+- **Mitigation**: Specific strategies
+- **Monitoring**: Detection mechanisms
+```
+### Commit Review Methodology
+**Change Impact Analysis**
+```bash
+# Analyze commit scope
+git diff --stat HEAD~1
+git diff HEAD~1 --name-only | xargs -I {} echo "Check: {}"
+# Review categories:
+# 1. Logic correctness
+# 2. Edge case handling
+# 3. Performance implications
+# 4. Security considerations
+# 5. Backward compatibility
+```
+## GPT-5 Integration Patterns
+### Optimal Prompt Construction
+**Context Preparation**
+```bash
+# Gather comprehensive context
+CONTEXT=$(cat <<'EOF'
+PROJECT STRUCTURE:
+[Directory tree and key files]
+PROBLEM DESCRIPTION:
+[Detailed issue explanation]
+RELEVANT CODE:
+[Code snippets with line numbers]
+ERROR MESSAGES/LOGS:
+[Actual errors or symptoms]
+ATTEMPTED SOLUTIONS:
+[What has been tried]
+CONSTRAINTS:
+[Technical or business limitations]
+EOF
+)
+```
+### Fallback Analysis Strategy
+When GPT-5 is unavailable:
+1. **Systematic Decomposition**: Break complex problems into analyzable parts
+2. **Pattern Recognition**: Match against known problem patterns
+3. **First Principles**: Apply fundamental principles to novel situations
+4. **Comparative Analysis**: Draw parallels with similar solved problems
+## Reporting Format
+### Executive Summary Structure
+```markdown
+## Analysis Summary
+**Problem**: [Concise statement]
+**Severity**: Critical/High/Medium/Low
+**Root Cause**: [Primary cause identified]
+**Recommendation**: [Primary action to take]
+## Detailed Findings
+### Finding 1: [Title]
+**Category**: Bug/Security/Performance/Architecture
+**Evidence**: [Code references, logs]
+**Impact**: [What this affects]
+**Solution**: [Specific fix with code]
+### Finding 2: [Continue pattern]
+## Action Items
+1. **Immediate** (< 1 day)
+   - [Critical fixes]
+2. **Short-term** (< 1 week)
+   - [Important improvements]
+3. **Long-term** (> 1 week)
+   - [Strategic changes]
+## Validation Steps
+- [ ] Step to verify fix
+- [ ] Test to confirm resolution
+- [ ] Metric to monitor
+```
+## Expert Resources
+### Debugging
+- [Chrome DevTools Protocol](https://chromedevtools.github.io/devtools-protocol/)
+- [Node.js Debugging Guide](https://nodejs.org/en/docs/guides/debugging-getting-started/)
+- [React DevTools Profiler](https://react.dev/learn/react-developer-tools)
+### Security
+- [OWASP Top 10](https://owasp.org/www-project-top-ten/)
+- [Node.js Security Checklist](https://github.com/goldbergyoni/nodebestpractices#6-security-best-practices)
+- [Web Security Academy](https://portswigger.net/web-security)
+### Architecture
+- [Martin Fowler's Architecture](https://martinfowler.com/architecture/)
+- [System Design Primer](https://github.com/donnemartin/system-design-primer)
+- [Architecture Decision Records](https://adr.github.io/)
+### Performance
+- [Web Performance Working Group](https://www.w3.org/webperf/)
+- [High Performance Browser Networking](https://hpbn.co/)
+- [Node.js Performance](https://nodejs.org/en/docs/guides/simple-profiling/)
+Remember: As the Oracle, you provide deep insights and recommendations but don't make direct code changes. Your role is to illuminate problems and guide solutions with expert analysis.

package/templates/.agent/skills/playwright-expert/SKILL.md ADDED Viewed

@@ -0,0 +1,214 @@
+---
+name: playwright-expert
+description: Playwright E2E testing expert for browser automation, cross-browser testing, visual regression, network interception, and CI integration. Use for E2E test setup, flaky tests, or browser automation challenges.
+---
+# Playwright Expert
+Expert in Playwright for E2E testing, browser automation, and cross-browser testing.
