npm - codecruise - Versions diffs - 0.1.0 - Mend

codecruise 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (129) hide show

package/LICENSE +21 -0
package/README.md +111 -0
package/bin/codecruise.js +68 -0
package/config/CLAUDE.md +107 -0
package/config/agents/analyst.md +48 -0
package/config/agents/architect-reviewer.md +161 -0
package/config/agents/architect.md +119 -0
package/config/agents/critic.md +63 -0
package/config/agents/developer.md +96 -0
package/config/agents/devops.md +81 -0
package/config/agents/orchestrator.md +91 -0
package/config/agents/planner.md +139 -0
package/config/agents/retro.md +52 -0
package/config/agents/reviewer.md +101 -0
package/config/agents/security-reviewer.md +57 -0
package/config/agents/stack/expo/AGENT.md +473 -0
package/config/agents/stack/expo/rules/critical.md +427 -0
package/config/agents/stack/expo/rules/native.md +455 -0
package/config/agents/stack/expo/rules/navigation.md +445 -0
package/config/agents/stack/expo/rules/performance.md +415 -0
package/config/agents/stack/fastify/AGENT.md +397 -0
package/config/agents/stack/fastify/rules/api-design.md +283 -0
package/config/agents/stack/fastify/rules/critical.md +232 -0
package/config/agents/stack/fastify/rules/queues.md +303 -0
package/config/agents/stack/fastify/rules/security.md +384 -0
package/config/agents/stack/index.yaml +48 -0
package/config/agents/stack/nextjs/AGENT.md +421 -0
package/config/agents/stack/nextjs/rules/components.md +413 -0
package/config/agents/stack/nextjs/rules/critical.md +391 -0
package/config/agents/stack/nextjs/rules/performance.md +403 -0
package/config/agents/stack/nextjs/rules/styling.md +334 -0
package/config/agents/stack/shared-ts/AGENT.md +384 -0
package/config/agents/stack/shared-ts/rules/critical.md +315 -0
package/config/agents/stack/shared-ts/rules/patterns.md +384 -0
package/config/agents/stack/shared-ts/rules/zod.md +427 -0
package/config/agents/tester.md +79 -0
package/config/commands/architect-discuss.md +366 -0
package/config/commands/architect-list.md +160 -0
package/config/commands/architect-review.md +111 -0
package/config/commands/architect.md +118 -0
package/config/commands/compact.md +118 -0
package/config/commands/companion.md +279 -0
package/config/commands/dashboard.md +152 -0
package/config/commands/doctor.md +227 -0
package/config/commands/dogfood-report.md +101 -0
package/config/commands/flags/run-autonomous.md +110 -0
package/config/commands/flags/run-pause.md +80 -0
package/config/commands/ingest.md +173 -0
package/config/commands/init.md +128 -0
package/config/commands/metrics.md +87 -0
package/config/commands/parallel.md +320 -0
package/config/commands/pause.md +55 -0
package/config/commands/plan-review.md +130 -0
package/config/commands/plan.md +216 -0
package/config/commands/production-check.md +308 -0
package/config/commands/refine.md +323 -0
package/config/commands/resume.md +72 -0
package/config/commands/retro.md +121 -0
package/config/commands/retry.md +75 -0
package/config/commands/role.md +310 -0
package/config/commands/run.md +417 -0
package/config/commands/scope.md +85 -0
package/config/commands/setup-permissions.md +104 -0
