nodejs-quickstart-structure 1.17.0 → 1.18.1

package/CHANGELOG.md

@@ -1,9 +1,30 @@
-# Changelog
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-All notable changes to this project will be documented in this file.
+## [1.18.1] - 2026-03-27
 
-The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
-and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+### Fixed
+- **Template Security Hardening**: Resolved 29 vulnerabilities in `package.json.ejs` by upgrading `Apollo Server`, `Jest`, and `ESLint`.
+- **Apollo Server 5 Compatibility**: Migrated GraphQL integration to use `@as-integrations/express4`, resolving breaking changes in the latest Apollo release.
+- **Surgical Security Overrides**: Implemented targeted `overrides` for `brace-expansion`, `jake`, and `micromatch`. Removed global `glob/minimatch` overrides to maintain compatibility with Jest's internal APIs while preserving a "Zero-Vulnerability" status.
+- **E2E Validated**: Verified the entire "Secure-by-Default" ecosystem via Windows E2E tests, achieving 100% pass rate.
+- **Enterprise Standards**: Synchronized all generator templates with the latest secure dependency standards across MVC and Clean Architecture.
+### Changed
+- **Readme**: Standardize Generated Project README.
+
+## [1.18.0] - 2026-03-25
+
+### Added
+- **Enterprise-Grade Security Hardening**: Integrated **Snyk (SCA)** and **SonarQube (SAST)** into the project scaffolding, providing "Big Tech" industry-standard security analysis out of the box.
+- **Automated Security Workflows**: Pre-configured CI/CD stages for security scanning across GitHub Actions, GitLab CI, and Jenkins.
+- **Pre-commit Security Gates**: Integrated **Husky** and **lint-staged** to automatically enforce code quality and security standards locally before every commit.
+- **Security Standard Enforcement**: Added a standardized `SECURITY.md` policy and automated quality gates to ensure code resilience.
+- **Comprehensive Security Guide**: Created a new documentation guide detailing the setup and operational workflows for the enterprise security features.
+
+### Changed
+- **Matrix Expansion**: Updated the CLI to support over **1,680+ project combinations** by adding a conditional security hardening layer across all CI/CD providers.
+
+### Fixed
+- **Docker Node Version**: Updated Docker node version to 22.22.2-trixie-slim
 
