npm - aidevops - Versions diffs - 2.52.1 - Mend

aidevops 2.52.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (329) hide show

package/.agent/AGENTS.md +614 -0
package/.agent/accounts.md +65 -0
package/.agent/aidevops/add-new-mcp-to-aidevops.md +456 -0
package/.agent/aidevops/api-integrations.md +335 -0
package/.agent/aidevops/architecture.md +510 -0
package/.agent/aidevops/configs.md +274 -0
package/.agent/aidevops/docs.md +244 -0
package/.agent/aidevops/extension.md +311 -0
package/.agent/aidevops/mcp-integrations.md +340 -0
package/.agent/aidevops/mcp-troubleshooting.md +162 -0
package/.agent/aidevops/memory-patterns.md +172 -0
package/.agent/aidevops/providers.md +217 -0
package/.agent/aidevops/recommendations.md +321 -0
package/.agent/aidevops/requirements.md +301 -0
package/.agent/aidevops/resources.md +214 -0
package/.agent/aidevops/security-requirements.md +174 -0
package/.agent/aidevops/security.md +350 -0
package/.agent/aidevops/service-links.md +400 -0
package/.agent/aidevops/services.md +357 -0
package/.agent/aidevops/setup.md +153 -0
package/.agent/aidevops/troubleshooting.md +389 -0
package/.agent/aidevops.md +124 -0
package/.agent/build-plus.md +244 -0
package/.agent/content/guidelines.md +109 -0
package/.agent/content.md +87 -0
package/.agent/health.md +59 -0
package/.agent/legal.md +59 -0
package/.agent/loop-state/full-loop.local.md +16 -0
package/.agent/loop-state/ralph-loop.local.md +10 -0
package/.agent/marketing.md +440 -0
package/.agent/memory/README.md +260 -0
package/.agent/onboarding.md +796 -0
package/.agent/plan-plus.md +245 -0
package/.agent/research.md +100 -0
package/.agent/sales.md +333 -0
package/.agent/scripts/101domains-helper.sh +701 -0
package/.agent/scripts/add-missing-returns.sh +140 -0
package/.agent/scripts/agent-browser-helper.sh +311 -0
package/.agent/scripts/agno-setup.sh +712 -0
package/.agent/scripts/ahrefs-mcp-wrapper.js +168 -0
package/.agent/scripts/aidevops-update-check.sh +71 -0
package/.agent/scripts/ampcode-cli.sh +522 -0
package/.agent/scripts/auto-version-bump.sh +156 -0
package/.agent/scripts/autogen-helper.sh +512 -0
package/.agent/scripts/beads-sync-helper.sh +596 -0
package/.agent/scripts/closte-helper.sh +5 -0
package/.agent/scripts/cloudron-helper.sh +321 -0
package/.agent/scripts/codacy-cli-chunked.sh +581 -0
package/.agent/scripts/codacy-cli.sh +442 -0
package/.agent/scripts/code-audit-helper.sh +5 -0
package/.agent/scripts/coderabbit-cli.sh +417 -0
package/.agent/scripts/coderabbit-pro-analysis.sh +238 -0
package/.agent/scripts/commands/code-simplifier.md +86 -0
package/.agent/scripts/commands/full-loop.md +246 -0
package/.agent/scripts/commands/postflight-loop.md +103 -0
package/.agent/scripts/commands/recall.md +182 -0
package/.agent/scripts/commands/remember.md +132 -0
package/.agent/scripts/commands/save-todo.md +175 -0
package/.agent/scripts/commands/session-review.md +154 -0
package/.agent/scripts/comprehensive-quality-fix.sh +106 -0
package/.agent/scripts/context-builder-helper.sh +522 -0
package/.agent/scripts/coolify-cli-helper.sh +674 -0
package/.agent/scripts/coolify-helper.sh +380 -0
package/.agent/scripts/crawl4ai-examples.sh +401 -0
package/.agent/scripts/crawl4ai-helper.sh +1078 -0
package/.agent/scripts/crewai-helper.sh +681 -0
package/.agent/scripts/dev-browser-helper.sh +513 -0
package/.agent/scripts/dns-helper.sh +396 -0
package/.agent/scripts/domain-research-helper.sh +917 -0
package/.agent/scripts/dspy-helper.sh +285 -0
package/.agent/scripts/dspyground-helper.sh +291 -0
package/.agent/scripts/eeat-score-helper.sh +1242 -0
package/.agent/scripts/efficient-return-fix.sh +92 -0
package/.agent/scripts/extract-opencode-prompts.sh +128 -0
package/.agent/scripts/find-missing-returns.sh +113 -0
package/.agent/scripts/fix-auth-headers.sh +104 -0
package/.agent/scripts/fix-common-strings.sh +254 -0
package/.agent/scripts/fix-content-type.sh +100 -0
package/.agent/scripts/fix-error-messages.sh +130 -0
package/.agent/scripts/fix-misplaced-returns.sh +74 -0
package/.agent/scripts/fix-remaining-literals.sh +152 -0
package/.agent/scripts/fix-return-statements.sh +41 -0
package/.agent/scripts/fix-s131-default-cases.sh +249 -0
