npm - javi-forge - Versions diffs - 1.0.0 → 1.2.0 - Mend

javi-forge 1.0.0 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/ai-config/skills/docs/api-documentation/SKILL.md +293 -0
package/ai-config/skills/docs/docs-spring/SKILL.md +377 -0
package/ai-config/skills/docs/mustache-templates/SKILL.md +190 -0
package/ai-config/skills/docs/technical-docs/SKILL.md +447 -0
package/ci-local/ci-local.sh +37 -3
package/ci-local/docker/node.Dockerfile +7 -0
package/ci-local/hooks/commit-msg +0 -0
package/ci-local/hooks/pre-commit +10 -155
package/ci-local/hooks/pre-push +12 -29
package/ci-local/install.sh +0 -0
package/dist/commands/ci.d.ts +33 -0
package/dist/commands/ci.js +341 -0
package/dist/commands/init.js +5 -0
package/dist/index.js +39 -5
package/dist/lib/docker.d.ts +43 -0
package/dist/lib/docker.js +223 -0
package/dist/ui/CI.d.ts +9 -0
package/dist/ui/CI.js +91 -0
package/lib/common.sh +183 -0
package/modules/obsidian-brain/.obsidian/plugins/dataview/data.json +25 -0
package/modules/obsidian-brain/.obsidian/plugins/obsidian-kanban/data.json +29 -0
package/modules/obsidian-brain/.obsidian/plugins/templater-obsidian/data.json +18 -0
package/package.json +20 -12