 ## [1.17.0] - 2026-03-23
 

package/README.md

@@ -1,135 +1,144 @@
-# Node.js Quickstart Generator
-
-[![npm version](https://img.shields.io/npm/v/nodejs-quickstart-structure.svg?style=flat-square)](https://www.npmjs.com/package/nodejs-quickstart-structure)
-[![npm total downloads](https://img.shields.io/npm/dt/nodejs-quickstart-structure.svg?style=flat-square)](https://www.npmjs.com/package/nodejs-quickstart-structure)
-[![npm monthly downloads](https://img.shields.io/npm/dm/nodejs-quickstart-structure.svg?style=flat-square)](https://www.npmjs.com/package/nodejs-quickstart-structure)
-[![License: ISC](https://img.shields.io/badge/License-ISC-blue.svg?style=flat-square)](https://opensource.org/licenses/ISC)
-
-A powerful CLI tool to scaffold production-ready Node.js microservices with built-in best practices, allowing you to choose between **MVC** or **Clean Architecture**, **JavaScript** or **TypeScript**, and your preferred database.
-
-![Demo](docs/demo.gif)
-
-## Features
-
-- **Interactive CLI**: Easy-to-use prompts to configure your project.
-- **Multiple Architectures**: Supports both **MVC** (Model-View-Controller) and **Clean Architecture**.
-- **Language Support**: Choose between **JavaScript** and **TypeScript**.
-- **Database Integration**: Pre-configured setup for **MySQL**, **PostgreSQL**, or **MongoDB**.
-- **Communication Flow**: Scaffold APIs using **REST**, **GraphQL** (with Apollo Server), or **Kafka** (event-driven).
-- **Caching Layer**: Choose between **Redis** or built-in **Memory Cache** for data caching.
-- **Centralized Error Handling**: Every project ships with a global error handler, custom error classes and structured JSON error responses — consistent across REST & GraphQL.
-- **Dockerized**: Automatically generates `docker-compose.yml` for DB, Kafka, and Redis.
-- **Database Migrations/Schemas**: Integrated **Flyway** for SQL migrations or **Mongoose** schemas for MongoDB.
-- **Professional Standards**: Generated projects come with highly professional, industry-standard tooling.
-
-## 🌟 Why developers love this?
-
-- **Community Trusted**: Over **3,000+** projects bootstrapped within the first month.
-- **Actively Maintained**: Constant updates and optimizations (30+ versions released) based on real-world developer feedback.
-- **Resilience First**: Unlike basic boilerplates, our generated code focuses on infrastructure stability (Retry logic, Health checks, and Graceful shutdowns).
-
-## 🏆 Professional Standards (New)
-
-We don't just generate boilerplate; we generate **production-ready** foundations. Every project includes:
-
--   **🔍 Code Quality**: Pre-configured `Eslint` and `Prettier` for consistent coding standards.
--   **🛡️ Security**: Built-in `Helmet`, `HPP`, `CORS`, and Rate-Limiting middleware.
--   **🚨 Error Handling**: Centralized global error middleware with custom error classes and structured JSON responses. GraphQL uses Apollo's `formatError` hook; REST uses Express error middleware.
--   **🧪 Testing Excellence**: Integrated `Jest` and `Supertest`. Every generated project maintains **>80% Unit Test coverage** for controllers, services, and resolvers out of the box.
--   **🔄 CI/CD Integration**: Pre-configured workflows for **GitHub Actions**, **Jenkins**, and **GitLab CI**.
--   **⚓ Git Hooks**: `Husky` and `Lint-Staged` to ensure no bad code is ever committed.
--   **🤝 Reliability**: Health Checks (`/health`) with deep database pings, Infrastructure Retry Logic (handling Docker startup delays), and Graceful Shutdown workflows.
--   **🐳 DevOps**: Highly optimized **Multi-Stage Dockerfile** for small, secure production images.
--   **🚀 Deployment**: Ship confidently with an integrated **PM2 Ecosystem Configuration** for zero-downtime reloads and robust process management.
-
-## 🧩 480+ Project Combinations
-
-The CLI supports a massive number of configurations to fit your exact needs:
-
--   **240 Core Combinations**:
-    -   **MVC Architecture**: 180 variants (Languages × View Engines × Databases × Communication Patterns × Caching)
-    -   **Clean Architecture**: 60 variants (Languages × Databases × Communication Patterns × Caching)
--   **480 Total Scenarios**:
-    -   Every combination can be generated with or without (**GitHub Actions CI/CD** / **Jenkins** or **GitLab CI**), tripling the possibilities.
