proagents 1.6.20 → 1.6.21

package/.proagents/cicd/github-actions.md

@@ -1,375 +0,0 @@
-# GitHub Actions Templates
-
-Ready-to-use GitHub Actions workflows for CI/CD.
-
----
-
-## Complete CI Workflow
-
-```yaml
-# .github/workflows/ci.yml
-name: CI
-
-on:
-  push:
-    branches: [main, develop]
-  pull_request:
-    branches: [main, develop]
-
-env:
-  NODE_VERSION: '20'
-
-jobs:
-  # Lint and type check
-  lint:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: ${{ env.NODE_VERSION }}
-          cache: 'npm'
-
-      - name: Install dependencies
-        run: npm ci
-
-      - name: Run ESLint
-        run: npm run lint
-
-      - name: Run TypeScript check
-        run: npm run type-check
-
-  # Unit and integration tests
-  test:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: ${{ env.NODE_VERSION }}
-          cache: 'npm'
-
-      - name: Install dependencies
-        run: npm ci
-
-      - name: Run tests
-        run: npm test -- --coverage
-
-      - name: Upload coverage
-        uses: codecov/codecov-action@v3
-        with:
-          files: ./coverage/lcov.info
-          fail_ci_if_error: true
-
-  # Security scanning
-  security:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Run security audit
-        run: npm audit --audit-level=high
-
-      - name: Run Snyk scan
-        uses: snyk/actions/node@master
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-
-  # Build
-  build:
-    needs: [lint, test, security]
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: ${{ env.NODE_VERSION }}
-          cache: 'npm'
-
-      - name: Install dependencies
-        run: npm ci
-
-      - name: Build
-        run: npm run build
-
-      - name: Upload build artifacts
-        uses: actions/upload-artifact@v4
-        with:
-          name: build
-          path: dist/
-          retention-days: 7
-```
-
----
-
-## Deployment Workflow
-
-```yaml
-# .github/workflows/deploy.yml
-name: Deploy
-
-on:
-  push:
-    branches: [main]
-  workflow_dispatch:
-    inputs:
-      environment:
-        description: 'Environment to deploy'
-        required: true
-        default: 'staging'
-        type: choice
-        options:
-          - staging
-          - production
-
-jobs:
-  deploy-staging:
-    if: github.ref == 'refs/heads/main' || github.event.inputs.environment == 'staging'
-    runs-on: ubuntu-latest
-    environment: staging
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Download build
-        uses: actions/download-artifact@v4
-        with:
-          name: build
-          path: dist/
-
-      - name: Deploy to staging
-        run: |
-          # Your deployment command
-          npx proagents deploy --env staging
-        env:
-          DEPLOY_TOKEN: ${{ secrets.STAGING_DEPLOY_TOKEN }}
-
-      - name: Run smoke tests
-        run: npm run test:smoke -- --env staging
-
-  deploy-production:
-    if: github.event.inputs.environment == 'production'
-    needs: [deploy-staging]
-    runs-on: ubuntu-latest
-    environment: production
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Download build
-        uses: actions/download-artifact@v4
-        with:
-          name: build
-          path: dist/
-
-      - name: Deploy to production
-        run: |
-          npx proagents deploy --env production
-        env:
-          DEPLOY_TOKEN: ${{ secrets.PROD_DEPLOY_TOKEN }}
-
-      - name: Notify deployment
-        uses: slackapi/slack-github-action@v1
-        with:
-          payload: |
-            {
-              "text": "✅ Deployed to production: ${{ github.sha }}"
-            }
-        env:
-          SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK }}
-```
-
----
-
-## PR Workflow
-
-```yaml
-# .github/workflows/pr.yml
-name: PR Checks
-
-on:
-  pull_request:
-    types: [opened, synchronize, reopened]
-
-jobs:
-  pr-checks:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-          cache: 'npm'
-
-      - name: Install dependencies
-        run: npm ci
-
-      - name: Check PR title
-        uses: amannn/action-semantic-pull-request@v5
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Run affected tests
-        run: |
-          # Only test changed files
-          npm run test -- --changedSince=origin/main
-
-      - name: Check bundle size
-        uses: preactjs/compressed-size-action@v2
-        with:
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Add coverage comment
-        uses: marocchino/sticky-pull-request-comment@v2
-        with:
-          message: |
-            ## Coverage Report
-            ${{ steps.coverage.outputs.summary }}
-```
-
----
-
-## Scheduled Jobs
-
-```yaml
-# .github/workflows/scheduled.yml
-name: Scheduled Jobs
-
-on:
-  schedule:
-    # Daily at 6 AM UTC
