project-graph-mcp 1.0.0

package/rules/express-5.json

@@ -0,0 +1,76 @@
+{
+  "name": "express-5",
+  "description": "Express.js 5.x API standards",
+  "docs": "https://expressjs.com/",
+  "detect": {
+    "packageJson": [
+      "express"
+    ],
+    "imports": [
+      "from 'express'",
+      "require('express')"
+    ],
+    "patterns": [
+      "app.get(",
+      "app.post(",
+      "app.use("
+    ]
+  },
+  "rules": [
+    {
+      "id": "express-no-sync-methods",
+      "name": "Avoid sync file methods",
+      "description": "Synchronous methods block the event loop",
+      "pattern": "Sync(",
+      "patternType": "string",
+      "replacement": "Use async versions: readFile, writeFile, etc.",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://expressjs.com/en/advanced/best-practice-performance.html"
+    },
+    {
+      "id": "express-error-handler",
+      "name": "Missing error parameter",
+      "description": "Error handlers must have 4 parameters (err, req, res, next)",
+      "pattern": "app.use\\(\\(req, res\\)",
+      "patternType": "regex",
+      "replacement": "app.use((err, req, res, next) => { ... })",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://expressjs.com/en/guide/error-handling.html"
+    },
+    {
+      "id": "express-no-res-send-in-loop",
+      "name": "res.send() in loop",
+      "description": "Response can only be sent once per request",
+      "pattern": "forEach.*res\\.send",
+      "patternType": "regex",
+      "replacement": "Collect results, then send once",
+      "severity": "error",
+      "filePattern": "*.js",
+      "docs": "https://expressjs.com/en/api.html#res.send"
+    },
+    {
+      "id": "express-use-helmet",
+      "name": "Consider using Helmet",
+      "description": "Helmet helps secure Express apps with HTTP headers",
+      "pattern": "app.listen(",
+      "patternType": "string",
+      "replacement": "Add app.use(helmet()) for security headers",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://helmetjs.github.io/"
+    },
+    {
+      "id": "express-async-handler",
+      "name": "Async route without try-catch",
+      "description": "Unhandled promise rejections can crash the server",
+      "pattern": "async (req, res)",
+      "patternType": "string",
+      "replacement": "Wrap in try-catch or use express-async-handler",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://expressjs.com/en/guide/error-handling.html"
+    }
+  ]
+}

package/rules/fastify-5.json

@@ -0,0 +1,75 @@
+{
+  "name": "fastify-5",
+  "description": "Fastify 5.x server standards",
+  "docs": "https://fastify.dev/docs/latest/",
+  "detect": {
+    "packageJson": [
+      "fastify"
+    ],
+    "imports": [
+      "from 'fastify'",
+      "require('fastify')"
+    ],
+    "patterns": [
+      "fastify.get(",
+      "fastify.post("
+    ]
+  },
+  "rules": [
+    {
+      "id": "fastify-use-schema",
+      "name": "Define JSON Schema for routes",
+      "description": "Schema enables validation and serialization",
+      "pattern": "fastify.get('",
+      "patternType": "string",
+      "replacement": "fastify.get('/path', { schema: { ... } }, handler)",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://fastify.dev/docs/latest/Reference/Validation-and-Serialization/"
+    },
+    {
+      "id": "fastify-async-handlers",
+      "name": "Use async handlers",
+      "description": "Async handlers auto-handle promise rejections",
+      "pattern": "function(request, reply)",
+      "patternType": "string",
+      "replacement": "async function(request, reply)",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://fastify.dev/docs/latest/Reference/Routes/#async-await"
+    },
+    {
+      "id": "fastify-use-plugins",
+      "name": "Encapsulate with plugins",
+      "description": "Use plugins for modular architecture",
+      "pattern": "fastify.register(",
+      "patternType": "string",
+      "replacement": "fastify.register(plugin, { prefix: '/api' })",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://fastify.dev/docs/latest/Reference/Plugins/"
+    },
+    {
+      "id": "fastify-no-express-middleware",
+      "name": "Avoid Express middleware",
+      "description": "Use Fastify hooks instead of Express middleware",
+      "pattern": "express()",
+      "patternType": "string",
+      "replacement": "Use fastify.addHook() or @fastify/middie",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://fastify.dev/docs/latest/Reference/Hooks/"
+    },
+    {
+      "id": "fastify-use-logger",
+      "name": "Enable built-in logger",
+      "description": "Fastify has pino logger built-in",
+      "pattern": "console.log(",
+      "patternType": "string",
+      "replacement": "request.log.info() or fastify.log.info()",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://fastify.dev/docs/latest/Reference/Logging/"
+    }
+  ]
+}