-    -   Every single one of these 480 scenarios is verified to be compatible with our 80% Coverage Threshold policy.
-
-For a detailed list of all supported cases, check out [docs/generateCase.md](docs/generateCase.md).
-
-## Installation
-
-You can install the tool globally directly from npm:
-
-```bash
-npm install -g nodejs-quickstart-structure
-```
-
-## Usage
-
-Once installed, simply run the following command in any directory where you want to create a new project:
-
-```bash
-nodejs-quickstart init
-```
-
-## Quick Start (Recommended)
-
-You can run the generator directly without installing it globally:
-
-```bash
-npx nodejs-quickstart-structure@latest init
-```
-
-### Configuration Options
-
-The CLI will guide you through the following steps:
-
-1.  **Project Name**: The name of the folder to create.
-2.  **Language**: `JavaScript` or `TypeScript`.
-3.  **Architecture**: `MVC` or `Clean Architecture`.
-4.  **Database**: `MySQL`, `PostgreSQL`, or `MongoDB`.
-5.  **Database Name**: The name of the initial database.
-6.  **Communication**: `REST APIs` (default), `GraphQL`, or `Kafka`.
-7.  **Caching**: `None`, `Redis`, or `Memory Cache`.
-8.  **CI/CD**: `GitHub Actions`, `Jenkins`, `GitLab CI` or `None`.
-
-## Generated Project Structure
-
-The generated project will include:
-
--   `src/`: Source code (controllers, routes, services/use-cases).
--   `src/errors/`: Custom error classes — `ApiError`, `NotFoundError`, `BadRequestError`.
--   `flyway/sql/`: SQL migration scripts (if SQL database selected).
--   `docker-compose.yml`: Services configuration for DB, Flyway, and Kafka.
--   `package.json`: Dependencies and scripts (`start`, `dev`, `build`).
--   `tsconfig.json`: (If TypeScript is selected) Type checking configuration.
-
-### Getting Started with the Generated App
-
-```bash
-cd <your-project-name>
-
-# Start infrastructure (DB, etc.)
-npm install
-
-docker-compose up
-```
-
-## ❤️ Support the Project
-
-We just hit **3,000 downloads**! If this tool helped you save hours of setup time, please consider:
-- Giving us a ⭐ on [GitHub](https://github.com/paudang/nodejs-quickstart-structure) to help others find it.
-- Following the [Medium Article](https://medium.com/@paudang/nodejs-quickstart-generator-93c276d60e0b) for deep-dive tutorials.
-
-## License
-
-ISC
-
-## 🚀 Roadmap & Upcoming Features
-
-We are constantly working to improve `nodejs-quickstart-structure` and make it the most robust boilerplate generator for Node.js. 
-
-You can track our current progress, see what features are being worked on, and vote for your favorites on our public Trello board:
-
-👉 **[View our Public Roadmap on Trello](https://trello.com/b/TPTo8ylF/nodejs-quickstart-structure-product)**
-
-If you have a feature request or want to contribute, feel free to check the board and open an issue or pull request!
+# Node.js Quickstart Generator
+
+[![npm version](https://img.shields.io/npm/v/nodejs-quickstart-structure.svg?style=flat-square)](https://www.npmjs.com/package/nodejs-quickstart-structure)
+[![npm total downloads](https://img.shields.io/npm/dt/nodejs-quickstart-structure?style=flat-square&color=emerald&label=Downloads)](https://www.npmjs.com/package/nodejs-quickstart-structure)
+[![npm monthly downloads](https://img.shields.io/npm/dm/nodejs-quickstart-structure.svg?style=flat-square)](https://www.npmjs.com/package/nodejs-quickstart-structure)
+[![License: ISC](https://img.shields.io/badge/License-ISC-blue.svg?style=flat-square)](https://opensource.org/licenses/ISC)
+
+A powerful CLI tool to scaffold production-ready Node.js microservices with built-in best practices, allowing you to choose between **MVC** or **Clean Architecture**, **JavaScript** or **TypeScript**, and your preferred database.
+
+![Demo](docs/demo.gif)
+
+---
+
+## 📌 Table of Contents
+
+- [🚀 Quick Start](#-quick-start)
+- [✨ Key Features](#-key-features)
+- [🛡️ Professional Standards](#-professional-standards)
+- [🧩 1,680+ Project Combinations](#-1680-project-combinations)
+- [⚙️ Configuration Options](#-configuration-options)
+- [🏗️ Generated Project Structure](#-generated-project-structure)
+- [📖 Documentation](#-documentation)
+- [🗺️ Roadmap & Support](#️-roadmap--support)
+
+---
+
+## 🚀 Quick Start
+
+Generate your professional Node.js project in seconds without installing anything globally:
+
+```bash
+npx nodejs-quickstart-structure@latest init
