create-template-html-css 1.0.0

package/CONTRIBUTING.md

@@ -0,0 +1,62 @@
+# Contributing to Create Template HTML/CSS
+
+תודה שאתה מעוניין לתרום לפרויקט! 🎉
+
+## כיצד לתרום
+
+### 1. Fork הפרויקט
+Fork את הריפו ללקוח GitHub שלך
+
+### 2. Clone את הפרויקט
+```bash
+git clone https://github.com/YOUR_USERNAME/create-template-html-css.git
+cd create-template-html-css
+```
+
+### 3. התקן תלויות
+```bash
+npm install
+```
+
+### 4. צור branch חדש
+```bash
+git checkout -b feature/amazing-feature
+```
+
+### 5. בצע שינויים
+עשה את השינויים שלך בקוד
+
+### 6. Commit
+```bash
+git add .
+git commit -m "Add some amazing feature"
+```
+
+### 7. Push
+```bash
+git push origin feature/amazing-feature
+```
+
+### 8. צור Pull Request
+פתח Pull Request ב-GitHub
+
+## הוספת טמפלייט חדש
+
+1. צור תיקייה חדשה תחת `templates/`
+2. הוסף את הקבצים:
+   - `index.html`
+   - `style.css`
+   - `script.js` (אופציונלי)
+3. עדכן את `bin/cli.js` להוסיף את הטמפלייט לרשימה
+4. בדוק שהטמפלייט עובד
+5. עדכן את README.md
+
+## קווי דרך
+
+- השתמש בעברית או אנגלית
+- וודא שהקוד נקי ומתועד
+- בדוק שהכל עובד לפני שליחה
+- השתמש בעיצוב responsive
+- הוסף הערות בקוד
+
+תודה! ❤️

package/INSERT-DEMO.md

@@ -0,0 +1,142 @@
+# Insert Feature Demo
+
+## How to Use the Insert Command
+
+The `insert` command allows you to add pre-styled components to your existing HTML pages without creating new projects.
+
+## Example Usage
+
+### 1. Basic Usage
+
+```bash
+npm run insert
+```
+
+Follow the interactive prompts:
+1. **Enter path to your HTML file**: `index.html`
+2. **Choose component**: Button, Card, Form, Navigation, Modal, Footer, or Hero
+3. **CSS mode**: Inline, Separate file, or Skip
+4. **JS mode**: Inline, Separate file, or Skip
+
+### 2. Real Example
+
+Let's say you have this HTML file:
+
+**index.html (before):**
+```html
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>My Website</title>
+</head>
+<body>
+    <h1>Welcome to My Site</h1>
+    <p>This is my existing content.</p>
+</body>
+</html>
+```
+
+Run the command:
+```bash
+npm run insert
+# Path: index.html
+# Component: Button
+# CSS: Inline
+# JS: Inline
+```
+
+**index.html (after):**
+```html
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>My Website</title>
+    <style>
+        /* BUTTON Component Styles */
+        .btn {
+            padding: 12px 30px;
+            /* ... full button styles ... */
+        }
+    </style>
+</head>
+<body>
+    <h1>Welcome to My Site</h1>
+    <p>This is my existing content.</p>
+    
+    <!-- BUTTON Component -->
+    <div class="container">
+        <button class="btn btn-primary">Click Here</button>
+        <!-- ... all button variations ... -->
+    </div>
+    
+    <script>
+        // BUTTON Component Script
+        document.querySelectorAll('.btn').forEach(button => {
+            // ... button functionality ...
+        });
+    </script>
+</body>
+</html>
+```
+
+### 3. Separate Files Example
+
+If you choose "Separate file" for CSS and JS:
+
+```bash
+npm run insert
+# Path: products.html
+# Component: Card
+# CSS: Separate file
+# JS: Separate file
+```
+
+**Result:**
+- `products.html` - Updated with card HTML and links
+- `card-component.css` - Created with all card styles
+- `card-component.js` - Created with card functionality
+
+**products.html:**
+```html
+<head>
+    <!-- ... existing head content ... -->
+    <link rel="stylesheet" href="card-component.css">
+</head>
+<body>
+    <!-- ... existing content ... -->
+    
+    <!-- CARD Component -->
+    <div class="cards-grid">
+        <!-- ... card HTML ... -->
+    </div>
+    
+    <script src="card-component.js"></script>
+</body>
+```
+
+## Benefits
+
+✅ **No manual copy-paste** - Components are automatically inserted  
+✅ **Flexible integration** - Choose inline or separate files  
+✅ **Safe insertion** - HTML structure is preserved  
+✅ **Clean organization** - Components are clearly marked  
+✅ **Quick prototyping** - Add components in seconds
+
+## Tips
+
+1. **Inline mode** - Best for quick prototyping or single-use components
+2. **Separate files** - Best for reusable styles across multiple pages
+3. **Skip mode** - Use when you already have custom CSS/JS
+
+## Available Components
+
+All 7 templates are available for insertion:
+- Button - Styled button variations
+- Card - Product/content cards
+- Form - Contact/input forms
+- Navigation - Responsive navbar
+- Modal - Dialog popups
+- Footer - Page footer
+- Hero - Hero sections with CTA

