create-qa-architect 5.0.6 → 5.3.1

package/setup.js

@@ -1,5 +1,68 @@
 #!/usr/bin/env node
 
+/**
+ * DR26 fix: Architectural Refactoring Plan for setup.js (2201 lines)
+ *
+ * PRIORITY: This file should be split into focused modules to improve
+ * maintainability, testability, and reduce cognitive load.
+ *
+ * PROPOSED MODULE STRUCTURE (target: < 500 lines per module):
+ *
+ * 1. lib/commands/validate.js (~300 lines)
+ *    - Validation command logic
+ *    - Config validation workflows
+ *    - Prelaunch validation integration
+ *
+ * 2. lib/commands/deps.js (~200 lines)
+ *    - Dependency monitoring setup
+ *    - Dependabot configuration
+ *    - GitHub API integration calls
+ *
+ * 3. lib/commands/activate.js (~150 lines)
+ *    - License activation flow
+ *    - Interactive license prompts
+ *    - License validation integration
+ *
+ * 4. lib/commands/setup-main.js (~800 lines)
+ *    - Main setup orchestration
+ *    - Template generation
+ *    - File writing operations
+ *    - Husky/lint-staged configuration
+ *
+ * 5. lib/setup-config.js (~200 lines)
+ *    - Configuration merging logic
+ *    - Package.json updates
+ *    - Workflow injection helpers
+ *
+ * 6. setup.js (core CLI, ~200 lines)
+ *    - Argument parsing
+ *    - Command routing
+ *    - Help/version display
+ *    - Exit code handling
+ *
+ * MIGRATION CHECKLIST:
+ * - [ ] Extract validation command to lib/commands/validate.js
+ * - [ ] Extract deps command to lib/commands/deps.js
+ * - [ ] Extract license activation to lib/commands/activate.js
+ * - [ ] Extract main setup flow to lib/commands/setup-main.js
+ * - [ ] Extract config helpers to lib/setup-config.js
+ * - [ ] Update all tests to use new module structure
+ * - [ ] Verify all CLI commands still work (--help, --deps, --validate, etc.)
+ * - [ ] Update integration tests
+ * - [ ] Run full test suite and ensure 100% pass rate
+ *
+ * BENEFITS:
+ * - Easier to test individual commands
+ * - Reduced cognitive load when modifying specific features
+ * - Better code organization and discoverability
+ * - Easier to add new commands in the future
+ * - Faster development cycles (smaller files to navigate)
+ *
+ * BLOCKED BY: None (can be done incrementally)
+ * ESTIMATED EFFORT: 2-3 days with full test coverage
+ * RISK: Medium (need to ensure no regressions in CLI behavior)
+ */
+
 const fs = require('fs')
 const path = require('path')
 const { execSync } = require('child_process')
@@ -49,29 +112,23 @@ const {
 } = require('./config/defaults')
 
 // Enhanced validation capabilities
-const { ValidationRunner } = require('./lib/validation')
 const { validateQualityConfig } = require('./lib/config-validator')
 
 // Interactive mode capabilities
 const { InteractivePrompt } = require('./lib/interactive/prompt')
 const { runInteractiveFlow } = require('./lib/interactive/questions')
 
-// Basic dependency monitoring (Free Tier)
-const {
-  hasNpmProject,
-  generateBasicDependabotConfig,
-  writeBasicDependabotConfig,
-} = require('./lib/dependency-monitoring-basic')
-
-// Premium dependency monitoring (Pro/Team/Enterprise Tiers)
-const {
-  generatePremiumDependabotConfig,
-  writePremiumDependabotConfig,
-} = require('./lib/dependency-monitoring-premium')
+// Note: Dependency monitoring imports moved to ./lib/commands/deps.js
 
 // Custom template loading
 const { TemplateLoader } = require('./lib/template-loader')
 