+```
+
+### Installation (Optional)
+
+If you prefer to install it globally:
+
+```bash
+npm install -g nodejs-quickstart-structure
+# Then run:
+nodejs-quickstart init
+```
+
+---
+
+## ✨ Key Features
+
+- **Interactive CLI**: Smooth, guided configuration process.
+- **Multiple Architectures**: Supports both **MVC** and **Clean Architecture**.
+- **Modern Languages**: Choice of **JavaScript** or **TypeScript**.
+- **Database Ready**: Pre-configured for **MySQL**, **PostgreSQL**, or **MongoDB**.
+- **Communication Patterns**: Supports **REST**, **GraphQL** (Apollo), and **Kafka** (Event-driven).
+- **Multi-layer Caching**: Integrated **Redis** or built-in **Memory Cache**.
+- **AI-Native Optimized**: specifically designed for **Cursor** and AI agents, including built-in `.cursorrules` and Agent Skill prompts. 🚀
+
+---
+
+## 🛡️ Professional Standards
+
+We don't just generate boilerplate; we generate **production-ready** foundations. Every project includes:
+
+- **🔍 Code Quality**: Pre-configured `Eslint` and `Prettier`.
+- **🛡️ Enterprise Security**: Integrated **Snyk (SCA)**, **SonarCloud (SAST)**, `Helmet`, `HPP`, and Rate-Limiting.
+- **🚨 Robust Error Handling**: Centralized global error middleware with custom error classes (`ApiError`, `NotFoundError`, etc.) — consistent across REST & GraphQL.
+- **🧪 Testing Excellence**: Integrated `Jest` and `Supertest` with **>80% Unit Test coverage** out of the box.
+- **🔄 DevOps & CI/CD**: Optimized **Multi-Stage Dockerfiles**, health checks, infrastructure retry logic, and workflows for **GitHub Actions**, **Jenkins**, and **GitLab CI**.
+- **🚀 Scalable Deployment**: Integrated **PM2 Ecosystem** config for zero-downtime reloads.
+
+---
+
+## 🧩 1,680+ Project Combinations
+
+The CLI supports a massive number of configurations to fit your exact needs:
+
+- **240 Core Combinations**:
+  - **MVC Architecture**: 180 variants (Languages × View Engines × Databases × Communication Patterns × Caching)
+  - **Clean Architecture**: 60 variants (Languages × Databases × Communication Patterns × Caching)
+- **1,680+ Total Scenarios**:
+  - Every combination can be generated across 3 CI/CD providers.
+  - Optional **Enterprise-Grade Security Hardening** doubles the scenarios.
+  - Every single scenario is verified to be compatible with our **80% Coverage Threshold** policy.
+
+---
+
+## ⚙️ Configuration Options
+
+The CLI will guide you through:
+1. **Project Name**
+2. **Language**: `JavaScript` | `TypeScript`
+3. **Architecture**: `MVC` | `Clean Architecture`
+4. **View Engine**: (MVC only) `None` | `EJS` | `Pug`
+5. **Database**: `MySQL` | `PostgreSQL` | `MongoDB`
+6. **Communication**: `REST` | `GraphQL` | `Kafka`
+7. **Caching**: `None` | `Redis` | `Memory Cache`
+8. **CI/CD**: `GitHub Actions` | `Jenkins` | `GitLab CI`
+9. **Security**: (Optional) Snyk & SonarCloud Hardening
+
+---
+
+## 🏗️ Generated Project Structure
+
+A typical generated project (TypeScript + Clean Architecture) looks like this:
+
+```text
+.
+├── src/
+│   ├── application/     # Use cases & Business logic
+│   ├── domain/          # Entities & Repository interfaces
+│   ├── infrastructure/  # DB, External services, Repositories
+│   ├── interfaces/      # Controllers, Routes, GraphQL, Kafka
+│   ├── errors/          # Custom Error Classes
+│   └── index.ts         # Entry point
+├── flyway/sql/          # SQL migrations (if applicable)
+├── docker-compose.yml   # Infrastructure services
+├── package.json         # Scripts and dependencies
+├── tsconfig.json        # TypeScript config
+└── .cursorrules         # AI assistance rules
+```
+
+---
+
+## 📖 Documentation
+
+For full guides, architecture deep-dives, and feature references, visit our **[Official Documentation Site](https://paudang.github.io/nodejs-quickstart-structure/)**.
+
+---
+
+## ❤️ Support & 🗺️ Roadmap
+
+### Support the Project
+We just hit **3,000+ downloads**! If this tool helped you, please:
+- Give us a ⭐ on [GitHub](https://github.com/paudang/nodejs-quickstart-structure).
+- Read our [Medium Article](https://medium.com/@paudang/nodejs-quickstart-generator-93c276d60e0b) for tutorials.
+
+### Roadmap
+Track our progress and vote for features on our public board:
+👉 **[View our Public Roadmap on Trello](https://trello.com/b/TPTo8ylF/nodejs-quickstart-structure-product)**
+
+---
+
+## License
+
+ISC