package/config/commands/skip.md +75 -0
package/config/commands/spec-forge.md +213 -0
package/config/commands/spec-help.md +194 -0
package/config/commands/spec-patch.md +342 -0
package/config/commands/spec-resolve.md +110 -0
package/config/commands/spec-review.md +153 -0
package/config/commands/status.md +114 -0
package/config/commands/sync.md +131 -0
package/config/commands/task.md +138 -0
package/config/commands/verify.md +124 -0
package/config/hooks/README.md +632 -0
package/config/hooks/activity-log.sh +187 -0
package/config/hooks/anti-rationalize.sh +52 -0
package/config/hooks/capture-verification.sh +112 -0
package/config/hooks/collect-metrics.sh +135 -0
package/config/hooks/enforce-file-scope.sh +75 -0
package/config/hooks/enforce-state-machine.sh +161 -0
package/config/hooks/enforce-tdd.sh +180 -0
package/config/hooks/format.sh +40 -0
package/config/hooks/lib/activity-helpers.sh +162 -0
package/config/hooks/lib/read-settings.sh +71 -0
package/config/hooks/load-context-skills.sh +95 -0
package/config/hooks/notify.sh +81 -0
package/config/hooks/pre-commit.sample +35 -0
package/config/hooks/protect-files.sh +63 -0
package/config/hooks/track-agents.sh +41 -0
package/config/hooks/track-commands.sh +37 -0
package/config/hooks/track-enforcement.sh +44 -0
package/config/hooks/track-ooda.sh +77 -0
package/config/hooks/validate-commit-msg.sh +35 -0
package/config/hooks/validate-plan.sh +213 -0
package/config/hooks/verify-criteria.sh +46 -0
package/config/hooks/verify-todo-completion.sh +140 -0
package/config/rules/comments.md +25 -0
package/config/rules/decision-rules.md +308 -0
package/config/rules/hygiene.md +247 -0
package/config/rules/pattern-detection.md +372 -0
package/config/rules/profiles.md +193 -0
package/config/rules/recovery.md +83 -0
package/config/rules/scope-detection.md +213 -0
package/config/rules/standards.md +127 -0
package/config/rules/workflow.md +121 -0
package/config/schemas.md +767 -0
package/config/settings.json +195 -0
package/config/skills/backend/SKILL.md +734 -0
package/config/skills/database/SKILL.md +426 -0
package/config/skills/frontend/SKILL.md +434 -0
package/config/skills/git/SKILL.md +396 -0
package/config/skills/index.yaml +36 -0
package/config/skills/observability/SKILL.md +430 -0
package/config/skills/package-dev/SKILL.md +498 -0
package/config/skills/performance/SKILL.md +378 -0
package/config/skills/resilience/SKILL.md +573 -0
package/config/skills/testing/SKILL.md +398 -0
package/config/skills/testing-patterns/SKILL.md +276 -0
package/config/skills/typescript/SKILL.md +152 -0
package/config/templates/CLAUDE.md +70 -0
package/config/templates/README.md +117 -0
package/config/templates/steering/adr-template.md +102 -0
package/config/templates/steering/product.md +60 -0
package/config/templates/steering/rfc-template.md +159 -0
package/config/templates/steering/structure.md +146 -0
package/config/templates/steering/tech.md +85 -0
package/package.json +40 -0
package/src/install.js +163 -0
package/src/report.js +310 -0

package/config/agents/stack/nextjs/rules/critical.md ADDED Viewed

@@ -0,0 +1,391 @@
+# Critical Rules - Next.js
+Must-follow rules. Violations block PR merge.