+// Command handlers (extracted for maintainability)
+const {
+  handleValidationCommands,
+  handleDependencyMonitoring,
+} = require('./lib/commands')
+
 // Licensing system
 const {
   getLicenseInfo,
@@ -91,6 +148,26 @@ const {
   getTestTierScripts,
 } = require('./lib/smart-strategy-generator')
 
+// Quality Tools Generator (Lighthouse, size-limit, axe-core, commitlint, coverage)
+const {
+  writeLighthouseConfig,
+  writeSizeLimitConfig,
+  writeCommitlintConfig,
+  writeCommitMsgHook,
+  writeAxeTestSetup,
+  getQualityToolsDependencies,
+  getQualityToolsScripts,
+} = require('./lib/quality-tools-generator')
+
+// Pre-Launch Validation (SEO, links, a11y, docs, env)
+const {
+  writeValidationScripts,
+  writeEnvValidator,
+  writePa11yConfig,
+  getPrelaunchScripts,
+  getPrelaunchDependencies,
+} = require('./lib/prelaunch-validator')
+
 // Telemetry (opt-in usage tracking)
 const { TelemetrySession, showTelemetryStatus } = require('./lib/telemetry')
 
@@ -103,7 +180,6 @@ const {
 // Critical setup enhancements (fixes production quality gaps)
 const {
   applyProductionQualityFixes,
-  // generateEnhancedPreCommitHook,
   validateProjectSetup,
 } = require('./lib/setup-enhancements')
 
@@ -151,7 +227,12 @@ function injectCollaborationSteps(workflowContent, options = {}) {
 const safeReadDir = dir => {
   try {
     return fs.readdirSync(dir, { withFileTypes: true })
-  } catch {
+  } catch (error) {
+    // Silent failure fix: Log non-ENOENT errors in DEBUG mode
+    // ENOENT is expected (dir doesn't exist), other errors may indicate issues
+    if (process.env.DEBUG && error?.code !== 'ENOENT') {
+      console.warn(`⚠️  Could not read directory ${dir}: ${error.message}`)
+    }
     return []
   }
 }
@@ -332,6 +413,7 @@ function parseArguments(rawArgs) {
   const isCheckMaturityMode = sanitizedArgs.includes('--check-maturity')
   const isValidateConfigMode = sanitizedArgs.includes('--validate-config')
   const isActivateLicenseMode = sanitizedArgs.includes('--activate-license')
+  const isPrelaunchMode = sanitizedArgs.includes('--prelaunch')
   const isDryRun = sanitizedArgs.includes('--dry-run')
   const ciProviderIndex = sanitizedArgs.findIndex(arg => arg === '--ci')
   const ciProvider =
@@ -355,6 +437,7 @@ function parseArguments(rawArgs) {
   const disableActionlint = sanitizedArgs.includes('--no-actionlint')
   const disableMarkdownlint = sanitizedArgs.includes('--no-markdownlint')
   const disableEslintSecurity = sanitizedArgs.includes('--no-eslint-security')
+  const allowLatestGitleaks = sanitizedArgs.includes('--allow-latest-gitleaks')
 
   return {
     sanitizedArgs,
@@ -371,6 +454,7 @@ function parseArguments(rawArgs) {
     isCheckMaturityMode,
     isValidateConfigMode,
     isActivateLicenseMode,
+    isPrelaunchMode,
     isDryRun,
     ciProvider,
     enableSlackAlerts,
@@ -381,6 +465,7 @@ function parseArguments(rawArgs) {
     disableActionlint,
     disableMarkdownlint,
     disableEslintSecurity,
+    allowLatestGitleaks,
   }
 }
 
@@ -408,6 +493,7 @@ function parseArguments(rawArgs) {
     isCheckMaturityMode,
     isValidateConfigMode,
     isActivateLicenseMode,
+    isPrelaunchMode,
     isDryRun,
     ciProvider,
     enableSlackAlerts,
@@ -418,6 +504,7 @@ function parseArguments(rawArgs) {
     disableActionlint,
     disableMarkdownlint,
     disableEslintSecurity,
+    allowLatestGitleaks,
   } = parsedConfig
 