package/ci-local/hooks/pre-commit CHANGED Viewed

@@ -1,162 +1,17 @@
 #!/bin/bash
 # =============================================================================
-# PRE-COMMIT: Universal quick checks before commit
+# PRE-COMMIT: Quick CI check via javi-forge
 # =============================================================================
-# Detecta el stack y ejecuta lint + compile rapido
-# Tiempo: ~30-60 segundos
+# Requires: npm install -g javi-forge
+# To skip:  git commit --no-verify
 # =============================================================================
 set -e
-# Encontrar directorio .ci-local
-HOOK_DIR="$(cd "$(dirname "$0")" && pwd)"
-if [[ -d "$HOOK_DIR/../.ci-local" ]]; then
-    CI_LOCAL_DIR="$HOOK_DIR/../.ci-local"
-elif [[ -d "$(git rev-parse --show-toplevel)/.ci-local" ]]; then
-    CI_LOCAL_DIR="$(git rev-parse --show-toplevel)/.ci-local"
-else
-    echo "Warning: .ci-local not found, skipping pre-commit checks"
-    exit 0
-fi
-PROJECT_DIR="$(dirname "$CI_LOCAL_DIR")"
-# Source shared library for colors and detect_stack
-source "$CI_LOCAL_DIR/../lib/common.sh"
-echo -e "${YELLOW}[pre-commit] Running quick checks...${NC}"
-# =============================================================================
-# CHECK: No AI attribution in staged files
-# =============================================================================
-echo -e "${YELLOW}[1/3] Checking for AI attribution...${NC}"
-# Patrones prohibidos (case insensitive)
-AI_PATTERNS=(
-    "co-authored-by:.*claude"
-    "co-authored-by:.*anthropic"
-    "co-authored-by:.*gpt"
-    "co-authored-by:.*openai"
-    "co-authored-by:.*copilot"
-    "co-authored-by:.*gemini"
-    "co-authored-by:.*\bai\b"
-    "made by claude"
-    "made by gpt"
-    "made by ai"
-    "generated by claude"
-    "generated by gpt"
-    "generated by ai"
-    "generated with claude"
-    "generated with ai"
-    "written by claude"
-    "written by ai"
-    "created by claude"
-    "created by ai"
-    "assisted by claude"
-    "assisted by ai"
-    "with help from claude"
-    "claude code"
-    "made by anthropic"
-    "powered by anthropic"
-    "created by anthropic"
-    "made by openai"
-    "powered by openai"
-    "created by openai"
-    "@anthropic.com"
-    "@openai.com"
-)
-# Check actual staged content using git show :0:file
-STAGED_FILES=$(git diff --cached --name-only --diff-filter=ACM | grep -vE '\.(png|jpg|jpeg|gif|ico|woff|ttf|eot|svg|lock)$' || true)
-if [[ -n "$STAGED_FILES" ]]; then
-    for pattern in "${AI_PATTERNS[@]}"; do
-        while IFS= read -r file; do
-            [[ -z "$file" ]] && continue
-            if git show ":0:$file" 2>/dev/null | grep -iqE "$pattern"; then
-                echo -e "${RED}[BLOCKED] AI attribution found in staged content: $file${NC}"
-                echo -e "${RED}  Pattern matched: $pattern${NC}"
-                git show ":0:$file" | grep -inE "$pattern" | head -3 | while IFS= read -r line; do
-                    echo -e "${RED}    $line${NC}"
-                done
-                echo ""
-                echo -e "${YELLOW}Remove AI attribution before committing.${NC}"
-                exit 1
-            fi
-        done <<< "$STAGED_FILES"
-    done
-    echo -e "${GREEN}  No AI attribution found${NC}"
-fi
-# Semgrep security scan - native or Docker fallback
-SEMGREP_CMD=""
-SEMGREP_MODE=""
-if command -v semgrep &> /dev/null; then
-    SEMGREP_CMD="native"
-    SEMGREP_MODE="native"
-elif command -v docker &> /dev/null && docker info &> /dev/null 2>&1; then
-    SEMGREP_CMD="docker"
-    SEMGREP_MODE="Docker"
-fi
-if [[ -n "$SEMGREP_CMD" ]]; then
-    echo -e "${YELLOW}[2/3] Security scan (Semgrep via $SEMGREP_MODE)...${NC}"
-    STAGED_FILES=$(git diff --cached --name-only --diff-filter=ACM | grep -E '\.(java|kt|js|ts|py|go|rs)$' || true)
-    if [[ -n "$STAGED_FILES" ]]; then
-        if [[ "$SEMGREP_CMD" == "native" ]]; then
-            echo "$STAGED_FILES" | tr '\n' '\0' | xargs -0 semgrep --config=.ci-local/semgrep.yml --severity=ERROR --quiet 2>/dev/null || {
-                echo -e "${RED}Semgrep found issues${NC}"
-                exit 1
-            }
-        else
-            # Pipe file list via stdin into the container where xargs feeds it to semgrep
-            echo "$STAGED_FILES" | docker run --rm -i -v "${PROJECT_DIR}:/src" -w /src returntocorp/semgrep \
-                sh -c 'xargs semgrep --config=/src/.ci-local/semgrep.yml --severity=ERROR --quiet' 2>/dev/null || {
-                echo -e "${RED}Semgrep found issues${NC}"
-                exit 1
-            }
-        fi
-        echo -e "${GREEN}Security OK${NC}"
-    else
-        echo -e "${GREEN}No files to scan${NC}"
-    fi
-else
-    echo -e "${YELLOW}[2/3] Semgrep not available, skipping (install semgrep or use Docker)${NC}"
-fi
-# Quick compile/lint basado en el stack
-echo -e "${YELLOW}[3/3] Quick compile check...${NC}"
-cd "$PROJECT_DIR"
-# Use shared stack detection from lib/common.sh
-detect_stack
-case "$STACK_TYPE" in
-    java-gradle)
-        ./gradlew spotlessCheck classes --no-daemon -q 2>/dev/null || {
-            echo -e "${RED}Gradle check failed. Run: ./gradlew spotlessApply${NC}"
-            exit 1
-        }
-        ;;
-    java-maven)
-        ./mvnw compile -q 2>/dev/null || exit 1
-        ;;
-    node)
-        if [[ "$BUILD_TOOL" == "pnpm" ]]; then
-            pnpm lint --silent 2>/dev/null || exit 1
-        elif [[ "$BUILD_TOOL" == "yarn" ]]; then
-            yarn lint --silent 2>/dev/null || exit 1
-        else
-            npm run lint --silent 2>/dev/null || exit 1
-        fi
-        ;;
-    rust)
-        cargo check --quiet 2>/dev/null || exit 1
-        ;;
-    go)
-        go build ./... 2>/dev/null || exit 1
-        ;;
-esac
-echo -e "${GREEN}Compile OK${NC}"
-echo -e "${GREEN}[pre-commit] All checks passed!${NC}"
+echo "PRE-COMMIT: Running quick check..."
+javi-forge ci --quick --no-security --no-ghagga || {
+    echo ""
+    echo "Quick check FAILED — Fix the issues above before committing."
+    echo "To skip: git commit --no-verify"
+    exit 1
+}