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Ben Shabbat
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/QUICKSTART.md

@@ -0,0 +1,195 @@
+# Quick Start Guide 🚀
+
+## Quick Installation
+
+```bash
+# Clone the repository
+git clone https://github.com/benshabbat/create-template-html-css.git
+cd create-template-html-css
+
+# Install dependencies
+npm install
+
+# Link globally (optional)
+npm link
+```
+
+## Usage Examples
+
+### Mode 1: Create New Project
+
+Create a standalone project with HTML, CSS, and JavaScript files.
+
+#### 1. Create Styled Button
+
+```bash
+create-template create
+# or
+npm run create
+# Choose: Button
+# Name: my-awesome-button
+# JavaScript: Yes
+```
+
+**Result:**
+```
+my-awesome-button/
+├── index.html
+├── style.css
+└── script.js
+```
+
+#### 2. Create Product Card
+
+```bash
+npm run create
+# Choose: Card
+# Name: product-card
+# JavaScript: No
+```
+
+#### 3. Create Contact Form
+
+```bash
+npm run create
+# Choose: Form
+# Name: contact-form
+# JavaScript: Yes
+```
+
+### Mode 2: Insert into Existing Page
+
+Add components to your existing HTML files without creating new projects.
+
+#### 1. Add Button to Existing Page
+
+```bash
+create-template insert
+# or
+npm run insert
+# Enter path: index.html
+# Choose: Button
+# CSS: Inline (inside <style> tag)
+# JS: Inline (inside <script> tag)
+```
+
+**What happens:**
+- Button HTML is inserted before `</body>`
+- CSS is added in a `<style>` tag in the `<head>`
+- JavaScript is added in a `<script>` tag before `</body>`
+
+#### 2. Add Card with Separate Files
+
+```bash
+npm run insert
+# Enter path: products.html
+# Choose: Card
+# CSS: Separate file
+# JS: Separate file
+```
+
+**Result:**
+- Card HTML inserted into products.html
+- card-component.css created and linked
+- card-component.js created and linked
+
+#### 3. Add Navigation (Skip JS)
+
+```bash
+npm run insert
+# Enter path: about.html
+# Choose: Navigation
+# CSS: Inline
+# JS: Skip (I'll add it manually)
+```
+
+**Result:**
+- Navigation HTML inserted
+- CSS added inline
+- No JavaScript added (you can add later)
+
+### More Examples
+
+#### 4. Create Navigation Bar
+
+```bash
+create-template create
+# Choose: Navigation
+# Name: main-nav
+# JavaScript: Yes
+```
+
+#### 5. Create Modal Dialog
+
+```bash
+create-template create
+# Choose: Modal
+# Name: popup-modal
+# JavaScript: Yes
+```
+
+#### 6. Create Footer
+
+```bash
+create-template create
+# בחר: Footer
+# שם: site-footer
+# JavaScript: Yes
+```
+
+### 7. צור Hero Section
+
+```bash
+create-template create
+# בחר: Hero
+# שם: landing-hero
+# JavaScript: Yes
+```
+
+## טיפים
+
+### פתח בדפדפן
+```bash
+cd my-awesome-button
+start index.html  # Windows
+open index.html   # Mac
+xdg-open index.html  # Linux
+```
+
+### התאמה אישית
+פשוט ערוך את הקבצים שנוצרו:
+- `index.html` - שנה את התוכן
+- `style.css` - שנה את העיצוב
+- `script.js` - שנה את הפונקציונליות
+
+### שלב בפרויקט קיים
+העתק את הקבצים שנוצרו לפרויקט שלך:
+```bash
+cp -r my-awesome-button/* ../my-project/
+```
+
+## פקודות CLI
+
+```bash
+# צור טמפלייט חדש
+create-template create
+
+# הצג רשימת טמפלייטים
+create-template list
+
+# עזרה
+create-template --help
+
+# גרסה
+create-template --version
+```
+
+## צריך עזרה?
+
+- 📖 קרא את [README.md](README.md)
+- 🐛 פתח [Issue](https://github.com/benshabbat/create-template-html-css/issues)
+- 💬 שאל שאלות ב-GitHub Discussions
+
+---
+
+**Happy Coding!** 🎨✨