   // Initialize telemetry session (opt-in only, fails silently)
@@ -490,6 +577,7 @@ function parseArguments(rawArgs) {
       disableActionlint,
       disableMarkdownlint,
       disableEslintSecurity,
+      allowLatestGitleaks,
     } = parsedConfig)
 
     console.log('📋 Configuration after interactive selections applied\n')
@@ -531,6 +619,7 @@ VALIDATION OPTIONS:
   --validate-docs   Run documentation validation only
   --validate-config Validate .qualityrc.json configuration file
   --check-maturity  Detect and display project maturity level
+  --prelaunch       Add pre-launch validation suite (SEO, links, a11y, docs)
 
 LICENSE, TELEMETRY & ERROR REPORTING:
   --license-status          Show current license tier and available features
@@ -572,6 +661,9 @@ EXAMPLES:
   npx create-qa-architect@latest --check-maturity
     → Detect project maturity level (minimal, bootstrap, development, production-ready)
 
+  npx create-qa-architect@latest --prelaunch
+    → Add pre-launch validation: SEO (sitemap, robots, meta), links, a11y, docs
+
   npx create-qa-architect@latest --validate-config
     → Validate .qualityrc.json configuration file against JSON Schema
 
@@ -644,257 +736,8 @@ HELP:
     process.exit(0)
   }
 
-  // Handle validation-only commands
-  async function handleValidationCommands() {
-    const validationOptions = {
-      disableNpmAudit,
-      disableGitleaks,
-      disableActionlint,
-      disableMarkdownlint,
-      disableEslintSecurity,
-    }
-    const validator = new ValidationRunner(validationOptions)
-
-    if (isConfigSecurityMode) {
-      try {
-        await validator.runConfigSecurity()
-        process.exit(0)
-      } catch (error) {
-        console.error(
-          `\n❌ Configuration security validation failed:\n${error.message}`
-        )
-        process.exit(1)
-      }
-    }
-
-    if (isDocsValidationMode) {
-      try {
-        await validator.runDocumentationValidation()
-        process.exit(0)
-      } catch (error) {
-        console.error(`\n❌ Documentation validation failed:\n${error.message}`)
-        process.exit(1)
-      }
-    }
-
-    if (isComprehensiveMode || isValidationMode) {
-      try {
-        // Use parallel validation for 3-5x speedup (runs checks concurrently)
-        await validator.runComprehensiveCheckParallel()
-        process.exit(0)
-      } catch (error) {
-        console.error(`\n❌ Comprehensive validation failed:\n${error.message}`)
-        process.exit(1)
-      }
-    }
-  }
-
-  // Detect Python project
-  function detectPythonProject(projectPath) {
-    const pythonFiles = [
-      'pyproject.toml',
-      'requirements.txt',
-      'setup.py',
-      'Pipfile',
-    ]
-    return pythonFiles.some(file => fs.existsSync(path.join(projectPath, file)))
-  }
-
-  // Detect Rust project
-  function detectRustProject(projectPath) {
-    return fs.existsSync(path.join(projectPath, 'Cargo.toml'))
-  }
-
-  // Detect Ruby project
-  function detectRubyProject(projectPath) {
-    return fs.existsSync(path.join(projectPath, 'Gemfile'))
-  }
-
-  // Handle dependency monitoring (Free/Pro/Team/Enterprise)
-  async function handleDependencyMonitoring() {
-    const projectPath = process.cwd()
-    const license = getLicenseInfo()
-
-    // Detect all supported ecosystems (npm, Python, Ruby, Rust, etc.)
-    const hasNpm = hasNpmProject(projectPath)
-    const hasPython = detectPythonProject(projectPath)
-    const hasRust = detectRustProject(projectPath)
-    const hasRuby = detectRubyProject(projectPath)