package/ci-local/hooks/pre-push CHANGED Viewed

@@ -1,41 +1,24 @@
 #!/bin/bash
 # =============================================================================
-# PRE-PUSH: Full CI simulation before push
+# PRE-PUSH: Full CI simulation via javi-forge
 # =============================================================================
-# Corre tests en Docker identico al CI
-# Si pasa aca -> pasa en GitHub Actions / GitLab CI
+# Requires: npm install -g javi-forge
+# To skip:  git push --no-verify
 # =============================================================================
 set -e
-# Encontrar directorio .ci-local
-if [[ -d "$(git rev-parse --show-toplevel)/.ci-local" ]]; then
-    CI_LOCAL_DIR="$(git rev-parse --show-toplevel)/.ci-local"
-else
-    echo "Warning: .ci-local not found, skipping pre-push CI simulation"
-    exit 0
-fi
-# Source shared library for colors
-source "$CI_LOCAL_DIR/../lib/common.sh"
-echo -e "${BLUE}PRE-PUSH: CI Simulation${NC}"
-# Verificar Docker
-if ! docker info &> /dev/null; then
-    echo -e "${RED}Docker is not running.${NC}"
-    echo -e "${YELLOW}  Start Docker or use: git push --no-verify${NC}"
+# Verify Docker is running
+if ! docker info &>/dev/null; then
+    echo "PRE-PUSH: Docker is not running."
+    echo "  Start Docker or use: git push --no-verify"
     exit 1
 fi
-# Ejecutar CI local
-"$CI_LOCAL_DIR/ci-local.sh" full || {
-    echo -e ""
-    echo -e "${RED}CI SIMULATION FAILED - Push aborted${NC}"
-    echo -e "${RED}Fix the issues above before pushing.${NC}"
-    echo -e "${RED}To skip: git push --no-verify${NC}"
+echo "PRE-PUSH: Running CI simulation..."
+javi-forge ci || {
+    echo ""
+    echo "CI FAILED — Push aborted. Fix the issues above before pushing."
+    echo "To skip: git push --no-verify"
     exit 1
 }
-echo -e ""
-echo -e "${GREEN}CI Simulation PASSED - Safe to push!${NC}"

package/ci-local/install.sh CHANGED Viewed

File without changes

package/dist/commands/ci.d.ts ADDED Viewed

@@ -0,0 +1,33 @@
+import type { Stack } from '../types/index.js';
+export type CIMode = 'full' | 'quick' | 'shell' | 'detect';
+export interface CIOptions {
+    projectDir?: string;
+    mode?: CIMode;
+    /** Skip Docker entirely — run commands natively */
+    noDocker?: boolean;
+    /** Skip GHAGGA review step */
+    noGhagga?: boolean;
+    /** Skip Semgrep security scan */
+    noSecurity?: boolean;
+    /** Timeout in seconds for each Docker step (default: 600) */
+    timeout?: number;
+}
+export type CIStepStatus = 'pending' | 'running' | 'done' | 'error' | 'skipped';
+export interface CIStep {
+    id: string;
+    label: string;
+    status: CIStepStatus;
+    detail?: string;
+}
+export type CIStepCallback = (step: CIStep) => void;
+export interface CIStackInfo {
+    stackType: Stack;
+    buildTool: string;
+    javaVersion: string;
+    lintCmd: string | null;
+    compileCmd: string | null;
+    testCmd: string | null;
+}
+export declare function detectCIStack(projectDir: string): Promise<CIStackInfo>;
+export declare function runCI(options: CIOptions, onStep: CIStepCallback): Promise<void>;
+//# sourceMappingURL=ci.d.ts.map