package/bin/index.js

@@ -1,90 +1,93 @@
-#!/usr/bin/env node
-
-import { Command } from 'commander';
-import chalk from 'chalk';
-import { getProjectDetails } from '../lib/prompts.js';
-import { generateProject } from '../lib/generator.js';
-import { readFileSync } from 'fs';
-import { join, dirname } from 'path';
-import { fileURLToPath } from 'url';
-
-const __dirname = dirname(fileURLToPath(import.meta.url));
-const pkg = JSON.parse(readFileSync(join(__dirname, '../package.json'), 'utf-8'));
-
-const program = new Command();
-
-program
-    .name('nodejs-quickstart')
-    .description('🚀 CLI to scaffold production-ready Node.js microservices.\n\nGenerates projects with:\n- MVC or Clean Architecture\n- REST or Kafka\n- MySQL, PostgreSQL, or MongoDB\n- Docker, Flyway & Mongoose support')
-    .version(pkg.version, '-v, --version', 'Output the current version')
-    .addHelpText('after', `\n${chalk.yellow('Example:')}\n  $ nodejs-quickstart init   ${chalk.gray('# Start the interactive setup')}\n`);
-
-program
-    .command('init')
-    .description('Initialize a new Node.js project')
-    .option('-n, --project-name <name>', 'Project name')
-    .option('-l, --language <language>', 'Language (JavaScript, TypeScript)')
-    .option('-a, --architecture <architecture>', 'Architecture (MVC, Clean Architecture)')
-    .option('--view-engine <view>', 'View Engine (None, EJS, Pug) - MVC only')
-    .option('-d, --database <database>', 'Database (MySQL, PostgreSQL)')
-    .option('--db-name <name>', 'Database name')
-    .option('-c, --communication <communication>', 'Communication (REST APIs, GraphQL, Kafka)')
-    .option('--ci-provider <provider>', 'CI/CD Provider (None, GitHub Actions, Jenkins)')
-    .option('--caching <type>', 'Caching Layer (None/Redis)')
-    .action(async (options) => {
-        // Fix for Commander camelCase conversion
-        if (options.ciProvider) {
-            options.ciProvider = options.ciProvider;
-        }
-
-        console.log(chalk.blue('Welcome to the Node.js Quickstart Generator!'));
-
-        try {
-            const answers = await getProjectDetails(options);
-            console.log(chalk.green('\nConfiguration received:'));
-            console.log(JSON.stringify(answers, null, 2));
-
-            console.log(chalk.yellow('\nGenerating project...'));
-            await generateProject(answers);
-
-            console.log(chalk.green('\n✔ Project generated successfully!'));
-            
-            console.log(chalk.magenta('\n🚀 Project is AI-Ready!'));
-            console.log(chalk.magenta('-----------------------------------------'));
-            console.log(chalk.magenta('🤖 We detected you are using AI tools.'));
-            console.log(chalk.magenta(`📍 Use Cursor? We've configured '.cursorrules' for you.`));
-            console.log(chalk.magenta(`📍 Use ChatGPT/Gemini? Check the 'prompts/' folder for Agent Skills.`));
-            console.log(chalk.magenta('-----------------------------------------'));
-
-            let manualStartInstructions = `\n${chalk.yellow('Development:')}\n  cd ${answers.projectName}\n  npm install`;
-            
-            const needsInfrastructure = answers.database !== 'None' || answers.caching === 'Redis' || answers.communication === 'Kafka';
-            
-            if (needsInfrastructure) {
-                let servicesToStart = '';
-                if (answers.database === 'MongoDB') servicesToStart += ' db';
-                else if (answers.database !== 'None') servicesToStart += ' db flyway';
-                if (answers.caching === 'Redis') servicesToStart += ' redis';
-                if (answers.communication === 'Kafka') servicesToStart += ' kafka';
-                
-                manualStartInstructions += `\n  docker-compose up -d${servicesToStart}  # Start infrastructure first\n  npm run dev`;
-            } else {
-                manualStartInstructions += `\n  npm run dev`;
-            }
-            
-            console.log(chalk.cyan(`\nNext steps:\n  cd ${answers.projectName}\n  npm install\n  docker-compose up\n-----------------------${manualStartInstructions}\n\n${chalk.yellow('Production (PM2):')}\n  npm run build\n  npm run deploy\n  npx pm2 logs`));
-
-        } catch (error) {
-            if (error.name === 'ExitPromptError') {
-                console.log(chalk.yellow('\n\n👋 Goodbye! Setup cancelled.'));
-                process.exit(0);
-            }
-            console.error(chalk.red('Error generating project:'), error);
-            process.exit(1);
-        }
-    });
-program.parse(process.argv);
-
-if (!process.argv.slice(2).length) {
-    program.outputHelp();
-}
+#!/usr/bin/env node
+
+import { Command } from 'commander';
+import chalk from 'chalk';
+import { getProjectDetails } from '../lib/prompts.js';