-
-    if (!hasNpm && !hasPython && !hasRust && !hasRuby) {
-      console.error(
-        '❌ No supported dependency file found (package.json, pyproject.toml, requirements.txt, Gemfile, Cargo.toml).'
-      )
-      console.log("💡 Make sure you're in a directory with dependency files.")
-      process.exit(1)
-    }
-
-    if (hasNpm) console.log('📦 Detected: npm project')
-    if (hasPython) console.log('🐍 Detected: Python project')
-    if (hasRust) console.log('🦀 Detected: Rust project')
-    if (hasRuby) console.log('💎 Detected: Ruby project')
-    console.log(`📋 License tier: ${license.tier.toUpperCase()}`)
-
-    // Enforce Free tier caps for dependency monitoring (counted as dependency PRs)
-    if (license.tier === 'FREE') {
-      const capCheck = checkUsageCaps('dependency-pr')
-      if (!capCheck.allowed) {
-        console.error(`❌ ${capCheck.reason}`)
-        console.error(
-          '   Upgrade to Pro, Team, or Enterprise for unlimited runs: https://vibebuildlab.com/tools/qa-architect'
-        )
-        process.exit(1)
-      }
-
-      const increment = incrementUsage('dependency-pr')
-      const usage = increment.usage || capCheck.usage
-      const caps = capCheck.caps
-      if (usage && caps && caps.maxDependencyPRsPerMonth !== undefined) {
-        console.log(
-          `🧮 Usage: ${usage.dependencyPRs}/${caps.maxDependencyPRsPerMonth} dependency monitoring runs used this month`
-        )
-      }
-    }
-
-    const dependabotPath = path.join(projectPath, '.github', 'dependabot.yml')
-
-    // Use premium or basic config based on license tier
-    // Free beta ended with v4.1.1 - Premium features now require Pro/Team/Enterprise tier
-    // Pro/Team/Enterprise: Framework-aware dependency monitoring with grouping
-    // Free: Basic npm-only dependency monitoring
-    const shouldUsePremium =
-      license.tier === 'PRO' ||
-      license.tier === 'TEAM' ||
-      license.tier === 'ENTERPRISE'
-
-    // Free tier only supports npm projects. Fail fast with a clear message.
-    if (!shouldUsePremium && !hasNpm && (hasPython || hasRust || hasRuby)) {
-      console.error(
-        '❌ Dependency monitoring for this project requires a Pro, Team, or Enterprise license.'
-      )
-      console.error(
-        '   Free tier supports npm projects only. Detected non-npm ecosystems.'
-      )
-      console.error(
-        '   Options: add npm/package.json, or upgrade and re-run: npx create-qa-architect@latest --deps after activation.'
-      )
-      process.exit(1)
-    }
-
-    if (shouldUsePremium) {
-      console.log(
-        '\n🚀 Setting up framework-aware dependency monitoring (Premium)...\n'
-      )
-
-      const configData = generatePremiumDependabotConfig({
-        projectPath,
-        schedule: 'weekly',
-      })
-
-      if (configData) {
-        const { ecosystems } = configData
-        const ecosystemNames = Object.keys(ecosystems)
-
-        if (ecosystemNames.length > 0) {
-          console.log('🔍 Detected ecosystems:')
-
-          // Find primary ecosystem and total package count
-          let primaryEcosystem = null
-          ecosystemNames.forEach(ecoName => {
-            const eco = ecosystems[ecoName]
-            const frameworks = Object.keys(eco.detected || {})
-            const totalPackages = frameworks.reduce((sum, fw) => {
-              return sum + (eco.detected[fw]?.count || 0)
-            }, 0)
-
-            console.log(`   • ${ecoName}: ${totalPackages} packages`)
-
-            if (eco.primary) {