package/rules/nestjs-10.json

@@ -0,0 +1,88 @@
+{
+  "name": "nestjs-10",
+  "description": "NestJS 10.x architecture standards",
+  "docs": "https://docs.nestjs.com/",
+  "detect": {
+    "packageJson": [
+      "@nestjs/core",
+      "@nestjs/common"
+    ],
+    "imports": [
+      "from '@nestjs/common'",
+      "from '@nestjs/core'"
+    ],
+    "patterns": [
+      "@Controller",
+      "@Injectable",
+      "@Module"
+    ]
+  },
+  "rules": [
+    {
+      "id": "nestjs-use-dto",
+      "name": "Use DTOs for validation",
+      "description": "Create DTO classes with class-validator decorators",
+      "pattern": "@Body() body:",
+      "patternType": "string",
+      "replacement": "@Body() dto: CreateItemDto",
+      "severity": "warning",
+      "filePattern": "*.ts",
+      "docs": "https://docs.nestjs.com/techniques/validation"
+    },
+    {
+      "id": "nestjs-no-any-injection",
+      "name": "Type all injected dependencies",
+      "description": "Avoid any type for constructor injection",
+      "pattern": "constructor.*: any",
+      "patternType": "regex",
+      "replacement": "constructor(private service: ServiceClass)",
+      "severity": "warning",
+      "filePattern": "*.ts",
+      "docs": "https://docs.nestjs.com/providers"
+    },
+    {
+      "id": "nestjs-use-interceptors",
+      "name": "Use interceptors for cross-cutting concerns",
+      "description": "Logging, caching, transform should use interceptors",
+      "pattern": "console.log.*request",
+      "patternType": "regex",
+      "replacement": "@UseInterceptors(LoggingInterceptor)",
+      "severity": "info",
+      "filePattern": "*.ts",
+      "docs": "https://docs.nestjs.com/interceptors"
+    },
+    {
+      "id": "nestjs-use-guards",
+      "name": "Use guards for authorization",
+      "description": "Auth checks should be in guards, not controllers",
+      "pattern": "if.*user.*throw",
+      "patternType": "regex",
+      "replacement": "@UseGuards(AuthGuard)",
+      "severity": "warning",
+      "filePattern": "*.controller.ts",
+      "docs": "https://docs.nestjs.com/guards"
+    },
+    {
+      "id": "nestjs-use-pipes",
+      "name": "Use pipes for validation",
+      "description": "Apply ValidationPipe globally or per-route",
+      "pattern": "@Body()",
+      "patternType": "string",
+      "replacement": "@Body(ValidationPipe) or app.useGlobalPipes()",
+      "severity": "info",
+      "filePattern": "*.ts",
+      "docs": "https://docs.nestjs.com/pipes"
+    },
+    {
+      "id": "nestjs-swagger-decorators",
+      "name": "Add Swagger decorators",
+      "description": "Document API with @ApiTags, @ApiOperation, etc.",
+      "pattern": "@Controller(",
+      "patternType": "string",
+      "replacement": "@ApiTags('...')\n@Controller('...')",
+      "severity": "info",
+      "filePattern": "*.controller.ts",
+      "docs": "https://docs.nestjs.com/openapi/introduction"
+    }
+  ]
+}