+import { generateProject } from '../lib/generator.js';
+import { readFileSync } from 'fs';
+import { join, dirname } from 'path';
+import { fileURLToPath } from 'url';
+
+const __dirname = dirname(fileURLToPath(import.meta.url));
+const pkg = JSON.parse(readFileSync(join(__dirname, '../package.json'), 'utf-8'));
+
+const program = new Command();
+
+program
+    .name('nodejs-quickstart')
+    .description('🚀 CLI to scaffold production-ready Node.js microservices.\n\nGenerates projects with:\n- MVC or Clean Architecture\n- REST or Kafka\n- MySQL, PostgreSQL, or MongoDB\n- Docker, Flyway & Mongoose support')
+    .version(pkg.version, '-v, --version', 'Output the current version')
+    .addHelpText('after', `\n${chalk.yellow('Example:')}\n  $ nodejs-quickstart init   ${chalk.gray('# Start the interactive setup')}\n`);
+
+program
+    .command('init')
+    .description('Initialize a new Node.js project')
+    .option('-n, --project-name <name>', 'Project name')
+    .option('-l, --language <language>', 'Language (JavaScript, TypeScript)')
+    .option('-a, --architecture <architecture>', 'Architecture (MVC, Clean Architecture)')
+    .option('--view-engine <view>', 'View Engine (None, EJS, Pug) - MVC only')
+    .option('-d, --database <database>', 'Database (MySQL, PostgreSQL)')
+    .option('--db-name <name>', 'Database name')
+    .option('-c, --communication <communication>', 'Communication (REST APIs, GraphQL, Kafka)')
+    .option('--ci-provider <provider>', 'CI/CD Provider (None, GitHub Actions, Jenkins, GitLab CI)')
+    .option('--include-security', 'Include Enterprise Security Hardening')
+    .option('--caching <type>', 'Caching Layer (None/Redis)')
+    .action(async (options) => {
+        // Fix for Commander camelCase conversion
+        if (options.ciProvider) {
+            options.ciProvider = options.ciProvider;
+        }
+
+        console.log(chalk.blue('Welcome to the Node.js Quickstart Generator!'));
+
+        try {
+            const answers = await getProjectDetails(options);
+            console.log(chalk.blue(`\n🚀 Preparing to generate ${chalk.bold(answers.projectName)} (${answers.architecture})...`));
+            
+            console.log(chalk.yellow('\nGenerating project files...'));
+            await generateProject(answers);
+
+            console.log(chalk.green('\n✔ Project generated successfully!'));
+            
+            console.log(chalk.magenta('\n🚀 Project is AI-Ready!'));
+            console.log(chalk.magenta('-----------------------------------------'));
+            console.log(chalk.magenta('🤖 We detected you are using AI tools.'));
+            console.log(chalk.magenta(`📍 Use Cursor? We've configured '.cursorrules' for you.`));
+            console.log(chalk.magenta(`📍 Use ChatGPT/Gemini? Check the 'prompts/' folder for Agent Skills.`));
+            console.log(chalk.magenta('-----------------------------------------'));
+
+            let manualStartInstructions = `\n${chalk.yellow('Development:')}\n  cd ${answers.projectName}\n  npm install`;
+            
+            const needsInfrastructure = answers.database !== 'None' || answers.caching === 'Redis' || answers.communication === 'Kafka';
+            
+            if (needsInfrastructure) {
+                let servicesToStart = '';
+                if (answers.database === 'MongoDB') servicesToStart += ' db';
+                else if (answers.database !== 'None') servicesToStart += ' db flyway';
+                if (answers.caching === 'Redis') servicesToStart += ' redis';
+                if (answers.communication === 'Kafka') servicesToStart += ' kafka';
+                
+                manualStartInstructions += `\n  docker-compose up -d${servicesToStart}  # Start infrastructure first\n  npm run dev`;
+            } else {
+                manualStartInstructions += `\n  npm run dev`;
+            }
+            
+            console.log(chalk.cyan(`\nNext steps:\n  cd ${answers.projectName}\n  npm install\n  docker-compose up\n-----------------------${manualStartInstructions}\n\n${chalk.yellow('Production (PM2):')}\n  npm run build\n  npm run deploy\n  npx pm2 logs`));
+
+            console.log(chalk.yellow(`\n⭐ If this tool saved you 5 minutes, please give us a star on GitHub: ${chalk.underline('https://github.com/paudang/nodejs-quickstart-structure')}`));
+
+        } catch (error) {
+            if (error.name === 'ExitPromptError') {
+                console.log(chalk.yellow('\n\n👋 Goodbye! Setup cancelled.'));
+                process.exit(0);
+            }
+            console.error(chalk.red('Error generating project:'), error);
+            process.exit(1);
+        }
+    });
+
+program.parse(process.argv);
+
+if (!process.argv.slice(2).length) {
+    program.outputHelp();
+}