-              primaryEcosystem = ecoName
-            }
-          })
-
-          if (primaryEcosystem) {
-            console.log(`\n🎯 Primary ecosystem: ${primaryEcosystem}`)
-          }
-        }
-
-        writePremiumDependabotConfig(configData, dependabotPath)
-        console.log(
-          '\n✅ Created .github/dependabot.yml with framework grouping'
-        )
-
-        console.log('\n🎉 Premium dependency monitoring setup complete!')
-        console.log('\n📋 What was added (Pro Tier):')
-        console.log('   • Framework-aware dependency grouping')
-        console.log(
-          `   • ${Object.keys(configData.config.updates[0].groups || {}).length} dependency groups created`
-        )
-        console.log('   • Intelligent update batching (reduces PRs by 60%+)')
-        console.log('   • GitHub Actions dependency monitoring')
-      }
-    } else {
-      console.log(
-        '\n🔍 Setting up basic dependency monitoring (Free Tier)...\n'
-      )
-
-      const dependabotConfig = generateBasicDependabotConfig({
-        projectPath,
-        schedule: 'weekly',
-      })
-
-      if (dependabotConfig) {
-        writeBasicDependabotConfig(dependabotConfig, dependabotPath)
-        console.log('✅ Created .github/dependabot.yml')
-      }
-
-      console.log('\n🎉 Basic dependency monitoring setup complete!')
-      console.log('\n📋 What was added (Free Tier):')
-      console.log('   • Basic Dependabot configuration for npm packages')
-      console.log('   • Weekly dependency updates on Monday 9am')
-      console.log('   • GitHub Actions dependency monitoring')
-
-      // Show upgrade message for premium features
-      console.log('\n🔒 Premium features now available:')
-      console.log(
-        '   ✅ Framework-aware package grouping (React, Vue, Angular)'
-      )
-      console.log('   • Coming soon: Multi-language support (Python, Rust, Go)')
-      console.log('   • Planned: Advanced security audit workflows')
-      console.log('   • Planned: Custom update schedules and notifications')
-
-      showUpgradeMessage('Framework-Aware Dependency Grouping')
-    }
-
-    // Auto-enable Dependabot on GitHub if token available
-    console.log('\n🔧 Attempting to enable Dependabot on GitHub...')
-    try {
-      const { setupDependabot } = require('./lib/github-api')
-      const result = await setupDependabot(projectPath, { verbose: true })
-
-      if (result.success) {
-        console.log('✅ Dependabot alerts and security updates enabled!')
-      } else if (result.errors.length > 0) {
-        console.log('⚠️  Could not auto-enable Dependabot:')
-        result.errors.forEach(err => console.log(`   • ${err}`))
-        console.log('\n💡 Manual steps needed:')
-        console.log('   • Go to GitHub repo → Settings → Code security')
-        console.log(
-          '   • Enable "Dependabot alerts" and "Dependabot security updates"'
-        )
-      }
-    } catch (error) {
-      console.log('⚠️  Could not auto-enable Dependabot:', error.message)
-      console.log('\n💡 Manual steps:')
-      console.log('   • Enable Dependabot in GitHub repo settings')
-    }
-
-    console.log('\n💡 Next steps:')
-    console.log('   • Review and commit .github/dependabot.yml')
-    console.log(
-      '   • Dependabot will start monitoring weekly for dependency updates'
-    )
-  }
+  // Note: handleValidationCommands, handleDependencyMonitoring, detectPythonProject,
+  // detectRustProject, detectRubyProject are now imported from ./lib/commands
 