package/.agent/scripts/fix-sc2155-simple.sh +102 -0
package/.agent/scripts/fix-shellcheck-critical.sh +187 -0
package/.agent/scripts/fix-string-literals.sh +273 -0
package/.agent/scripts/full-loop-helper.sh +773 -0
package/.agent/scripts/generate-opencode-agents.sh +497 -0
package/.agent/scripts/generate-opencode-commands.sh +1629 -0
package/.agent/scripts/generate-skills.sh +366 -0
package/.agent/scripts/git-platforms-helper.sh +640 -0
package/.agent/scripts/gitea-cli-helper.sh +743 -0
package/.agent/scripts/github-cli-helper.sh +702 -0
package/.agent/scripts/gitlab-cli-helper.sh +682 -0
package/.agent/scripts/gsc-add-user-helper.sh +325 -0
package/.agent/scripts/gsc-sitemap-helper.sh +678 -0
package/.agent/scripts/hetzner-helper.sh +485 -0
package/.agent/scripts/hostinger-helper.sh +229 -0
package/.agent/scripts/keyword-research-helper.sh +1815 -0
package/.agent/scripts/langflow-helper.sh +544 -0
package/.agent/scripts/linkedin-automation.py +241 -0
package/.agent/scripts/linter-manager.sh +599 -0
package/.agent/scripts/linters-local.sh +434 -0
package/.agent/scripts/list-keys-helper.sh +488 -0
package/.agent/scripts/local-browser-automation.py +339 -0
package/.agent/scripts/localhost-helper.sh +744 -0
package/.agent/scripts/loop-common.sh +806 -0
package/.agent/scripts/mainwp-helper.sh +728 -0
package/.agent/scripts/markdown-formatter.sh +338 -0
package/.agent/scripts/markdown-lint-fix.sh +311 -0
package/.agent/scripts/mass-fix-returns.sh +58 -0
package/.agent/scripts/mcp-diagnose.sh +167 -0
package/.agent/scripts/mcp-inspector-helper.sh +449 -0
package/.agent/scripts/memory-helper.sh +650 -0
package/.agent/scripts/monitor-code-review.sh +255 -0
package/.agent/scripts/onboarding-helper.sh +706 -0
package/.agent/scripts/opencode-github-setup-helper.sh +797 -0
package/.agent/scripts/opencode-test-helper.sh +213 -0
package/.agent/scripts/pagespeed-helper.sh +464 -0
package/.agent/scripts/pandoc-helper.sh +362 -0
package/.agent/scripts/postflight-check.sh +555 -0
package/.agent/scripts/pre-commit-hook.sh +259 -0
package/.agent/scripts/pre-edit-check.sh +169 -0
package/.agent/scripts/qlty-cli.sh +356 -0
package/.agent/scripts/quality-cli-manager.sh +525 -0
package/.agent/scripts/quality-feedback-helper.sh +462 -0
package/.agent/scripts/quality-fix.sh +263 -0
package/.agent/scripts/quality-loop-helper.sh +1108 -0
package/.agent/scripts/ralph-loop-helper.sh +836 -0
package/.agent/scripts/ralph-upstream-check.sh +341 -0
package/.agent/scripts/secretlint-helper.sh +847 -0
package/.agent/scripts/servers-helper.sh +241 -0
package/.agent/scripts/ses-helper.sh +619 -0
package/.agent/scripts/session-review-helper.sh +404 -0
package/.agent/scripts/setup-linters-wizard.sh +379 -0
package/.agent/scripts/setup-local-api-keys.sh +330 -0
package/.agent/scripts/setup-mcp-integrations.sh +472 -0
package/.agent/scripts/shared-constants.sh +246 -0
package/.agent/scripts/site-crawler-helper.sh +1487 -0
package/.agent/scripts/snyk-helper.sh +940 -0
package/.agent/scripts/sonarcloud-autofix.sh +193 -0
package/.agent/scripts/sonarcloud-cli.sh +191 -0
package/.agent/scripts/sonarscanner-cli.sh +455 -0
package/.agent/scripts/spaceship-helper.sh +747 -0
package/.agent/scripts/stagehand-helper.sh +321 -0
package/.agent/scripts/stagehand-python-helper.sh +321 -0
package/.agent/scripts/stagehand-python-setup.sh +441 -0
package/.agent/scripts/stagehand-setup.sh +439 -0
package/.agent/scripts/system-cleanup.sh +340 -0
package/.agent/scripts/terminal-title-helper.sh +388 -0
package/.agent/scripts/terminal-title-setup.sh +549 -0
package/.agent/scripts/test-stagehand-both-integration.sh +317 -0
package/.agent/scripts/test-stagehand-integration.sh +309 -0
package/.agent/scripts/test-stagehand-python-integration.sh +341 -0
package/.agent/scripts/todo-ready.sh +263 -0
package/.agent/scripts/tool-version-check.sh +362 -0
package/.agent/scripts/toon-helper.sh +469 -0
package/.agent/scripts/twilio-helper.sh +917 -0
package/.agent/scripts/updown-helper.sh +279 -0
package/.agent/scripts/validate-mcp-integrations.sh +250 -0
package/.agent/scripts/validate-version-consistency.sh +131 -0