package/lib/generator.js

@@ -16,9 +16,10 @@ export const generateProject = async (config) => {
         viewEngine: 'None',
         caching: 'None',
         dbName: 'demo',
-        ciProvider: 'None',
+        ciProvider: 'GitHub Actions',
         communication: 'REST APIs',
         database: 'None',
+        includeSecurity: false,
         ...config
     };
 
@@ -112,7 +113,7 @@ export const generateProject = async (config) => {
       ----------------------------------------------------
       ✅  Linting & Formatting: Eslint + Prettier configured
       ✅  Git Hooks: Husky + Lint-Staged ready
-      ✅  Security: Helmet, CORS, Rate-Limiting added
+      ✅  Security: Helmet, CORS, Rate-Limiting added${config.includeSecurity ? '\n      ✅  Enterprise Security: Snyk (SCA) & SonarCloud (SAST) integration' : ''}
       ✅  Testing: Jest setup for Unit/Integration tests
       ✅  Docker: Production-ready multi-stage build
       ${config.ciProvider !== 'None' ? `✅  CI/CD: ${config.ciProvider} Workflow ready` : '❌  CI/CD: Skipped (User preferred)'}
@@ -131,7 +132,7 @@ export const generateProject = async (config) => {
       2. git init
       3. npm install
       4. npm run prepare      (To setup Husky hooks)
-      5. docker-compose up -d (To start DB/Infrastructure)
+      5. docker-compose up -d${config.database !== 'None' ? ' db' : ''}${config.caching === 'Redis' ? ' redis' : ''}${config.communication === 'Kafka' ? ' kafka' : ''} (To start DB/Infrastructure)
       6. npm run dev          (To start development server)
       7. npm test             (To run tests)
     `);