   // Handle license status command
   if (isLicenseStatusMode) {
@@ -964,6 +807,83 @@ HELP:
     })()
   }
 
+  // Handle pre-launch validation setup command
+  if (isPrelaunchMode) {
+    return (async () => {
+      try {
+        const projectPath = process.cwd()
+        const PackageJson = checkNodeVersionAndLoadPackageJson()
+        const pkgJson = await PackageJson.load(projectPath)
+        const license = getLicenseInfo()
+        const isPro =
+          license.tier === 'PRO' ||
+          license.tier === 'TEAM' ||
+          license.tier === 'ENTERPRISE'
+
+        console.log('\n📋 Setting up pre-launch validation suite...\n')
+        console.log(`   License tier: ${license.tier.toUpperCase()}`)
+
+        // Check feature availability
+        if (!hasFeature('prelaunchValidation')) {
+          console.error('❌ Pre-launch validation requires a valid license.')
+          showUpgradeMessage('Pre-launch validation')
+          process.exit(1)
+        }
+
+        // Write validation scripts
+        const scriptsWritten = writeValidationScripts(projectPath)
+        console.log(`   ✅ Created ${scriptsWritten.length} validation scripts`)
+
+        // Write pa11y config
+        writePa11yConfig(projectPath)
+        console.log('   ✅ Created .pa11yci config')
+
+        // Write env validator for Pro+
+        if (isPro && hasFeature('envValidation')) {
+          writeEnvValidator(projectPath)
+          console.log('   ✅ Created env vars validator (Pro)')
+        }
+
+        // Add scripts to package.json
+        const prelaunchScripts = getPrelaunchScripts(isPro)
+        const prelaunchDeps = getPrelaunchDependencies(isPro)
+
+        // Merge scripts
+        const existingScripts = pkgJson.content.scripts || {}
+        pkgJson.update({
+          scripts: { ...existingScripts, ...prelaunchScripts },
+        })
+
+        // Merge devDependencies
+        const existingDevDeps = pkgJson.content.devDependencies || {}
+        pkgJson.update({
+          devDependencies: { ...existingDevDeps, ...prelaunchDeps },
+        })
+
+        await pkgJson.save()
+
+        console.log('\n✅ Pre-launch validation setup complete!\n')
+        console.log('Available scripts:')
+        console.log('  npm run validate:sitemap   - Check sitemap.xml')
+        console.log('  npm run validate:robots    - Check robots.txt')
+        console.log('  npm run validate:meta      - Check meta tags')
+        console.log('  npm run validate:links     - Check for broken links')
+        console.log('  npm run validate:a11y      - Run accessibility audit')
+        console.log('  npm run validate:docs      - Check documentation')
+        if (isPro) {
+          console.log('  npm run validate:env       - Audit env vars (Pro)')
+        }
+        console.log('  npm run validate:prelaunch - Run all checks')
+        console.log('\n💡 Run: npm install && npm run validate:prelaunch')
+
+        process.exit(0)
+      } catch (error) {
+        console.error('Pre-launch validation setup error:', error.message)
+        process.exit(1)
+      }
+    })()
+  }
+
   // Run validation commands if requested
   if (
     isValidationMode ||
@@ -974,13 +894,152 @@ HELP:
     // Handle validation commands and exit
     return (async () => {
       try {
-        await handleValidationCommands()
+        await handleValidationCommands({
+          isConfigSecurityMode,
+          isDocsValidationMode,
+          isComprehensiveMode,
+          isValidationMode,
+          disableNpmAudit,
+          disableGitleaks,
+          disableActionlint,
+          disableMarkdownlint,
+          disableEslintSecurity,
+          allowLatestGitleaks,
+        })
       } catch (error) {
         console.error('Validation error:', error.message)
         process.exit(1)
       }
     })()
   } else {
+    /**
+     * Setup quality tools based on license tier
+     * - Lighthouse CI (Free: basic, Pro: with thresholds)
+     * - Bundle size limits (Pro only)
+     * - axe-core accessibility (Free)
+     * - Conventional commits (Free)
+     * - Coverage thresholds (Pro only)
+     */
+    async function setupQualityTools(_usesTypeScript, _packageJson) {
+      const qualitySpinner = showProgress('Setting up quality tools...')
+
+      try {
+        const projectPath = process.cwd()
+        const PackageJson = checkNodeVersionAndLoadPackageJson()
+        const pkgJson = await PackageJson.load(projectPath)
+        const addedTools = []
+
+        // Determine which features are available
+        const hasLighthouse = hasFeature('lighthouseCI')
+        const hasLighthouseThresholds = hasFeature('lighthouseThresholds')
+        const hasBundleSizeLimits = hasFeature('bundleSizeLimits')