+---
+## Component Model
+### NEXT-001: Default to Server Components
+```typescript
+// GOOD - Server Component (default)
+async function UserList() {
+  const users = await getUsers(); // Direct server fetch
+  return <ul>{users.map(u => <li key={u.id}>{u.name}</li>)}</ul>;
+}
+// BAD - Unnecessary client component
+'use client';
+import { useEffect, useState } from 'react';
+function UserList() {
+  const [users, setUsers] = useState([]);
+  useEffect(() => {
+    fetch('/api/users').then(r => r.json()).then(setUsers);
+  }, []);
+  // ... waterfall, slower
+}
+```
+### NEXT-002: Mark client components explicitly
+```typescript
+// Required for:
+// - useState, useEffect, useRef
+// - onClick, onChange, onSubmit
+// - Browser APIs (localStorage, window)
+// - Third-party hooks
+'use client'; // Must be first line
+import { useState } from 'react';
+export function Counter() {
+  const [count, setCount] = useState(0);
+  return <button onClick={() => setCount(c => c + 1)}>{count}</button>;
+}
+```
+### NEXT-003: Minimize client component boundaries
+```typescript
+// BAD - Entire page is client
+'use client';
+export default function DashboardPage() {
+  const [filter, setFilter] = useState('all');
+  const users = useUsers(); // All rendering on client
+  return <div>...</div>;
+}
+// GOOD - Only interactive parts are client
+export default async function DashboardPage() {
+  const users = await getUsers(); // Server fetch
+  return (
+    <div>
+      <FilterBar /> {/* Client component for interactivity */}
+      <UserList users={users} /> {/* Server component with data */}
+    </div>
+  );
+}
+```
+---
+## Data Fetching
+### NEXT-004: Use Server Actions for mutations
+```typescript
+// BAD - API route for simple mutation
+// app/api/users/route.ts + client fetch
+// GOOD - Server Action
+// app/actions/user.ts
+'use server';
+import { revalidatePath } from 'next/cache';
+export async function createUser(formData: FormData) {
+  const data = Object.fromEntries(formData);
+  await db.user.create({ data });
+  revalidatePath('/users');
+}
+// In component
+<form action={createUser}>...</form>
+```
+### NEXT-005: Validate all inputs in Server Actions
+```typescript
+'use server';
+import { z } from 'zod';
+const schema = z.object({
+  email: z.string().email(),
+  name: z.string().min(2),
+});
+export async function createUser(formData: FormData) {
+  const raw = Object.fromEntries(formData);
+  // Always validate - formData can be spoofed
+  const result = schema.safeParse(raw);
+  if (!result.success) {
+    return { error: 'Invalid input', details: result.error.flatten() };
+  }
+  await db.user.create({ data: result.data });
+  return { success: true };
+}
+```
+### NEXT-006: Handle loading and error states
+```typescript
+// With Suspense
+import { Suspense } from 'react';
+import { ErrorBoundary } from 'react-error-boundary';
+export default function Page() {
+  return (
+    <ErrorBoundary fallback={<ErrorState />}>
+      <Suspense fallback={<LoadingState />}>
+        <AsyncComponent />
+      </Suspense>
+    </ErrorBoundary>
+  );
+}
+// With loading.tsx and error.tsx
+// app/dashboard/loading.tsx
+export default function Loading() {
+  return <Skeleton className="h-96" />;
+}
+// app/dashboard/error.tsx
+'use client';
+export default function Error({ error, reset }) {
+  return (
+    <div>
+      <p>Something went wrong</p>
+      <Button onClick={reset}>Try again</Button>
+    </div>
+  );
+}
+```
+---
+## Security
+### NEXT-007: Never expose secrets to client
+```typescript
+// BAD - Exposed to client bundle
+const API_KEY = process.env.API_KEY;
+// GOOD - Server-only
+// In Server Component or Server Action
+const API_KEY = process.env.API_KEY; // Only accessible on server
+// Or explicitly mark
+import 'server-only';
+export const secret = process.env.SECRET;
+```
+### NEXT-008: Validate auth in Server Actions
+```typescript
+'use server';
+import { getSession } from '@/lib/auth';
+import { redirect } from 'next/navigation';
+export async function deleteUser(userId: string) {
+  const session = await getSession();