package/lib/modules/config-files.js

@@ -52,6 +52,24 @@ export const renderProfessionalConfig = async (templatesDir, targetDir, config)
     const jestE2eTemplate = await fs.readFile(path.join(templatesDir, 'common', 'jest.e2e.config.js.ejs'), 'utf-8');
     const jestE2eContent = ejs.render(jestE2eTemplate, { ...config });
     await fs.writeFile(path.join(targetDir, 'jest.e2e.config.js'), jestE2eContent);
+
+    // 1. Setup Husky pre-commit (Always for Professional Standard)
+    const huskyDir = path.join(targetDir, '.husky');
+    await fs.ensureDir(huskyDir);
+    await fs.copy(path.join(templatesDir, 'common', '_husky', 'pre-commit'), path.join(huskyDir, 'pre-commit'));
+
+    // 2. Enterprise Security Hardening (Optional)
+    if (config.includeSecurity) {
+        await fs.copy(path.join(templatesDir, 'common', 'SECURITY.md'), path.join(targetDir, 'SECURITY.md'));
+        
+        const sonarTemplate = await fs.readFile(path.join(templatesDir, 'common', 'sonar-project.properties.ejs'), 'utf-8');
+        const sonarContent = ejs.render(sonarTemplate, { ...config });
+        await fs.writeFile(path.join(targetDir, 'sonar-project.properties'), sonarContent);
+
+        const snykTemplate = await fs.readFile(path.join(templatesDir, 'common', '.snyk.ejs'), 'utf-8');
+        const snykContent = ejs.render(snykTemplate, { ...config });
+        await fs.writeFile(path.join(targetDir, '.snyk'), snykContent);
+    }
 };
 
 export const renderAiNativeFiles = async (templatesDir, targetDir, config) => {
@@ -80,10 +98,20 @@ export const renderAiNativeFiles = async (templatesDir, targetDir, config) => {
 };
 
 export const setupCiCd = async (templatesDir, targetDir, config) => {
-    const { ciProvider } = config;
+    const { ciProvider, includeSecurity } = config;
     if (ciProvider === 'GitHub Actions') {
-        await fs.ensureDir(path.join(targetDir, '.github/workflows'));
-        await fs.copy(path.join(templatesDir, 'common', '_github/workflows/ci.yml'), path.join(targetDir, '.github/workflows/ci.yml'));
+        const workflowsDir = path.join(targetDir, '.github/workflows');
+        await fs.ensureDir(workflowsDir);
+        
+        const ciTemplate = await fs.readFile(path.join(templatesDir, 'common', '_github/workflows/ci.yml.ejs'), 'utf-8');
+        const ciContent = ejs.render(ciTemplate, { ...config });
+        await fs.writeFile(path.join(workflowsDir, 'ci.yml'), ciContent);
+        
+        if (includeSecurity) {
+            const securityTemplate = await fs.readFile(path.join(templatesDir, 'common', '_github/workflows/security.yml.ejs'), 'utf-8');
+            const securityContent = ejs.render(securityTemplate, { ...config });
+            await fs.writeFile(path.join(workflowsDir, 'security.yml'), securityContent);
+        }
     } else if (ciProvider === 'Jenkins') {
         const jenkinsTemplate = await fs.readFile(path.join(templatesDir, 'common', 'Jenkinsfile.ejs'), 'utf-8');
         const jenkinsContent = ejs.render(jenkinsTemplate, { ...config });

package/lib/prompts.js

@@ -77,9 +77,24 @@ export const getProjectDetails = async (options = {}) => {
             choices: ['None', 'GitHub Actions', 'Jenkins', 'GitLab CI'],
             default: 'None',
             when: !options.ciProvider
+        },
+        {
+            type: 'select',
+            name: 'includeSecurity',
+            message: 'Include Enterprise Security Hardening (Big Tech Standard: Snyk, SonarQube)?',
+            choices: ['No', 'Yes'],
+            default: "No",
+            when: (answers) => !options.includeSecurity && (options.ciProvider || answers.ciProvider) !== 'None'
         }
     ];
 
     const answers = await inquirer.prompt(questions);
-    return { ...options, ...answers };
+    const result = { ...options, ...answers };
+
+    // Normalize includeSecurity to boolean if it's a string from the select prompt
+    if (typeof result.includeSecurity === 'string') {
+        result.includeSecurity = result.includeSecurity === 'Yes';
+    }
+
+    return result;
 };