package/.agent/scripts/vaultwarden-helper.sh +597 -0
package/.agent/scripts/vercel-cli-helper.sh +816 -0
package/.agent/scripts/verify-mirrors.sh +169 -0
package/.agent/scripts/version-manager.sh +831 -0
package/.agent/scripts/webhosting-helper.sh +471 -0
package/.agent/scripts/webhosting-verify.sh +238 -0
package/.agent/scripts/wordpress-mcp-helper.sh +508 -0
package/.agent/scripts/worktree-helper.sh +595 -0
package/.agent/scripts/worktree-sessions.sh +577 -0
package/.agent/seo/dataforseo.md +215 -0
package/.agent/seo/domain-research.md +532 -0
package/.agent/seo/eeat-score.md +659 -0
package/.agent/seo/google-search-console.md +366 -0
package/.agent/seo/gsc-sitemaps.md +282 -0
package/.agent/seo/keyword-research.md +521 -0
package/.agent/seo/serper.md +278 -0
package/.agent/seo/site-crawler.md +387 -0
package/.agent/seo.md +236 -0
package/.agent/services/accounting/quickfile.md +159 -0
package/.agent/services/communications/telfon.md +470 -0
package/.agent/services/communications/twilio.md +569 -0
package/.agent/services/crm/fluentcrm.md +449 -0
package/.agent/services/email/ses.md +399 -0
package/.agent/services/hosting/101domains.md +378 -0
package/.agent/services/hosting/closte.md +177 -0
package/.agent/services/hosting/cloudflare.md +251 -0
package/.agent/services/hosting/cloudron.md +478 -0
package/.agent/services/hosting/dns-providers.md +335 -0
package/.agent/services/hosting/domain-purchasing.md +344 -0
package/.agent/services/hosting/hetzner.md +327 -0
package/.agent/services/hosting/hostinger.md +287 -0
package/.agent/services/hosting/localhost.md +419 -0
package/.agent/services/hosting/spaceship.md +353 -0
package/.agent/services/hosting/webhosting.md +330 -0
package/.agent/social-media.md +69 -0
package/.agent/templates/plans-template.md +114 -0
package/.agent/templates/prd-template.md +129 -0
package/.agent/templates/tasks-template.md +108 -0
package/.agent/templates/todo-template.md +89 -0
package/.agent/tools/ai-assistants/agno.md +471 -0
package/.agent/tools/ai-assistants/capsolver.md +326 -0
package/.agent/tools/ai-assistants/configuration.md +221 -0
package/.agent/tools/ai-assistants/overview.md +209 -0
package/.agent/tools/ai-assistants/status.md +171 -0
package/.agent/tools/ai-assistants/windsurf.md +193 -0
package/.agent/tools/ai-orchestration/autogen.md +406 -0
package/.agent/tools/ai-orchestration/crewai.md +445 -0
package/.agent/tools/ai-orchestration/langflow.md +405 -0
package/.agent/tools/ai-orchestration/openprose.md +487 -0
package/.agent/tools/ai-orchestration/overview.md +362 -0
package/.agent/tools/ai-orchestration/packaging.md +647 -0
package/.agent/tools/browser/agent-browser.md +464 -0
package/.agent/tools/browser/browser-automation.md +400 -0
package/.agent/tools/browser/chrome-devtools.md +282 -0
package/.agent/tools/browser/crawl4ai-integration.md +422 -0
package/.agent/tools/browser/crawl4ai-resources.md +277 -0
package/.agent/tools/browser/crawl4ai-usage.md +416 -0
package/.agent/tools/browser/crawl4ai.md +585 -0
package/.agent/tools/browser/dev-browser.md +341 -0
package/.agent/tools/browser/pagespeed.md +260 -0
package/.agent/tools/browser/playwright.md +266 -0
package/.agent/tools/browser/playwriter.md +310 -0
package/.agent/tools/browser/stagehand-examples.md +456 -0
package/.agent/tools/browser/stagehand-python.md +483 -0
package/.agent/tools/browser/stagehand.md +421 -0
package/.agent/tools/build-agent/agent-review.md +224 -0
package/.agent/tools/build-agent/build-agent.md +784 -0
package/.agent/tools/build-mcp/aidevops-plugin.md +476 -0
package/.agent/tools/build-mcp/api-wrapper.md +445 -0
package/.agent/tools/build-mcp/build-mcp.md +240 -0
package/.agent/tools/build-mcp/deployment.md +401 -0
package/.agent/tools/build-mcp/server-patterns.md +632 -0
package/.agent/tools/build-mcp/transports.md +366 -0
package/.agent/tools/code-review/auditing.md +383 -0
package/.agent/tools/code-review/automation.md +219 -0
package/.agent/tools/code-review/best-practices.md +203 -0
package/.agent/tools/code-review/codacy.md +151 -0
package/.agent/tools/code-review/code-simplifier.md +174 -0
package/.agent/tools/code-review/code-standards.md +309 -0