package/dist/commands/ci.js ADDED Viewed

@@ -0,0 +1,341 @@
+import { execFile, spawn } from 'child_process';
+import { promisify } from 'util';
+import fs from 'fs-extra';
+import path from 'path';
+import { isDockerAvailable, ensureImage, runInContainer, openShell } from '../lib/docker.js';
+const execFileAsync = promisify(execFile);
+// =============================================================================
+// Stack detection
+// =============================================================================
+export async function detectCIStack(projectDir) {
+    let stackType = 'node';
+    let buildTool = 'npm';
+    let javaVersion = '21';
+    // Java Gradle
+    if (await fs.pathExists(path.join(projectDir, 'build.gradle.kts')) ||
+        await fs.pathExists(path.join(projectDir, 'build.gradle'))) {
+        stackType = 'java-gradle';
+        buildTool = 'gradle';
+        // Try to read java version from build files
+        const ktsPath = path.join(projectDir, 'build.gradle.kts');
+        const gradlePath = path.join(projectDir, 'build.gradle');
+        if (await fs.pathExists(ktsPath)) {
+            const content = await fs.readFile(ktsPath, 'utf-8');
+            const match = content.match(/JavaLanguageVersion\.of\((\d+)\)/);
+            if (match?.[1])
+                javaVersion = match[1];
+        }
+        else if (await fs.pathExists(gradlePath)) {
+            const content = await fs.readFile(gradlePath, 'utf-8');
+            const match = content.match(/sourceCompatibility\s*=\s*['"]*(\d+)/);
+            if (match?.[1])
+                javaVersion = match[1];
+        }
+    }
+    // Java Maven
+    else if (await fs.pathExists(path.join(projectDir, 'pom.xml'))) {
+        stackType = 'java-maven';
+        buildTool = 'mvn';
+    }
+    // Node
+    else if (await fs.pathExists(path.join(projectDir, 'package.json'))) {
+        stackType = 'node';
+        if (await fs.pathExists(path.join(projectDir, 'pnpm-lock.yaml')))
+            buildTool = 'pnpm';
+        else if (await fs.pathExists(path.join(projectDir, 'yarn.lock')))
+            buildTool = 'yarn';
+        else
+            buildTool = 'npm';
+    }
+    // Go
+    else if (await fs.pathExists(path.join(projectDir, 'go.mod'))) {
+        stackType = 'go';
+        buildTool = 'go';
+    }
+    // Rust
+    else if (await fs.pathExists(path.join(projectDir, 'Cargo.toml'))) {
+        stackType = 'rust';
+        buildTool = 'cargo';
+    }
+    // Python
+    else if (await fs.pathExists(path.join(projectDir, 'pyproject.toml')) ||
+        await fs.pathExists(path.join(projectDir, 'requirements.txt')) ||
+        await fs.pathExists(path.join(projectDir, 'setup.py'))) {
+        stackType = 'python';
+        if (await fs.pathExists(path.join(projectDir, 'uv.lock')))
+            buildTool = 'uv';
+        else if (await fs.pathExists(path.join(projectDir, 'poetry.lock')))
+            buildTool = 'poetry';
+        else
+            buildTool = 'pip';
+    }
+    // Build CI commands per stack
+    const { lintCmd, compileCmd, testCmd } = await buildCICommands(stackType, buildTool, projectDir);
+    return { stackType, buildTool, javaVersion, lintCmd, compileCmd, testCmd };
+}
+async function buildCICommands(stack, buildTool, projectDir) {
+    switch (stack) {
+        case 'java-gradle':
+            return {
+                lintCmd: './gradlew spotlessCheck --no-daemon',
+                compileCmd: './gradlew classes testClasses --no-daemon',
+                testCmd: './gradlew test --no-daemon',
+            };
+        case 'java-maven':
+            return {
+                lintCmd: './mvnw spotless:check',
+                compileCmd: './mvnw compile test-compile',
+                testCmd: './mvnw test',
+            };
+        case 'node': {
+            const pkgPath = path.join(projectDir, 'package.json');
+            let pkgContent = '';
+            try {
+                pkgContent = await fs.readFile(pkgPath, 'utf-8');
+            }
+            catch { /* no package.json */ }
+            // Clean dist/ before build to avoid permission issues from prior Docker builds
+            const buildPrefix = 'rm -rf dist/ && ';
+            return {
+                lintCmd: pkgContent.includes('"lint"') ? `${buildTool} run lint` : null,
+                compileCmd: pkgContent.includes('"build"') ? `${buildPrefix}${buildTool} run build` : null,
+                testCmd: pkgContent.includes('"test"') ? `${buildTool} ${buildTool === 'npm' ? 'test' : 'run test'}` : null,
+            };
+        }
+        case 'python':
+            return {
+                lintCmd: 'ruff check . && { pylint **/*.py 2>/dev/null || true; }',
+                compileCmd: null,
+                testCmd: 'pytest',
+            };
+        case 'go':
+            return {
+                lintCmd: 'golangci-lint run',
+                compileCmd: 'go build ./...',