package/rules/nextjs-15.json

@@ -0,0 +1,87 @@
+{
+  "name": "nextjs-15",
+  "description": "Next.js 15 App Router standards",
+  "docs": "https://nextjs.org/docs",
+  "detect": {
+    "packageJson": [
+      "next"
+    ],
+    "imports": [
+      "from 'next'",
+      "next/"
+    ],
+    "patterns": [
+      "app/",
+      "page.tsx",
+      "layout.tsx"
+    ]
+  },
+  "rules": [
+    {
+      "id": "nextjs-use-app-router",
+      "name": "Prefer App Router over Pages",
+      "description": "App Router is the recommended approach in Next.js 13+",
+      "pattern": "pages/",
+      "patternType": "string",
+      "replacement": "Move to app/ directory with Server Components",
+      "severity": "info",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app"
+    },
+    {
+      "id": "nextjs-server-actions",
+      "name": "Use Server Actions for mutations",
+      "description": "Prefer Server Actions over API routes for form handling",
+      "pattern": "fetch('/api/",
+      "patternType": "string",
+      "replacement": "async function action() { 'use server'; ... }",
+      "severity": "info",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app/building-your-application/data-fetching/server-actions"
+    },
+    {
+      "id": "nextjs-no-client-fetch",
+      "name": "Fetch data on server",
+      "description": "Server Components can fetch data directly without useEffect",
+      "pattern": "useEffect.*fetch",
+      "patternType": "regex",
+      "replacement": "async function Page() { const data = await fetch(...) }",
+      "severity": "warning",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app/building-your-application/data-fetching"
+    },
+    {
+      "id": "nextjs-image-component",
+      "name": "Use next/image for images",
+      "description": "next/image provides automatic optimization",
+      "pattern": "<img src=",
+      "patternType": "string",
+      "replacement": "<Image src={...} alt={...} width={...} height={...} />",
+      "severity": "warning",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app/api-reference/components/image"
+    },
+    {
+      "id": "nextjs-link-component",
+      "name": "Use next/link for navigation",
+      "description": "next/link enables client-side navigation",
+      "pattern": "<a href=\"/",
+      "patternType": "string",
+      "replacement": "<Link href=\"/...\">",
+      "severity": "warning",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app/api-reference/components/link"
+    },
+    {
+      "id": "nextjs-metadata-export",
+      "name": "Export metadata for SEO",
+      "description": "Use metadata export for page SEO",
+      "pattern": "<title>",
+      "patternType": "string",
+      "replacement": "export const metadata = { title: '...' }",
+      "severity": "info",
+      "filePattern": "*.tsx",
+      "docs": "https://nextjs.org/docs/app/building-your-application/optimizing/metadata"
+    }
+  ]
+}