+  // Always check auth
+  if (!session) {
+    redirect('/login');
+  }
+  // Check authorization
+  if (session.user.role !== 'ADMIN') {
+    throw new Error('Unauthorized');
+  }
+  await db.user.delete({ where: { id: userId } });
+}
+```
+### NEXT-009: Sanitize user-generated content
+```typescript
+import DOMPurify from 'isomorphic-dompurify';
+// For rendering user HTML
+function UserContent({ html }: { html: string }) {
+  const clean = DOMPurify.sanitize(html, {
+    ALLOWED_TAGS: ['b', 'i', 'em', 'strong', 'a', 'p'],
+    ALLOWED_ATTR: ['href'],
+  });
+  return <div dangerouslySetInnerHTML={{ __html: clean }} />;
+}
+// Prefer structured content over raw HTML
+function UserBio({ bio }: { bio: string }) {
+  // Just text, no HTML
+  return <p className="whitespace-pre-wrap">{bio}</p>;
+}
+```
+---
+## Routing
+### NEXT-010: Use proper navigation methods
+```typescript
+// For links - use Link component
+import Link from 'next/link';
+<Link href="/dashboard">Dashboard</Link>
+// For programmatic navigation in Client Components
+'use client';
+import { useRouter } from 'next/navigation';
+const router = useRouter();
+router.push('/dashboard');
+// For Server Actions/Components
+import { redirect } from 'next/navigation';
+redirect('/dashboard'); // Throws, stops execution
+```
+### NEXT-011: Protect routes at layout level
+```typescript
+// app/dashboard/layout.tsx
+import { getSession } from '@/lib/auth';
+import { redirect } from 'next/navigation';
+export default async function DashboardLayout({
+  children,
+}: {
+  children: React.ReactNode;
+}) {
+  const session = await getSession();
+  if (!session) {
+    redirect('/login');
+  }
+  return (
+    <div className="flex">
+      <Sidebar user={session.user} />
+      <main className="flex-1">{children}</main>
+    </div>
+  );
+}
+```
+---
+## Rendering
+### NEXT-012: Add proper metadata
+```typescript
+// Static metadata
+export const metadata = {
+  title: 'Dashboard',
+  description: 'Your dashboard overview',
+};
+// Dynamic metadata
+export async function generateMetadata({ params }) {
+  const user = await getUser(params.id);
+  return {
+    title: user.name,
+    description: `Profile of ${user.name}`,
+  };
+}
+// With template
+// app/layout.tsx
+export const metadata = {
+  title: {
+    template: '%s | MyApp',
+    default: 'MyApp',
+  },
+};
+```
+### NEXT-013: Use Image component for images
+```typescript
+// BAD
+<img src="/hero.jpg" alt="Hero" />
+// GOOD
+import Image from 'next/image';
+<Image
+  src="/hero.jpg"
+  alt="Hero image"
+  width={1200}
+  height={600}
+  priority // For above-the-fold images
+/>
+// For fill mode
+<div className="relative h-64">
+  <Image
+    src={user.avatar}
+    alt={user.name}
+    fill
+    className="object-cover"
+    sizes="(max-width: 768px) 100vw, 50vw"
+  />
+</div>
+```
+---
+## State Management
+### NEXT-014: Avoid unnecessary client state
+```typescript
+// BAD - Client state for server data
+'use client';
+const [users, setUsers] = useState([]);
+useEffect(() => {
+  fetchUsers().then(setUsers);
+}, []);
+// GOOD - Server fetch, no client state needed
+async function UserList() {
+  const users = await getUsers();
+  return <ul>...</ul>;
+}
+// OK - Client state for UI state only
+'use client';
+const [isOpen, setIsOpen] = useState(false);
+const [filter, setFilter] = useState('all');
+```
+### NEXT-015: Use URL state for shareable state
+```typescript
+'use client';
+import { useSearchParams, useRouter, usePathname } from 'next/navigation';
+function FilterBar() {
+  const searchParams = useSearchParams();
+  const router = useRouter();
+  const pathname = usePathname();
+  function setFilter(value: string) {
+    const params = new URLSearchParams(searchParams);
+    params.set('filter', value);
+    router.push(`${pathname}?${params.toString()}`);
+  }
+  return (
+    <select
+      value={searchParams.get('filter') ?? 'all'}
+      onChange={(e) => setFilter(e.target.value)}
+    >
+      <option value="all">All</option>
+      <option value="active">Active</option>
+    </select>
+  );
+}
+```