+                testCmd: 'go test ./...',
+            };
+        case 'rust':
+            return {
+                lintCmd: 'cargo clippy -- -D warnings',
+                compileCmd: 'cargo build',
+                testCmd: 'cargo test',
+            };
+        default:
+            return { lintCmd: null, compileCmd: null, testCmd: null };
+    }
+}
+// =============================================================================
+// GHAGGA check
+// =============================================================================
+async function isGhaggaAvailable() {
+    try {
+        await execFileAsync('ghagga', ['--version'], { timeout: 3000 });
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+// =============================================================================
+// Main CI runner
+// =============================================================================
+function report(onStep, id, label, status, detail) {
+    onStep({ id, label, status, detail });
+}
+export async function runCI(options, onStep) {
+    const { projectDir = process.cwd(), mode = 'full', noDocker = false, noGhagga = false, noSecurity = false, timeout = 600, } = options;
+    // ── Detect stack ────────────────────────────────────────────────────────────
+    const stepDetect = 'detect';
+    report(onStep, stepDetect, 'Detecting stack', 'running');
+    let stackInfo;
+    try {
+        stackInfo = await detectCIStack(projectDir);
+        report(onStep, stepDetect, `Stack: ${stackInfo.stackType} (${stackInfo.buildTool})`, 'done');
+    }
+    catch (e) {
+        report(onStep, stepDetect, 'Detecting stack', 'error', String(e));
+        throw e;
+    }
+    // ── Detect mode ─────────────────────────────────────────────────────────────
+    if (mode === 'detect')
+        return;
+    // ── Shell mode ──────────────────────────────────────────────────────────────
+    if (mode === 'shell') {
+        if (noDocker) {
+            report(onStep, 'shell', 'Shell', 'error', '--shell requires Docker');
+            throw new Error('--shell requires Docker');
+        }
+        report(onStep, 'docker-image', 'Building Docker image', 'running');
+        try {
+            await ensureImage({ stack: stackInfo.stackType, javaVersion: stackInfo.javaVersion });
+            report(onStep, 'docker-image', 'Docker image ready', 'done');
+        }
+        catch (e) {
+            report(onStep, 'docker-image', 'Building Docker image', 'error', String(e));
+            throw e;
+        }
+        await openShell(projectDir);
+        return;
+    }
+    // ── Check Docker ─────────────────────────────────────────────────────────────
+    if (!noDocker) {
+        const stepDocker = 'docker-check';
+        report(onStep, stepDocker, 'Checking Docker', 'running');
+        const dockerOk = await isDockerAvailable();
+        if (!dockerOk) {
+            report(onStep, stepDocker, 'Docker not available', 'error', 'Start Docker or use --no-docker');
+            throw new Error('Docker is not available');
+        }
+        report(onStep, stepDocker, 'Docker available', 'done');
+        // Build image
+        const stepImage = 'docker-image';
+        report(onStep, stepImage, `Building image for ${stackInfo.stackType}`, 'running');
+        try {
+            await ensureImage({ stack: stackInfo.stackType, javaVersion: stackInfo.javaVersion });
+            report(onStep, stepImage, 'Docker image ready', 'done');
+        }
+        catch (e) {
+            report(onStep, stepImage, 'Building Docker image', 'error', String(e));
+            throw e;
+        }
+    }
+    // ── Lint ─────────────────────────────────────────────────────────────────────
+    if (stackInfo.lintCmd) {
+        const stepLint = 'lint';
+        report(onStep, stepLint, `Lint: ${stackInfo.lintCmd}`, 'running');
+        try {
+            await runStep(stackInfo.lintCmd, projectDir, noDocker, timeout);
+            report(onStep, stepLint, 'Lint passed', 'done');
+        }
+        catch (e) {
+            report(onStep, stepLint, 'Lint failed', 'error', String(e));
+            throw e;
+        }
+    }
+    // ── Compile ──────────────────────────────────────────────────────────────────
+    if (stackInfo.compileCmd) {
+        const stepCompile = 'compile';
+        report(onStep, stepCompile, `Compile: ${stackInfo.compileCmd}`, 'running');
+        try {
+            await runStep(stackInfo.compileCmd, projectDir, noDocker, timeout);
+            report(onStep, stepCompile, 'Compile passed', 'done');
+        }
+        catch (e) {
+            report(onStep, stepCompile, 'Compile failed', 'error', String(e));
+            throw e;
+        }
+    }
+    // ── Test (full mode only) ────────────────────────────────────────────────────
+    if (mode === 'full' && stackInfo.testCmd) {
+        const stepTest = 'test';
+        report(onStep, stepTest, `Test: ${stackInfo.testCmd}`, 'running');