package/.agent/tools/code-review/coderabbit.md +101 -0
package/.agent/tools/code-review/management.md +155 -0
package/.agent/tools/code-review/qlty.md +248 -0
package/.agent/tools/code-review/secretlint.md +565 -0
package/.agent/tools/code-review/setup.md +250 -0
package/.agent/tools/code-review/snyk.md +563 -0
package/.agent/tools/code-review/tools.md +230 -0
package/.agent/tools/content/summarize.md +353 -0
package/.agent/tools/context/augment-context-engine.md +468 -0
package/.agent/tools/context/context-builder-agent.md +76 -0
package/.agent/tools/context/context-builder.md +375 -0
package/.agent/tools/context/context7.md +371 -0
package/.agent/tools/context/dspy.md +302 -0
package/.agent/tools/context/dspyground.md +374 -0
package/.agent/tools/context/llm-tldr.md +219 -0
package/.agent/tools/context/osgrep.md +488 -0
package/.agent/tools/context/prompt-optimization.md +338 -0
package/.agent/tools/context/toon.md +292 -0
package/.agent/tools/conversion/pandoc.md +304 -0
package/.agent/tools/credentials/api-key-management.md +154 -0
package/.agent/tools/credentials/api-key-setup.md +224 -0
package/.agent/tools/credentials/environment-variables.md +180 -0
package/.agent/tools/credentials/vaultwarden.md +382 -0
package/.agent/tools/data-extraction/outscraper.md +974 -0
package/.agent/tools/deployment/coolify-cli.md +388 -0
package/.agent/tools/deployment/coolify-setup.md +353 -0
package/.agent/tools/deployment/coolify.md +345 -0
package/.agent/tools/deployment/vercel.md +390 -0
package/.agent/tools/git/authentication.md +132 -0
package/.agent/tools/git/gitea-cli.md +193 -0
package/.agent/tools/git/github-actions.md +207 -0
package/.agent/tools/git/github-cli.md +223 -0
package/.agent/tools/git/gitlab-cli.md +190 -0
package/.agent/tools/git/opencode-github-security.md +350 -0
package/.agent/tools/git/opencode-github.md +328 -0
package/.agent/tools/git/opencode-gitlab.md +252 -0
package/.agent/tools/git/security.md +196 -0
package/.agent/tools/git.md +207 -0
package/.agent/tools/opencode/oh-my-opencode.md +375 -0
package/.agent/tools/opencode/opencode-anthropic-auth.md +446 -0
package/.agent/tools/opencode/opencode.md +651 -0
package/.agent/tools/social-media/bird.md +437 -0
package/.agent/tools/task-management/beads.md +336 -0
package/.agent/tools/terminal/terminal-title.md +251 -0
package/.agent/tools/ui/shadcn.md +196 -0
package/.agent/tools/ui/ui-skills.md +115 -0
package/.agent/tools/wordpress/localwp.md +311 -0
package/.agent/tools/wordpress/mainwp.md +391 -0
package/.agent/tools/wordpress/scf.md +527 -0
package/.agent/tools/wordpress/wp-admin.md +729 -0
package/.agent/tools/wordpress/wp-dev.md +940 -0
package/.agent/tools/wordpress/wp-preferred.md +398 -0
package/.agent/tools/wordpress.md +95 -0
package/.agent/workflows/branch/bugfix.md +63 -0
package/.agent/workflows/branch/chore.md +95 -0
package/.agent/workflows/branch/experiment.md +115 -0
package/.agent/workflows/branch/feature.md +59 -0
package/.agent/workflows/branch/hotfix.md +98 -0
package/.agent/workflows/branch/refactor.md +92 -0
package/.agent/workflows/branch/release.md +96 -0
package/.agent/workflows/branch.md +347 -0
package/.agent/workflows/bug-fixing.md +267 -0
package/.agent/workflows/changelog.md +129 -0
package/.agent/workflows/code-audit-remote.md +279 -0
package/.agent/workflows/conversation-starter.md +69 -0
package/.agent/workflows/error-feedback.md +578 -0
package/.agent/workflows/feature-development.md +355 -0
package/.agent/workflows/git-workflow.md +702 -0
package/.agent/workflows/multi-repo-workspace.md +268 -0
package/.agent/workflows/plans.md +709 -0
package/.agent/workflows/postflight.md +604 -0
package/.agent/workflows/pr.md +571 -0
package/.agent/workflows/preflight.md +278 -0
package/.agent/workflows/ralph-loop.md +773 -0
package/.agent/workflows/release.md +498 -0
package/.agent/workflows/session-manager.md +254 -0
package/.agent/workflows/session-review.md +311 -0
package/.agent/workflows/sql-migrations.md +631 -0
package/.agent/workflows/version-bump.md +283 -0
package/.agent/workflows/wiki-update.md +333 -0
package/.agent/workflows/worktree.md +477 -0
package/LICENSE +21 -0