package/rules/node-22.json

@@ -0,0 +1,156 @@
+{
+  "name": "node-22",
+  "description": "Node.js 22+ modern standards",
+  "docs": "https://nodejs.org/docs/latest/api/",
+  "alwaysApply": true,
+  "detect": {
+    "packageJson": [],
+    "imports": [],
+    "patterns": []
+  },
+  "rules": [
+    {
+      "id": "node-no-require",
+      "name": "Use ESM imports",
+      "description": "Prefer ES modules over CommonJS require()",
+      "pattern": "require(",
+      "patternType": "string",
+      "replacement": "import ... from '...'",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/esm.html"
+    },
+    {
+      "id": "node-no-callback-hell",
+      "name": "Avoid callback nesting",
+      "description": "Use async/await instead of nested callbacks",
+      "pattern": ", (err,",
+      "patternType": "string",
+      "replacement": "await promisify() or native async methods",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/util.html#utilpromisifyoriginal"
+    },
+    {
+      "id": "node-no-process-exit",
+      "name": "Avoid process.exit()",
+      "description": "Let Node exit naturally, or use proper shutdown handlers",
+      "pattern": "process.exit(",
+      "patternType": "string",
+      "replacement": "Graceful shutdown with cleanup",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/process.html#processexitcode"
+    },
+    {
+      "id": "node-use-fetch",
+      "name": "Use native fetch()",
+      "description": "Node 18+ has built-in fetch, no need for node-fetch",
+      "pattern": "node-fetch",
+      "patternType": "string",
+      "replacement": "Use globalThis.fetch()",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/globals.html#fetch"
+    },
+    {
+      "id": "node-use-crypto-randomuuid",
+      "name": "Use crypto.randomUUID()",
+      "description": "Node 19+ has built-in UUID generation",
+      "pattern": "uuid",
+      "patternType": "string",
+      "replacement": "crypto.randomUUID()",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/crypto.html#cryptorandomuuidoptions"
+    },
+    {
+      "id": "node-use-structuredclone",
+      "name": "Use structuredClone()",
+      "description": "Node 17+ has built-in deep cloning",
+      "pattern": "JSON.parse(JSON.stringify(",
+      "patternType": "string",
+      "replacement": "structuredClone(obj)",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": "https://developer.mozilla.org/en-US/docs/Web/API/structuredClone"
+    },
+    {
+      "id": "node-no-sync-fs",
+      "name": "Avoid sync fs methods",
+      "description": "Synchronous methods block the event loop",
+      "pattern": "Sync(",
+      "patternType": "string",
+      "replacement": "Use fs/promises: readFile, writeFile, etc.",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://nodejs.org/api/fs.html#fspromisesapi"
+    },
+    {
+      "id": "node-no-or-fallback-data",
+      "name": "Avoid || fallback for data",
+      "description": "Using || for defaults can hide bugs (0, '', false become fallback). Use ?? or explicit checks.",
+      "pattern": "|| data.",
+      "patternType": "string",
+      "replacement": "?? or explicit null/undefined check",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Operators/Nullish_coalescing"
+    },
+    {
+      "id": "node-no-or-fallback-response",
+      "name": "Avoid || fallback for response",
+      "description": "Using || for defaults can mask empty responses and cause silent failures",
+      "pattern": "|| response.",
+      "patternType": "string",
+      "replacement": "?? or explicit null/undefined check",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Operators/Nullish_coalescing"
+    },
+    {
+      "id": "node-no-or-fallback-result",
+      "name": "Avoid || fallback for result",
+      "description": "Using || can hide zero values or empty strings. Use ?? for null/undefined only.",
+      "pattern": "|| result",
+      "patternType": "string",
+      "replacement": "?? or explicit null/undefined check",
+      "severity": "warning",
+      "filePattern": "*.js",
+      "docs": "https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Operators/Nullish_coalescing"
+    },
+    {
+      "id": "node-no-cyrillic-comments",
+      "name": "No Cyrillic in comments",
+      "description": "Comments should be in English for international collaboration",
+      "pattern": "//.*[а-яА-ЯёЁ]",
+      "patternType": "regex",
+      "replacement": "Translate comment to English",
+      "severity": "info",
+      "filePattern": "*.js",
+      "docs": ""
+    },
+    {
+      "id": "node-no-html-comments",
+      "name": "No comments in HTML",
+      "description": "HTML comments are visible in source and increase file size",
+      "pattern": "<!--",
+      "patternType": "string",
+      "replacement": "Remove comment or use server-side templating",
+      "severity": "warning",
+      "filePattern": "*.html",
+      "docs": ""
+    },
+    {
+      "id": "node-no-public-js-comments",
+      "name": "No comments in public JS",
+      "description": "Comments in public JS expose implementation details and increase bundle size",
+      "pattern": "//",
+      "patternType": "string",
+      "replacement": "Remove comments or use build-time stripping",
+      "severity": "info",
+      "filePattern": "**/public/**/*.js",
+      "docs": ""
+    }
+  ]
+}