+        try {
+            await runStep(stackInfo.testCmd, projectDir, noDocker, timeout);
+            report(onStep, stepTest, 'Tests passed', 'done');
+        }
+        catch (e) {
+            report(onStep, stepTest, 'Tests failed', 'error', String(e));
+            throw e;
+        }
+    }
+    // ── Security scan (full mode only) ──────────────────────────────────────────
+    if (mode === 'full' && !noSecurity) {
+        const stepSecurity = 'security';
+        const semgrepAvailable = await isSemgrepAvailable();
+        if (semgrepAvailable) {
+            report(onStep, stepSecurity, 'Security scan (Semgrep)', 'running');
+            try {
+                await runSemgrep(projectDir);
+                report(onStep, stepSecurity, 'Security scan passed', 'done');
+            }
+            catch (e) {
+                report(onStep, stepSecurity, 'Security scan failed', 'error', String(e));
+                throw e;
+            }
+        }
+        else {
+            report(onStep, stepSecurity, 'Security scan', 'skipped', 'Semgrep not available — install semgrep or Docker');
+        }
+    }
+    // ── GHAGGA review (full mode only) ──────────────────────────────────────────
+    if (mode === 'full' && !noGhagga) {
+        const stepGhagga = 'ghagga';
+        const ghagga = await isGhaggaAvailable();
+        if (ghagga) {
+            report(onStep, stepGhagga, 'GHAGGA review', 'running');
+            try {
+                await runGhagga(projectDir);
+                report(onStep, stepGhagga, 'GHAGGA review passed', 'done');
+            }
+            catch (e) {
+                report(onStep, stepGhagga, 'GHAGGA review failed', 'error', String(e));
+                throw e;
+            }
+        }
+        else {
+            report(onStep, stepGhagga, 'GHAGGA review', 'skipped', 'ghagga not installed');
+        }
+    }
+}
+// =============================================================================
+// Step runners
+// =============================================================================
+async function runStep(command, projectDir, noDocker, timeout) {
+    if (noDocker) {
+        // Run natively
+        await new Promise((resolve, reject) => {
+            const proc = spawn('bash', ['-c', command], {
+                cwd: projectDir,
+                stdio: 'inherit',
+                env: { ...process.env, CI: 'true' },
+            });
+            proc.on('close', code => code === 0 ? resolve() : reject(new Error(`Command failed with code ${code}`)));
+            proc.on('error', reject);
+        });
+    }
+    else {
+        const result = await runInContainer({
+            projectDir,
+            command: `cd /home/runner/work && ${command}`,
+            timeout,
+            stream: true,
+        });
+        if (result.exitCode !== 0) {
+            throw new Error(`Command failed with exit code ${result.exitCode}`);
+        }
+    }
+}
+async function isSemgrepAvailable() {
+    try {
+        await execFileAsync('semgrep', ['--version'], { timeout: 3000 });
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+async function runSemgrep(projectDir) {
+    // Look for semgrep config in project or use auto
+    const semgrepConfig = await fs.pathExists(path.join(projectDir, '.semgrep.yml'))
+        ? path.join(projectDir, '.semgrep.yml')
+        : 'auto';
+    await new Promise((resolve, reject) => {
+        const proc = spawn('semgrep', ['--config', semgrepConfig, '--severity', 'ERROR', '--quiet', '.'], {
+            cwd: projectDir,
+            stdio: 'inherit',
+        });
+        proc.on('close', code => code === 0 ? resolve() : reject(new Error(`Semgrep found issues (exit ${code})`)));
+        proc.on('error', reject);
+    });
+}
+async function runGhagga(projectDir) {
+    await new Promise((resolve, reject) => {
+        const proc = spawn('ghagga', ['review', '--plain', '--exit-on-issues'], {
+            cwd: projectDir,
+            stdio: 'inherit',
+        });
+        proc.on('close', code => code === 0 ? resolve() : reject(new Error(`GHAGGA review found issues (exit ${code})`)));
+        proc.on('error', reject);
+    });
+}
+//# sourceMappingURL=ci.js.map

package/dist/commands/init.js CHANGED Viewed

@@ -49,6 +49,11 @@ export async function initProject(options, onStep) {
                 // Set core.hooksPath to ci-local/hooks
                 const hooksDir = path.join(ciLocalDest, 'hooks');
                 if (await fs.pathExists(hooksDir)) {
+                    // Ensure hooks are executable
+                    const hookFiles = await fs.readdir(hooksDir);
+                    for (const hook of hookFiles) {
+                        await fs.chmod(path.join(hooksDir, hook), 0o755);
+                    }
                     await execFileAsync('git', ['config', 'core.hooksPath', 'ci-local/hooks'], { cwd: projectDir });
                 }
             }