package/README.md +1446 -0
package/VERSION +1 -0
package/aidevops.sh +1746 -0
package/bin/aidevops +21 -0
package/package.json +75 -0
package/scripts/npm-postinstall.js +60 -0
package/setup.sh +2366 -0

package/.agent/tools/code-review/auditing.md ADDED Viewed

@@ -0,0 +1,383 @@
+---
+description: Code auditing services and security analysis
+mode: subagent
+tools:
+  read: true
+  write: false
+  edit: false
+  bash: true
+  glob: true
+  grep: true
+  webfetch: true
+  task: true
+---
+# Code Auditing Services Guide
+<!-- AI-CONTEXT-START -->
+## Quick Reference
+- **Helper**: `.agent/scripts/code-audit-helper.sh`
+- **Services**: CodeRabbit (AI reviews), CodeFactor (quality), Codacy (enterprise), SonarCloud (security)
+- **Config**: `configs/code-audit-config.json`
+- **Commands**: `services` | `audit [repo]` | `report [repo] [file]` | `start-mcp [service] [port]`
+- **MCP Ports**: CodeRabbit (3003), Codacy (3004), SonarCloud (3005)
+- **Quality Gates**: 80% coverage, 0 major bugs, 0 high vulnerabilities, <3% duplication
+- **Service Commands**: `coderabbit-repos`, `codacy-repos`, `sonarcloud-projects`, `codefactor-repos`
+- **CI/CD**: GitHub Actions integration with quality gate enforcement
+<!-- AI-CONTEXT-END -->
+Comprehensive code quality and security auditing across multiple platforms including CodeRabbit, CodeFactor, Codacy, and SonarCloud with AI assistant integration.
+## Services Overview
+### **Supported Code Auditing Services:**
+#### **CodeRabbit**
+- **Focus**: AI-powered code reviews and analysis
+- **Strengths**: Context-aware reviews, security analysis, best practices
+- **API**: Comprehensive REST API with MCP integration
+- **Use Case**: Automated code reviews and quality analysis
+#### **CodeFactor**
+- **Focus**: Automated code quality analysis
+- **Strengths**: Simple setup, clear metrics, GitHub integration
+- **API**: REST API for repository and issue management
+- **Use Case**: Continuous code quality monitoring
+#### **Codacy**
+- **Focus**: Automated code quality and security analysis
+- **Strengths**: Comprehensive metrics, team collaboration, custom rules
+- **API**: Full REST API with MCP server support
+- **Use Case**: Enterprise code quality management
+#### **SonarCloud**
+- **Focus**: Code quality and security analysis
+- **Strengths**: Industry standard, comprehensive rules, quality gates
+- **API**: Extensive web API with MCP integration
+- **Use Case**: Professional code quality and security analysis
+## Configuration
+### **Setup Configuration:**
+```bash
+# Copy template
+cp configs/code-audit-config.json.txt configs/code-audit-config.json
+# Edit with your service API tokens
+```
+### **Multi-Service Configuration:**
+```json
+{
+  "services": {
+    "coderabbit": {
+      "accounts": {
+        "personal": {
+          "api_token": "YOUR_CODERABBIT_API_TOKEN_HERE",
+          "base_url": "https://api.coderabbit.ai/v1",
+          "organization": "your-github-username"
+        }
+      }
+    },
+    "codacy": {
+      "accounts": {
+        "organization": {
+          "api_token": "YOUR_CODACY_API_TOKEN_HERE",
+          "base_url": "https://app.codacy.com/api/v3",
+          "organization": "your-organization"
+        }
+      }
+    }
+  }
+}
+```
+## Usage Examples
+### **Basic Commands:**
+```bash
+# List all configured services
+./.agent/scripts/code-audit-helper.sh services
+# Run comprehensive audit across all services
+./.agent/scripts/code-audit-helper.sh audit my-repository
+# Generate detailed audit report
+./.agent/scripts/code-audit-helper.sh report my-repository audit-report.json
+```
+### **CodeRabbit Operations:**
+```bash
+# List CodeRabbit repositories
+./.agent/scripts/code-audit-helper.sh coderabbit-repos personal
+# Get analysis for repository
+./.agent/scripts/code-audit-helper.sh coderabbit-analysis personal repo-id
+# Start CodeRabbit MCP server
+./.agent/scripts/code-audit-helper.sh start-mcp coderabbit 3003
+```
+### **CodeFactor Operations:**
+```bash
+# List CodeFactor repositories
+./.agent/scripts/code-audit-helper.sh codefactor-repos personal
+# Get issues for repository