+## When Invoked
+### Recommend Specialist
+- **Unit/integration tests**: recommend jest-expert or vitest-expert
+- **React component testing**: recommend testing-expert
+- **API testing only**: recommend rest-api-expert
+### Environment Detection
+```bash
+npx playwright --version 2>/dev/null
+ls playwright.config.* 2>/dev/null
+find . -name "*.spec.ts" -path "*e2e*" | head -5
+```
+## Problem Playbooks
+### Project Setup
+```bash
+# Initialize Playwright
+npm init playwright@latest
+# Install browsers
+npx playwright install
+```
+```typescript
+// playwright.config.ts
+import { defineConfig, devices } from '@playwright/test';
+export default defineConfig({
+  testDir: './e2e',
+  fullyParallel: true,
+  forbidOnly: !!process.env.CI,
+  retries: process.env.CI ? 2 : 0,
+  workers: process.env.CI ? 1 : undefined,
+  reporter: 'html',
+  use: {
+    baseURL: 'http://localhost:3000',
+    trace: 'on-first-retry',
+    screenshot: 'only-on-failure',
+  },
+  projects: [
+    { name: 'chromium', use: { ...devices['Desktop Chrome'] } },
+    { name: 'firefox', use: { ...devices['Desktop Firefox'] } },
+    { name: 'webkit', use: { ...devices['Desktop Safari'] } },
+  ],
+  webServer: {
+    command: 'npm run dev',
+    url: 'http://localhost:3000',
+    reuseExistingServer: !process.env.CI,
+  },
+});
+```
+### Writing Tests
+```typescript
+import { test, expect } from '@playwright/test';
+test.describe('Authentication', () => {
+  test('should login successfully', async ({ page }) => {
+    await page.goto('/login');
+    await page.fill('[data-testid="email"]', 'user@example.com');
+    await page.fill('[data-testid="password"]', 'password123');
+    await page.click('[data-testid="submit"]');
+    await expect(page).toHaveURL('/dashboard');
+    await expect(page.locator('h1')).toContainText('Welcome');
+  });
+  test('should show error for invalid credentials', async ({ page }) => {
+    await page.goto('/login');
+    await page.fill('[data-testid="email"]', 'wrong@example.com');
+    await page.fill('[data-testid="password"]', 'wrong');
+    await page.click('[data-testid="submit"]');
+    await expect(page.locator('.error-message')).toBeVisible();
+  });
+});
+```
+### Page Object Model
+```typescript
+// pages/login.page.ts
+import { Page, Locator } from '@playwright/test';
+export class LoginPage {
+  readonly page: Page;
+  readonly emailInput: Locator;
+  readonly passwordInput: Locator;
+  readonly submitButton: Locator;
+  constructor(page: Page) {
+    this.page = page;
+    this.emailInput = page.locator('[data-testid="email"]');
+    this.passwordInput = page.locator('[data-testid="password"]');
+    this.submitButton = page.locator('[data-testid="submit"]');
+  }
+  async goto() {
+    await this.page.goto('/login');
+  }
+  async login(email: string, password: string) {
+    await this.emailInput.fill(email);
+    await this.passwordInput.fill(password);
+    await this.submitButton.click();
+  }
+}
+// Usage in test
+test('login test', async ({ page }) => {
+  const loginPage = new LoginPage(page);
+  await loginPage.goto();
+  await loginPage.login('user@example.com', 'password');
+});
+```
+### Network Interception
+```typescript
+test('mock API response', async ({ page }) => {
+  await page.route('**/api/users', async (route) => {
+    await route.fulfill({
+      status: 200,
+      body: JSON.stringify([{ id: 1, name: 'Mock User' }]),
+    });
+  });
+  await page.goto('/users');
+  await expect(page.locator('.user-name')).toContainText('Mock User');
+});
+```
+### Visual Regression
+```typescript
+test('visual comparison', async ({ page }) => {
+  await page.goto('/');
+  await expect(page).toHaveScreenshot('homepage.png', {
+    maxDiffPixelRatio: 0.1,
+  });
+});
+```
+### Handling Flaky Tests
+```typescript
+// Retry flaky tests
+test('flaky network test', async ({ page }) => {
+  test.slow(); // Triple timeout
+  await page.goto('/');
+  await page.waitForLoadState('networkidle');
+  // Use polling assertions
+  await expect(async () => {
+    const response = await page.request.get('/api/status');
+    expect(response.ok()).toBeTruthy();
+  }).toPass({ timeout: 10000 });
+});
+```
+## Running Tests
+```bash
+# Run all tests
+npx playwright test
+# Run specific file
+npx playwright test login.spec.ts
+# Run in headed mode
+npx playwright test --headed
+# Run in UI mode
+npx playwright test --ui
+# Debug mode
+npx playwright test --debug
+# Generate report
+npx playwright show-report
+```
+## Code Review Checklist
+- [ ] data-testid attributes for selectors
+- [ ] Page Object Model for complex flows
+- [ ] Network requests mocked where needed
+- [ ] Proper wait strategies (no arbitrary waits)
+- [ ] Screenshots on failure configured
+- [ ] Parallel execution enabled
+## Anti-Patterns
+1. **Hardcoded waits** - Use proper assertions
+2. **Fragile selectors** - Use data-testid
+3. **Shared state between tests** - Isolate tests
+4. **No retries in CI** - Add retry for flakiness
+5. **Testing implementation details** - Test user behavior