-    - cron: '0 6 * * *'
-
-jobs:
-  dependency-update:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Check for updates
-        run: npx proagents deps check --ci
-
-      - name: Create PR for updates
-        if: steps.check.outputs.has_updates == 'true'
-        run: npx proagents deps update --create-pr
-
-  security-scan:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Run security scan
-        run: npx proagents security scan --ci
-
-      - name: Create issue on findings
-        if: failure()
-        uses: actions/github-script@v7
-        with:
-          script: |
-            github.rest.issues.create({
-              owner: context.repo.owner,
-              repo: context.repo.repo,
-              title: 'Security vulnerabilities detected',
-              body: 'Please review the security scan results.',
-              labels: ['security', 'automated']
-            })
-```
-
----
-
-## Reusable Workflows
-
-```yaml
-# .github/workflows/reusable-test.yml
-name: Reusable Test Workflow
-
-on:
-  workflow_call:
-    inputs:
-      node-version:
-        required: false
-        type: string
-        default: '20'
-    secrets:
-      npm-token:
-        required: false
-
-jobs:
-  test:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: ${{ inputs.node-version }}
-          cache: 'npm'
-          registry-url: 'https://registry.npmjs.org'
-
-      - name: Install dependencies
-        run: npm ci
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.npm-token }}
-
-      - name: Run tests
-        run: npm test
-```
-
-### Using Reusable Workflow
-
-```yaml
-# .github/workflows/ci.yml
-jobs:
-  test:
-    uses: ./.github/workflows/reusable-test.yml
-    with:
-      node-version: '20'
-    secrets:
-      npm-token: ${{ secrets.NPM_TOKEN }}
-```
-
----
-
-## Matrix Builds
-
-```yaml
-jobs:
-  test:
-    runs-on: ${{ matrix.os }}
-    strategy:
-      matrix:
-        os: [ubuntu-latest, macos-latest, windows-latest]
-        node: [18, 20, 22]
-      fail-fast: false
-
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js ${{ matrix.node }}
-        uses: actions/setup-node@v4
-        with:
-          node-version: ${{ matrix.node }}
-
-      - run: npm ci
-      - run: npm test
-```
-
----
-
-## Best Practices
-
-1. **Cache Dependencies**: Use `actions/cache` or built-in caching
-2. **Parallel Jobs**: Run independent jobs in parallel
-3. **Fail Fast**: Use `fail-fast: false` for matrix builds
-4. **Environment Protection**: Use environments for deployments
-5. **Reusable Workflows**: DRY with reusable workflows
-6. **Secrets Management**: Never hardcode secrets

package/.proagents/cicd/gitlab-ci.md

@@ -1,278 +0,0 @@
-# GitLab CI Templates
-
-Ready-to-use GitLab CI/CD pipeline configurations.
-
----
-
-## Complete Pipeline
-
-```yaml
-# .gitlab-ci.yml
-stages:
-  - validate
-  - test
-  - security
-  - build
-  - deploy
-
-variables:
-  NODE_VERSION: "20"
-  npm_config_cache: "$CI_PROJECT_DIR/.npm"
-
-# Cache configuration
-.node_cache: &node_cache
-  cache:
-    key:
-      files:
-        - package-lock.json
-    paths:
-      - .npm/
-      - node_modules/
-    policy: pull-push
-
-# Base template
-.node_template: &node_template
-  image: node:${NODE_VERSION}
-  <<: *node_cache
-  before_script:
-    - npm ci --cache .npm --prefer-offline
-
-# ============ VALIDATE STAGE ============
-lint:
-  stage: validate
-  <<: *node_template
-  script:
-    - npm run lint
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-
-typecheck:
-  stage: validate
-  <<: *node_template
-  script:
-    - npm run type-check
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-
-# ============ TEST STAGE ============
-unit_tests:
-  stage: test
-  <<: *node_template
-  script:
-    - npm run test:unit -- --coverage
-  coverage: '/Lines\s*:\s*(\d+\.?\d*)%/'
-  artifacts:
-    reports:
-      coverage_report:
-        coverage_format: cobertura
-        path: coverage/cobertura-coverage.xml
-      junit: junit.xml
-    paths:
-      - coverage/
-    expire_in: 1 week
-
-integration_tests:
-  stage: test
-  <<: *node_template
-  services:
-    - postgres:15
-    - redis:7
-  variables:
-    POSTGRES_DB: test_db
-    POSTGRES_USER: test
-    POSTGRES_PASSWORD: test
-    DATABASE_URL: "postgresql://test:test@postgres:5432/test_db"
-    REDIS_URL: "redis://redis:6379"
-  script:
-    - npm run test:integration
-
-# ============ SECURITY STAGE ============
-dependency_scan:
-  stage: security
-  <<: *node_template
-  script:
-    - npm audit --audit-level=high
-  allow_failure: true
-
-sast:
-  stage: security
-  image:
-    name: "semgrep/semgrep"
-    entrypoint: [""]
-  script:
-    - semgrep --config auto --json -o semgrep-report.json .