package/SECURITY.md

@@ -0,0 +1,95 @@
+# Security Policy
+
+## Reporting Security Issues
+
+If you discover a security vulnerability in this project, please send an email to [your-email@example.com]. All security vulnerabilities will be promptly addressed.
+
+Please do **not** report security vulnerabilities through public GitHub issues.
+
+## Security Measures
+
+### Input Validation
+- **Component Names**: Validated against a whitelist of allowed components
+- **Filename Sanitization**: Removes path traversators (../, ..\\), path separators, and dangerous characters
+- **Alphanumeric Validation**: Ensures filenames contain at least one alphanumeric character
+- **Length Validation**: Enforces maximum name length of 100 characters via CLI validation
+
+### Path Traversal Protection
+The generator implements multiple layers of protection:
+1. Component names are validated against a strict whitelist
+2. User-provided names are sanitized to remove:
+   - Path separators (`/`, `\\`)
+   - Parent directory references (`..`)
+   - Dangerous characters (`<>:"|?*`)
+3. Empty or invalid names are rejected
+
+### Dependencies
+All dependencies are regularly audited using `npm audit`. Current status:
+- ✅ No known vulnerabilities
+- All dependencies use stable, maintained versions
+
+## Dependency Versions
+- commander: ^11.1.0
+- inquirer: ^9.2.12
+- chalk: ^4.1.2
+
+## Safe Usage
+
+### Creating Templates
+```bash
+# Safe usage
+create-template create
+# Follow the prompts and provide valid names
+
+# Avoid
+- Using path separators in names (/, \\)
+- Using parent directory references (..)
+- Using empty names
+```
+
+### Security Best Practices
+1. Always use the latest version of this tool
+2. Run `npm audit` regularly
+3. Review generated files before deploying
+4. Don't expose the CLI to untrusted users
+5. Use this tool in trusted environments only
+
+## Vulnerability Response
+
+### Severity Levels
+- **Critical**: Immediate fix and patch release
+- **High**: Fix within 7 days
+- **Medium**: Fix within 30 days
+- **Low**: Fix in next planned release
+
+### Security Updates
+Security updates will be released as patch versions and clearly marked in the CHANGELOG.
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 1.x.x   | :white_check_mark: |
+
+## Code Security Features
+
+### Generator (src/generator.js)
+- Whitelist validation for component names
+- Filename sanitization function
+- Input validation before file system operations
+- Safe path joining using Node.js path module
+
+### CLI (bin/cli.js)
+- Interactive prompts with validation
+- Input length limits
+- Character validation (no path separators)
+- Error handling and user feedback
+
+## Responsible Disclosure
+
+We encourage responsible disclosure of security vulnerabilities. We commit to:
+- Acknowledge your email within 48 hours
+- Provide regular updates about our progress
+- Credit you in the security advisory (unless you prefer to remain anonymous)
+
+Thank you for helping keep this project and its users safe!