+        const hasAxeAccessibility = hasFeature('axeAccessibility')
+        const hasConventionalCommits = hasFeature('conventionalCommits')
+        const hasCoverageThresholds = hasFeature('coverageThresholds')
+
+        // 1. Lighthouse CI - available to all, thresholds for Pro+
+        if (hasLighthouse) {
+          const lighthousePath = path.join(projectPath, 'lighthouserc.js')
+          if (!fs.existsSync(lighthousePath)) {
+            writeLighthouseConfig(projectPath, {
+              hasThresholds: hasLighthouseThresholds,
+            })
+            addedTools.push(
+              hasLighthouseThresholds
+                ? 'Lighthouse CI (with thresholds)'
+                : 'Lighthouse CI (basic)'
+            )
+          }
+        }
+
+        // 2. Bundle size limits - Pro only
+        if (hasBundleSizeLimits) {
+          if (!pkgJson.content['size-limit']) {
+            writeSizeLimitConfig(projectPath)
+            addedTools.push('Bundle size limits (size-limit)')
+          }
+        }
+
+        // 3. axe-core accessibility testing - available to all
+        if (hasAxeAccessibility) {
+          const axeTestPath = path.join(
+            projectPath,
+            'tests',
+            'accessibility.test.js'
+          )
+          if (!fs.existsSync(axeTestPath)) {
+            writeAxeTestSetup(projectPath)
+            addedTools.push('axe-core accessibility tests')
+          }
+        }
+
+        // 4. Conventional commits (commitlint) - available to all
+        if (hasConventionalCommits) {
+          const commitlintPath = path.join(projectPath, 'commitlint.config.js')
+          if (!fs.existsSync(commitlintPath)) {
+            writeCommitlintConfig(projectPath)
+            writeCommitMsgHook(projectPath)
+            addedTools.push('Conventional commits (commitlint)')
+          }
+        }
+
+        // 5. Coverage thresholds - Pro only (info message handled elsewhere)
+        if (hasCoverageThresholds) {
+          addedTools.push('Coverage thresholds (70% lines, 70% functions)')
+        }
+
+        // Add dependencies for enabled features
+        const deps = getQualityToolsDependencies({
+          lighthouse: hasLighthouse,
+          sizeLimit: hasBundleSizeLimits,
+          commitlint: hasConventionalCommits,
+          axeCore: hasAxeAccessibility,
+        })
+
+        // Add scripts for enabled features
+        const scripts = getQualityToolsScripts({
+          lighthouse: hasLighthouse,
+          sizeLimit: hasBundleSizeLimits,
+          axeCore: hasAxeAccessibility,
+          coverage: hasCoverageThresholds,
+        })
+
+        // Merge dependencies and scripts
+        pkgJson.content.devDependencies = mergeDevDependencies(
+          pkgJson.content.devDependencies || {},
+          deps
+        )
+        pkgJson.content.scripts = mergeScripts(
+          pkgJson.content.scripts || {},
+          scripts
+        )
+        await pkgJson.save()
+
+        if (addedTools.length > 0) {
+          qualitySpinner.succeed(
+            `Quality tools configured: ${addedTools.length} tools`
+          )
+          addedTools.forEach(tool => console.log(`   ✅ ${tool}`))
+
+          // Show Pro upsell for missing features
+          if (!hasBundleSizeLimits || !hasCoverageThresholds) {
+            console.log('\n💎 Upgrade to Pro for additional quality tools:')
+            if (!hasBundleSizeLimits) {
+              console.log('   • Bundle size limits (size-limit)')
+            }
+            if (!hasCoverageThresholds) {
+              console.log('   • Coverage threshold enforcement')
+            }
+          }
+        } else {
+          qualitySpinner.succeed('Quality tools already configured')
+        }
+      } catch (error) {
+        qualitySpinner.warn('Could not set up some quality tools')
+        console.warn('⚠️ Quality tools setup error:', error.message)
+      }
+    }
+
     // Normal setup flow
     async function runMainSetup() {
       // Record telemetry start event (opt-in only, fails silently)
@@ -1027,7 +1086,7 @@ HELP:
           if (!repoCheck.allowed) {
             console.error(`\n❌ ${repoCheck.reason}`)
             console.error(
-              '   Upgrade to Pro for unlimited repos: https://vibebuildlab.com/tools/qa-architect'
+              '   Upgrade to Pro for unlimited repos: https://vibebuildlab.com/qa-architect'
             )
             process.exit(1)
           }
@@ -1128,7 +1187,7 @@ HELP:
       const hasTypeScriptDependency = Boolean(
         (packageJson.devDependencies &&
           packageJson.devDependencies.typescript) ||
-          (packageJson.dependencies && packageJson.dependencies.typescript)
+        (packageJson.dependencies && packageJson.dependencies.typescript)
       )
 
