npm - decision-guardian - Versions diffs - 1.1.0 - Mend

decision-guardian 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (42) hide show

package/LICENSE +21 -0
package/README.md +792 -0
package/dist/adapters/github/actions-logger.js +88 -0
package/dist/adapters/github/comment.js +601 -0
package/dist/adapters/github/github-provider.js +260 -0
package/dist/adapters/github/health.js +56 -0
package/dist/adapters/local/console-logger.js +46 -0
package/dist/adapters/local/local-git-provider.js +247 -0
package/dist/cli/commands/check.js +134 -0
package/dist/cli/commands/init.js +58 -0
package/dist/cli/commands/template.js +70 -0
package/dist/cli/formatter.js +68 -0
package/dist/cli/index.js +12458 -0
package/dist/cli/licenses.txt +143 -0
package/dist/cli/paths.js +40 -0
package/dist/core/content-matchers.js +333 -0
package/dist/core/health.js +52 -0
package/dist/core/interfaces/index.js +2 -0
package/dist/core/interfaces/logger.js +2 -0
package/dist/core/interfaces/scm-provider.js +5 -0
package/dist/core/logger.js +20 -0
package/dist/core/matcher.js +184 -0
package/dist/core/metrics.js +87 -0
package/dist/core/parser.js +338 -0
package/dist/core/rule-evaluator.js +186 -0
package/dist/core/rule-parser.js +211 -0
package/dist/core/rule-types.js +22 -0
package/dist/core/trie.js +83 -0
package/dist/core/types.js +2 -0
package/dist/index.js +61142 -0
package/dist/licenses.txt +758 -0
package/dist/main.js +290 -0
package/dist/telemetry/payload.js +25 -0
package/dist/telemetry/privacy.js +37 -0
package/dist/telemetry/sender.js +40 -0
package/dist/version.js +7 -0
package/package.json +60 -0
package/templates/advanced-rules.md +94 -0
package/templates/api.md +70 -0
package/templates/basic.md +38 -0
package/templates/database.md +81 -0
package/templates/security.md +89 -0

package/templates/database.md ADDED Viewed

@@ -0,0 +1,81 @@
+<!-- DECISION-DB-001 -->
+## Decision: Migration Files Are Immutable
+**Status**: Active
+**Date**: 2024-03-01
+**Severity**: Critical
+**Files**:
+- `migrations/**/*`
+- `db/migrations/**/*`
+### Context
+Never modify existing migration files. Create new migrations instead. Modifying past migrations breaks deployed databases.
+---
+<!-- DECISION-DB-002 -->
+## Decision: Schema Version Lock
+**Status**: Active
+**Date**: 2024-03-15
+**Severity**: Critical
+**Files**:
+- `src/db/schema.ts`
+- `prisma/schema.prisma`
+- `drizzle/**/*.ts`
+**Rules**:
+```json
+{
+  "match": "any",
+  "conditions": [
+    {
+      "files": ["prisma/schema.prisma"],
+      "content": {
+        "mode": "regex",
+        "pattern": "@@map|@@ignore|model\\s+\\w+"
+      }
+    },
+    {
+      "files": ["src/db/schema.ts", "drizzle/**/*.ts"],
+      "content": {
+        "mode": "string",
+        "patterns": ["createTable", "dropTable", "alterTable", "addColumn", "dropColumn"]
+      }
+    }
+  ]
+}
+```
+### Context
+Schema changes must be paired with migrations and reviewed by the database team.
+---
+<!-- DECISION-DB-003 -->
+## Decision: Connection Pool Configuration
+**Status**: Active
+**Date**: 2024-04-01
+**Severity**: Warning
+**Files**:
+- `config/database.*`
+- `src/db/pool.*`
+- `.env*`
+**Rules**:
+```json
+{
+  "match": "any",
+  "conditions": [
+    {
+      "files": ["config/database.*", "src/db/pool.*"],
+      "content": {
+        "mode": "regex",
+        "pattern": "(pool_size|max_connections|min_connections|idle_timeout)\\s*[:=]",
+        "flags": "i"
+      }
+    }
+  ]
+}
+```
+### Context
+Pool configuration changes can cause production outages. Must be load-tested before deployment.

package/templates/security.md ADDED Viewed

@@ -0,0 +1,89 @@
+<!-- DECISION-SEC-001 -->
+## Decision: No Hardcoded Secrets
+**Status**: Active
+**Date**: 2024-04-01
+**Severity**: Critical
+**Files**:
+- `src/**/*.ts`
+- `src/**/*.js`
+- `config/**/*`
+**Rules**:
+```json
+{
+  "match": "any",
+  "conditions": [
+    {
+      "files": ["src/**/*.ts", "src/**/*.js", "config/**/*"],
+      "content": {
+        "mode": "regex",
+        "pattern": "(api[_-]?key|secret|password|token|private[_-]?key)\\s*[:=]\\s*['\"][^'\"]{8,}['\"]",
+        "flags": "i"
+      }
+    }
+  ]
+}
+```
+### Context
+Hardcoded secrets must never appear in source code. Use environment variables or a secrets manager.
+---
+<!-- DECISION-SEC-002 -->
+## Decision: Auth Middleware Required
+**Status**: Active
+**Date**: 2024-04-15
+**Severity**: Critical
+**Files**:
+- `src/routes/**/*.ts`
+- `src/api/**/*.ts`
+**Rules**:
+```json
+{
+  "match": "any",
+  "conditions": [
+    {
+      "files": ["src/routes/**/*.ts", "src/api/**/*.ts"],
+      "content": {
+        "mode": "string",
+        "patterns": ["router.get(", "router.post(", "router.put(", "router.delete(", "app.get(", "app.post("]
+      }
+    }
+  ]
+}
+```
+### Context
+All route handlers must use the authentication middleware. Changes to route files require security review.
+---
+<!-- DECISION-SEC-003 -->
+## Decision: Security-Critical Dependencies
+**Status**: Active
+**Date**: 2024-05-01
+**Severity**: Warning
+**Files**:
+- `package.json`
+- `package-lock.json`
+**Rules**:
+```json
+{
+  "match": "any",
+  "conditions": [
+    {
+      "files": ["package.json"],
+      "content": {
+        "mode": "json_path",
+        "paths": ["dependencies.jsonwebtoken", "dependencies.bcrypt", "dependencies.helmet", "dependencies.cors"]
+      }
+    }
+  ]
+}
+```
+### Context
+Changes to security-critical dependencies require extra review and testing.