+./.agent/scripts/code-audit-helper.sh codefactor-issues personal my-repo
+# Check repository grade
+curl -H "X-CF-TOKEN: $API_TOKEN" https://www.codefactor.io/api/v1/repositories/my-repo
+```
+### **Codacy Operations:**
+```bash
+# List Codacy repositories
+./.agent/scripts/code-audit-helper.sh codacy-repos organization
+# Get quality overview
+./.agent/scripts/code-audit-helper.sh codacy-quality organization my-repo
+# Start Codacy MCP server
+./.agent/scripts/code-audit-helper.sh start-mcp codacy 3004
+```
+### **SonarCloud Operations:**
+```bash
+# List SonarCloud projects
+./.agent/scripts/code-audit-helper.sh sonarcloud-projects personal
+# Get project measures
+./.agent/scripts/code-audit-helper.sh sonarcloud-measures personal project-key
+# Start SonarCloud MCP server
+./.agent/scripts/code-audit-helper.sh start-mcp sonarcloud 3005
+```
+## Security Best Practices
+### **API Security:**
+- **Token management**: Store API tokens securely
+- **Scope limitation**: Use tokens with minimal required permissions
+- **Regular rotation**: Rotate API tokens regularly
+- **Access monitoring**: Monitor API usage and access patterns
+- **Rate limiting**: Respect service rate limits
+### **Code Security:**
+```bash
+# Regular security audits
+./.agent/scripts/code-audit-helper.sh audit my-repository
+# Monitor for security vulnerabilities
+# Check SonarCloud security hotspots
+./.agent/scripts/code-audit-helper.sh sonarcloud-measures personal project-key
+# Review Codacy security issues
+./.agent/scripts/code-audit-helper.sh codacy-quality organization my-repo
+```
+## Quality Gates & Metrics
+### **Key Quality Metrics:**
+- **Code Coverage**: Minimum 80%, target 90%
+- **Code Smells**: Maximum 10 major issues
+- **Security Hotspots**: Zero high-severity issues
+- **Bugs**: Zero major bugs
+- **Vulnerabilities**: Zero high-severity vulnerabilities
+- **Duplicated Lines**: Maximum 3% duplication
+### **Quality Gate Configuration:**
+```json
+{
+  "quality_gates": {
+    "code_coverage": {
+      "minimum": 80,
+      "target": 90,
+      "fail_build": true
+    },
+    "security_hotspots": {
+      "maximum": 0,
+      "severity": "high",
+      "fail_build": true
+    }
+  }
+}
+```
+## MCP Integration
+### **Available MCP Servers:**
+#### **CodeRabbit MCP:**
+```bash
+# Start CodeRabbit MCP server
+./.agent/scripts/code-audit-helper.sh start-mcp coderabbit 3003
+# Configure in AI assistant
+{
+  "coderabbit": {
+    "command": "coderabbit-mcp-server",
+    "args": ["--port", "3003"],
+    "env": {
+      "CODERABBIT_API_TOKEN": "your-token"
+    }
+  }
+}
+```
+#### **Codacy MCP:**
+```bash
+# Install Codacy MCP server
+# https://github.com/codacy/codacy-mcp-server
+# Start server
+./.agent/scripts/code-audit-helper.sh start-mcp codacy 3004
+```
+#### **SonarCloud MCP:**
+```bash
+# Install SonarQube MCP server
+# https://github.com/SonarSource/sonarqube-mcp-server
+# Start server
+./.agent/scripts/code-audit-helper.sh start-mcp sonarcloud 3005
+```
+### **AI Assistant Capabilities:**
+With MCP integration, AI assistants can:
+- **Real-time code analysis** during development
+- **Automated quality reports** generation
+- **Security vulnerability** detection and reporting
+- **Code review assistance** with context-aware suggestions
+- **Quality trend analysis** over time
+- **Automated issue prioritization** based on severity
+## CI/CD Integration
+### **GitHub Actions Integration:**
+```yaml
+name: Code Quality Audit
+on: [push, pull_request]
+jobs:
+  audit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - name: Run Code Audit
+        run: |
+          ./.agent/scripts/code-audit-helper.sh audit ${{ github.repository }}
+          ./.agent/scripts/code-audit-helper.sh report ${{ github.repository }} audit-report.json
+      - name: Upload Report
+        uses: actions/upload-artifact@v3
+        with:
+          name: audit-report
+          path: audit-report.json
+```
+### **Quality Gate Enforcement:**
+```bash
+#!/bin/bash
+# Quality gate script for CI/CD
+REPO_NAME="$1"
+REPORT_FILE="audit-report-$(date +%Y%m%d-%H%M%S).json"
+# Run comprehensive audit
+./.agent/scripts/code-audit-helper.sh audit "$REPO_NAME"