       const tsconfigCandidates = ['tsconfig.json', 'tsconfig.base.json']
@@ -1199,7 +1258,17 @@ HELP:
           }
 
           return false
-        } catch {
+        } catch (error) {
+          // Silent failure fix: Log unexpected errors in debug mode
+          if (
+            process.env.DEBUG &&
+            error.code !== 'ENOENT' &&
+            error.code !== 'EACCES'
+          ) {
+            console.warn(
+              `⚠️  Could not scan ${dir} for Python files: ${error.message}`
+            )
+          }
           return false
         }
       }
@@ -1374,20 +1443,19 @@ HELP:
           })
         }
       } else {
-        // Config exists, validate it
-        // Temporarily disabled - debugging
-        // const validationResult = validateQualityConfig(qualityrcPath)
-        // if (!validationResult.valid) {
-        //   console.warn(
-        //     '⚠️  Warning: Existing .qualityrc.json has validation issues:'
-        //   )
-        //   validationResult.errors.forEach(error => {
-        //     console.warn(`   - ${error}`)
-        //   })
-        //   console.warn(
-        //     '   Setup will continue, but you may want to fix these issues.\n'
-        //   )
-        // }
+        // TD8 fix: Re-enabled validation (was disabled for debugging)
+        const validationResult = validateQualityConfig(qualityrcPath)
+        if (!validationResult.valid) {
+          console.warn(
+            '⚠️  Warning: Existing .qualityrc.json has validation issues:'
+          )
+          validationResult.errors.forEach(error => {
+            console.warn(`   - ${error}`)
+          })
+          console.warn(
+            '   Setup will continue, but you may want to fix these issues.\n'
+          )
+        }
       }
 
       // Load and merge templates (custom + defaults)
@@ -1714,7 +1782,7 @@ try {
 const CAP = 50
 if (usage.prePushRuns >= CAP) {
 console.error('❌ Free tier limit reached: ' + usage.prePushRuns + '/' + CAP + ' pre-push runs this month')
-  console.error('   Upgrade to Pro, Team, or Enterprise: https://vibebuildlab.com/tools/qa-architect')
+  console.error('   Upgrade to Pro, Team, or Enterprise: https://vibebuildlab.com/qa-architect')
   process.exit(1)
 }
 
@@ -2002,6 +2070,9 @@ echo "✅ Pre-push validation passed!"
         showUpgradeMessage('Smart Test Strategy')
       }
 
+      // Quality Tools Integration
+      await setupQualityTools(usesTypeScript, packageJson)
+
       // Generate placeholder test file with helpful documentation
       const testsDir = path.join(process.cwd(), 'tests')
       const testExtension = usesTypeScript ? 'ts' : 'js'