package/rules/react-18.json

@@ -0,0 +1,87 @@
+{
+  "name": "react-18",
+  "description": "React 18+ component standards",
+  "docs": "https://react.dev/",
+  "detect": {
+    "packageJson": [
+      "react",
+      "react-dom"
+    ],
+    "imports": [
+      "from 'react'",
+      "from \"react\""
+    ],
+    "patterns": [
+      "useState",
+      "useEffect"
+    ]
+  },
+  "rules": [
+    {
+      "id": "react-no-class-components",
+      "name": "Use functional components",
+      "description": "Prefer functional components over class components in React 18+",
+      "pattern": "extends Component",
+      "patternType": "string",
+      "replacement": "function Component() { ... } or const Component = () => { ... }",
+      "severity": "warning",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/learn/your-first-component"
+    },
+    {
+      "id": "react-no-default-export",
+      "name": "Use named exports",
+      "description": "Prefer named exports for better refactoring support",
+      "pattern": "export default",
+      "patternType": "string",
+      "replacement": "export function/const ComponentName",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/learn/importing-and-exporting-components"
+    },
+    {
+      "id": "react-useeffect-deps",
+      "name": "useEffect without deps array",
+      "description": "useEffect should have a dependency array to prevent infinite loops",
+      "pattern": "useEffect\\([^)]+\\)\\s*$",
+      "patternType": "regex",
+      "replacement": "useEffect(() => { ... }, [dependencies])",
+      "severity": "warning",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/reference/react/useEffect"
+    },
+    {
+      "id": "react-no-inline-styles",
+      "name": "Avoid inline styles",
+      "description": "Use CSS modules or styled-components instead of inline styles",
+      "pattern": "style={{",
+      "patternType": "string",
+      "replacement": "className={styles.myClass}",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/learn/passing-props-to-a-component"
+    },
+    {
+      "id": "react-no-dangerouslysetinnerhtml",
+      "name": "Avoid dangerouslySetInnerHTML",
+      "description": "Can lead to XSS vulnerabilities, use with caution",
+      "pattern": "dangerouslySetInnerHTML",
+      "patternType": "string",
+      "replacement": "Parse and render safe content",
+      "severity": "error",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/reference/react-dom/components/common#dangerously-setting-the-inner-html"
+    },
+    {
+      "id": "react-key-prop",
+      "name": "Array key should not use index",
+      "description": "Using array index as key can cause issues with reordering",
+      "pattern": "key={index}",
+      "patternType": "string",
+      "replacement": "key={item.id} or unique identifier",
+      "severity": "warning",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/learn/rendering-lists#keeping-list-items-in-order-with-key"
+    }
+  ]
+}

package/rules/react-19.json

@@ -0,0 +1,76 @@
+{
+  "name": "react-19",
+  "description": "React 19+ with Server Components and Actions",
+  "docs": "https://react.dev/",
+  "detect": {
+    "packageJson": [
+      "react"
+    ],
+    "imports": [
+      "from 'react'",
+      "from \"react\""
+    ],
+    "patterns": [
+      "use client",
+      "use server",
+      "useActionState"
+    ]
+  },
+  "rules": [
+    {
+      "id": "react19-use-action-state",
+      "name": "Use useActionState for forms",
+      "description": "Prefer useActionState over useState for form handling",
+      "pattern": "useState.*handleSubmit",
+      "patternType": "regex",
+      "replacement": "useActionState((prev, formData) => { ... })",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/reference/react/useActionState"
+    },
+    {
+      "id": "react19-use-optimistic",
+      "name": "Consider useOptimistic for instant UI",
+      "description": "Use useOptimistic for optimistic updates",
+      "pattern": "setLoading(true)",
+      "patternType": "string",
+      "replacement": "useOptimistic() for instant feedback",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/reference/react/useOptimistic"
+    },
+    {
+      "id": "react19-no-forwardref",
+      "name": "forwardRef is deprecated",
+      "description": "In React 19, ref is passed as a prop, forwardRef not needed",
+      "pattern": "forwardRef",
+      "patternType": "string",
+      "replacement": "function Component({ ref, ...props })",
+      "severity": "warning",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/blog/2024/04/25/react-19"
+    },
+    {
+      "id": "react19-no-use-memo-everywhere",
+      "name": "React Compiler handles memoization",
+      "description": "With React Compiler, manual useMemo/useCallback often unnecessary",
+      "pattern": "useMemo(",
+      "patternType": "string",
+      "replacement": "Let React Compiler optimize, remove if not needed",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/learn/react-compiler"
+    },
+    {
+      "id": "react19-use-form-status",
+      "name": "Use useFormStatus for pending state",
+      "description": "useFormStatus provides pending state for forms",
+      "pattern": "isSubmitting",
+      "patternType": "string",
+      "replacement": "const { pending } = useFormStatus()",
+      "severity": "info",
+      "filePattern": "*.jsx",
+      "docs": "https://react.dev/reference/react-dom/hooks/useFormStatus"
+    }
+  ]
+}