-  artifacts:
-    reports:
-      sast: semgrep-report.json
-
-secret_detection:
-  stage: security
-  image: trufflesecurity/trufflehog:latest
-  script:
-    - trufflehog git file://. --only-verified
-
-# ============ BUILD STAGE ============
-build:
-  stage: build
-  <<: *node_template
-  script:
-    - npm run build
-  artifacts:
-    paths:
-      - dist/
-    expire_in: 1 week
-  rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
-
-docker_build:
-  stage: build
-  image: docker:24
-  services:
-    - docker:24-dind
-  variables:
-    DOCKER_TLS_CERTDIR: "/certs"
-  script:
-    - docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
-    - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA .
-    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
-  rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-
-# ============ DEPLOY STAGE ============
-deploy_staging:
-  stage: deploy
-  image: alpine:latest
-  environment:
-    name: staging
-    url: https://staging.example.com
-  script:
-    - apk add --no-cache curl
-    - curl -X POST $DEPLOY_WEBHOOK_STAGING
-  rules:
-    - if: $CI_COMMIT_BRANCH == "develop"
-
-deploy_production:
-  stage: deploy
-  image: alpine:latest
-  environment:
-    name: production
-    url: https://example.com
-  script:
-    - apk add --no-cache curl
-    - curl -X POST $DEPLOY_WEBHOOK_PRODUCTION
-  rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-      when: manual
-  needs:
-    - build
-    - unit_tests
-    - integration_tests
-```
-
----
-
-## Merge Request Pipeline
-
-```yaml
-# Optimized for merge requests
-workflow:
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
-
-mr_checks:
-  stage: validate
-  script:
-    - |
-      # Check MR title format
-      if [[ ! "$CI_MERGE_REQUEST_TITLE" =~ ^(feat|fix|docs|style|refactor|test|chore)\(.+\):.+ ]]; then
-        echo "MR title must follow conventional commits format"
-        exit 1
-      fi
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
-```
-
----
-
-## Environment-Specific Variables
-
-```yaml
-# Per-environment configuration
-.staging_vars: &staging_vars
-  variables:
-    ENVIRONMENT: staging
-    API_URL: https://api-staging.example.com
-
-.production_vars: &production_vars
-  variables:
-    ENVIRONMENT: production
-    API_URL: https://api.example.com
-
-deploy_staging:
-  <<: *staging_vars
-  # ... rest of config
-
-deploy_production:
-  <<: *production_vars
-  # ... rest of config
-```
-
----
-
-## Scheduled Pipelines
-
-```yaml
-# Scheduled jobs
-dependency_update:
-  stage: validate
-  script:
-    - npx proagents deps check --ci
-    - npx proagents deps update --create-mr
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "schedule"
-      variables:
-        SCHEDULE_TYPE: "dependency_update"
-
-nightly_security_scan:
-  stage: security
-  script:
-    - npm audit
-    - npx snyk test
-  rules:
-    - if: $CI_PIPELINE_SOURCE == "schedule"
-      variables:
-        SCHEDULE_TYPE: "security_scan"
-```
-
----
-
-## Include External Templates
-
-```yaml
-include:
-  # GitLab templates
-  - template: Security/SAST.gitlab-ci.yml
-  - template: Security/Dependency-Scanning.gitlab-ci.yml
-
-  # Local templates
-  - local: .gitlab/ci/test.yml
-  - local: .gitlab/ci/deploy.yml
-
-  # Remote templates
-  - remote: https://example.com/ci-templates/node.yml
-```
-
----
-
-## Best Practices
-
-1. **Use Caching**: Cache npm dependencies
-2. **Parallel Jobs**: Run independent jobs in parallel
-3. **Use Artifacts**: Pass data between stages
-4. **Environment Protection**: Use protected environments
-5. **Include Templates**: DRY with includes
-6. **Rules Over Only/Except**: Use `rules:` for conditional jobs