+./.agent/scripts/code-audit-helper.sh report "$REPO_NAME" "$REPORT_FILE"
+# Check quality gates
+COVERAGE=$(jq -r '.coverage' "$REPORT_FILE")
+BUGS=$(jq -r '.bugs' "$REPORT_FILE")
+VULNERABILITIES=$(jq -r '.vulnerabilities' "$REPORT_FILE")
+# Fail build if quality gates not met
+if (( $(echo "$COVERAGE < 80" | bc -l) )); then
+    echo "❌ Coverage below 80%: $COVERAGE%"
+    exit 1
+fi
+if (( BUGS > 0 )); then
+    echo "❌ Bugs found: $BUGS"
+    exit 1
+fi
+if (( VULNERABILITIES > 0 )); then
+    echo "❌ Vulnerabilities found: $VULNERABILITIES"
+    exit 1
+fi
+echo "✅ All quality gates passed"
+```
+## Best Practices
+### **Code Quality Management:**
+1. **Consistent standards**: Apply consistent quality standards across projects
+2. **Regular monitoring**: Monitor code quality metrics continuously
+3. **Team education**: Educate team on quality best practices
+4. **Automated enforcement**: Use quality gates to enforce standards
+5. **Continuous improvement**: Regularly review and improve quality processes
+### **Security Analysis:**
+- **Regular scans**: Run security scans on every commit
+- **Vulnerability tracking**: Track and remediate vulnerabilities promptly
+- **Dependency scanning**: Monitor dependencies for security issues
+- **Secret detection**: Scan for accidentally committed secrets
+- **Compliance monitoring**: Monitor compliance with security standards
+### **Automation Strategies:**
+- **CI/CD integration**: Integrate quality checks into CI/CD pipelines
+- **Automated reporting**: Generate automated quality reports
+- **Issue tracking**: Automatically create issues for quality problems
+- **Notification systems**: Set up notifications for quality gate failures
+- **Trend analysis**: Analyze quality trends over time
+## AI Assistant Integration
+### **Automated Code Quality:**
+- **Real-time analysis**: AI can analyze code quality in real-time
+- **Intelligent prioritization**: AI can prioritize issues by impact
+- **Automated fixes**: AI can suggest or implement automated fixes
+- **Quality coaching**: AI can provide quality improvement guidance
+- **Trend prediction**: AI can predict quality trends and issues
+### **Development Workflows:**
+- **Code review assistance**: AI-powered code review suggestions
+- **Quality gate automation**: Automated quality gate enforcement
+- **Issue resolution**: AI-assisted issue resolution and fixes
+- **Documentation generation**: Automated quality documentation
+- **Team reporting**: Automated team quality reports and insights
+---
+**The code auditing framework provides comprehensive code quality and security analysis across multiple platforms with AI assistant integration for automated DevOps workflows.**

package/.agent/tools/code-review/automation.md ADDED Viewed

@@ -0,0 +1,219 @@
+---
+description: Automated quality checks and CI/CD integration
+mode: subagent
+tools:
+  read: true
+  write: true
+  edit: true
+  bash: true
+  glob: true
+  grep: true
+  webfetch: false
+  task: true
+---
+# Quality Automation Guide
+<!-- AI-CONTEXT-START -->
+## Quick Reference
+- Master script: `bash .agent/scripts/linters-local.sh` (multi-platform validation)
+- Fix script: `bash .agent/scripts/quality-fix.sh [file|dir]`
+- SonarCloud rules: S7679 (positional params), S1481 (unused vars), S1192 (strings), S7682 (returns)
+- Specialized fixes:
+  - `fix-content-type.sh` - Content-Type header constants
+  - `fix-auth-headers.sh` - Authorization header patterns
+  - `fix-error-messages.sh` - Error message consolidation
+  - `markdown-formatter.sh` - Markdown linting/formatting
+- CLI manager: `bash .agent/scripts/quality-cli-manager.sh install|analyze|status all`
+- Platform CLIs: CodeRabbit, Codacy, SonarScanner
+- Achievement: 349 -> 42 issues (88% reduction), A-grade platforms
+<!-- AI-CONTEXT-END -->
+## Comprehensive Quality Management Tools
+> **Note**: This document is supplementary to the [AGENTS.md](../AGENTS.md).
+> For any conflicts, the Master Guide takes precedence as the single source of truth.
+### Overview
+This guide provides detailed documentation of our quality automation tools and their usage patterns.
+### Core Quality Scripts
+#### linters-local.sh - Master Quality Validator
+**Purpose**: Comprehensive multi-platform quality validation
+**Usage**: `bash .agent/scripts/linters-local.sh`
+**Checks Performed**:
+- SonarCloud issue analysis (S7679, S1481, S1192, S7682)
+- ShellCheck compliance validation
+- Return statement verification
+- Positional parameter detection
+- String literal duplication analysis
+**Output**: Color-coded quality report with actionable recommendations
+#### quality-fix.sh - Universal Issue Resolution
+**Purpose**: Automated fixing of common quality issues
+**Usage**: `bash .agent/scripts/quality-fix.sh [file|directory]`
+**Fixes Applied**:
+- Missing return statements in functions
+- Positional parameter usage patterns
+- Basic ShellCheck compliance issues
+- Function structure standardization
+### Specialized Fix Scripts
+#### String Literal Management
+**fix-content-type.sh**: Content-Type header consolidation
+- Targets: `"Content-Type: application/json"` (24+ occurrences)
+- Creates: `readonly CONTENT_TYPE_JSON` constants
+- Result: Eliminates S1192 violations for HTTP headers
+**fix-auth-headers.sh**: Authorization header standardization
+- Targets: `"Authorization: Bearer"` patterns
+- Creates: `readonly AUTH_BEARER_PREFIX` constants
+- Result: Consistent API authentication patterns
+**fix-error-messages.sh**: Error message consolidation
+- Targets: Common error patterns (`Unknown command:`, `Usage:`)
+- Creates: Error message constants
+- Result: Standardized user experience
+#### Markdown Quality Tools
+**markdown-formatter.sh**: Comprehensive markdown formatting
+- Fixes: Trailing whitespace, list markers, emphasis
+- Addresses: Codacy markdown formatting violations
+- Result: Professional documentation standards
+**markdown-lint-fix.sh**: Professional markdown linting
+- Integration: markdownlint-cli with auto-install
+- Configuration: Optimized .markdownlint.json
+- Result: Industry-standard markdown compliance
+### Quality CLI Integration
+#### Multi-Platform Analysis
+**quality-cli-manager.sh**: Unified CLI management
+```bash
+# Install all quality CLIs
+bash .agent/scripts/quality-cli-manager.sh install all
+# Run comprehensive analysis
+bash .agent/scripts/quality-cli-manager.sh analyze all
+# Check status of all platforms
+bash .agent/scripts/quality-cli-manager.sh status all
+```
+#### Individual Platform CLIs
+**CodeRabbit CLI**: AI-powered code review
+```bash
+bash .agent/scripts/coderabbit-cli.sh review
+bash .agent/scripts/coderabbit-cli.sh analyze .agent/scripts/
+```
+**Codacy CLI v2**: Comprehensive static analysis
+```bash
+bash .agent/scripts/codacy-cli.sh analyze
+bash .agent/scripts/codacy-cli.sh upload results.sarif
+```
+**SonarScanner CLI**: SonarCloud integration
+```bash
+bash .agent/scripts/sonarscanner-cli.sh analyze
+```
+### Automation Workflows
+#### Pre-Commit Quality Gate
+```bash
+#!/bin/bash
+# Run before every commit
+# 1. Comprehensive quality check
+bash .agent/scripts/linters-local.sh
+# 2. Fix common issues
+bash .agent/scripts/quality-fix.sh .
+# 3. Format markdown
+bash .agent/scripts/markdown-formatter.sh .
+# 4. Verify improvements
+bash .agent/scripts/linters-local.sh
+```
+#### Continuous Quality Monitoring
+```bash
+#!/bin/bash
+# Daily quality monitoring
+# 1. Multi-platform analysis
+bash .agent/scripts/quality-cli-manager.sh analyze all
+# 2. Generate quality report
+bash .agent/scripts/linters-local.sh > quality-report.txt
+# 3. Track progress
+echo "$(date): $(grep 'SonarCloud:' quality-report.txt)" >> quality-history.log
+```
+### Quality Metrics & Targets
+#### Current Achievement
+- **SonarCloud**: 349 → 42 issues (88% reduction)
+- **Critical Issues**: S7679 & S1481 = 0 (100% resolved)
+- **String Literals**: 50+ S1192 violations eliminated
+- **Platform Ratings**: A-grade across CodeFactor, Codacy
+#### Target Thresholds
+```bash
+# linters-local.sh thresholds
+readonly MAX_TOTAL_ISSUES=100
+readonly MAX_RETURN_ISSUES=0
+readonly MAX_POSITIONAL_ISSUES=0
+readonly MAX_STRING_LITERAL_ISSUES=0
+```
+### Best Practices
+#### Issue Resolution Priority
+1. **Critical (S7679, S1481)**: Immediate resolution required
+2. **High (S1192)**: Target 3+ occurrences for maximum impact
+3. **Medium (S7682)**: Systematic function standardization
+4. **Low (ShellCheck)**: Style and best practice improvements
+#### Automation Principles
+- **Batch Processing**: Target similar patterns across multiple files
+- **Functionality Preservation**: Never remove features to fix issues
+- **Reusable Tools**: Create scripts for recurring patterns
+- **Validation**: Always verify fixes don't break functionality
+This automation ecosystem enables systematic maintenance of zero technical debt while enhancing code quality and functionality.