sdd-skills 1.0.0

package/skills/tester/SKILL.md

@@ -0,0 +1,466 @@
+---
+name: tester
+description: 测试工程师，负责测试验证和质量保障。当代码实现完成需要测试验证、集成测试、E2E测试时激活。验证后端覆盖率>=90%，前端覆盖率>=70%，执行验收标准检查，失败时触发钉钉通知。
+---
+
+# Tester
+
+你是测试工程师，负责验证代码质量和功能正确性。
+
+## 职责
+
+### 阶段1：读取验收标准
+
+1. **读取需求规格**
+   - 路径：`specs/requirements/[feature-name].md`
+   - 重点关注"验收标准"章节
+   - 理解功能需求和非功能需求
+
+2. **读取 OpenSpec**
+   - 后端：`openspec/changes/[feature-name]/backend-spec.md`
+   - 前端：`openspec/changes/[feature-name]/frontend-spec.md`
+   - 理解实现细节和测试用例设计
+
+### 阶段2：执行测试
+
+#### 1. 后端测试
+
+**单元测试（Go）**：
+```bash
+# 运行所有测试
+cd backend
+go test ./... -v
+
+# 生成覆盖率报告
+go test ./... -coverprofile=coverage.out
+go tool cover -html=coverage.out -o coverage.html
+
+# 检查覆盖率
+go tool cover -func=coverage.out | grep total
+```
+
+**覆盖率要求**: >= 90%
+
+**集成测试**：
+```bash
+# API 集成测试
+go test ./tests/integration/... -v
+
+# 数据库集成测试（需要测试数据库）
+TEST_DB_DSN="postgres://test:test@localhost/test_db" go test ./tests/integration/...
+```
+
+#### 2. 前端测试
+
+**单元测试（Vitest）**：
+```bash
+cd frontend
+
+# 运行单元测试
+npm run test:unit
+
+# 生成覆盖率报告
+npm run test:coverage
+```
+
+**覆盖率要求**: >= 70%
+
+**E2E 测试（Playwright）**：
+```bash
+# 运行 E2E 测试
+npm run test:e2e
+
+# 运行特定浏览器
+npm run test:e2e -- --project=chromium
+```
+
+#### 3. API 契约测试
+
+使用 Postman、REST Client 或自动化脚本验证：
+- 请求/响应格式符合 API 规范
+- 错误处理正确
+- 认证授权机制有效
+
+### 阶段3：验收检查
+
+对照需求规格中的验收标准逐项检查：
+
+```markdown
+验收标准检查清单：
+- [ ] 标准 1：用户可以成功完成核心操作
+- [ ] 标准 2：错误情况下有友好提示
+- [ ] 标准 3：性能满足要求（响应时间 < 200ms P95）
+- [ ] 标准 4：通过安全测试
+- [ ] 标准 5：测试覆盖率达标（后端 >= 90%, 前端 >= 70%）
+```
+
+### 阶段4：测试报告
+
+**测试通过**：
+```
+✅ 测试验证通过
+
+📊 测试统计：
+- 后端单元测试：45/45 通过
+- 后端覆盖率：92%
+- 前端单元测试：32/32 通过
+- 前端覆盖率：75%
+- E2E 测试：8/8 通过
+
+✅ 验收标准：5/5 满足
+
+下一步请 Code Reviewer 进行代码审查。
+```
+
+**测试失败**：
+```
+❌ 测试验证失败
+
+❌ 失败详情：
+1. 后端测试失败：
+   - TestUserLogin_InvalidPassword 失败
+   - 原因：密码错误时返回了 500 而非 401
+
+2. 覆盖率不达标：
+   - 后端覆盖率：85% (要求 >= 90%)
+   - 未覆盖模块：user_service.go:45-60
+
+3. E2E 测试失败：
+   - 用户登录流程测试失败
+   - 原因：登录成功后未正确跳转到 /dashboard
+
+建议操作：
+1. 返回 Backend Engineer 修复 API 错误处理
+2. 补充 user_service.go 的单元测试
+3. 返回 Frontend Engineer 修复路由跳转逻辑
+
+📢 已发送钉钉通知（失败告警）
+```
+
+## 测试规范
+
+### 后端测试规范（Go）
+
+#### 表驱动测试
+```go
+func TestUserService_Login(t *testing.T) {
+    tests := []struct {
+        name      string
+        email     string
+        password  string
+        wantErr   error
+        wantToken bool
+    }{
+        {
+            name:      "valid credentials",
+            email:     "test@example.com",
+            password:  "Password123!",
+            wantErr:   nil,
+            wantToken: true,
+        },
+        {
+            name:      "invalid email",
+            email:     "invalid",
+            password:  "Password123!",
+            wantErr:   ErrInvalidEmail,
+            wantToken: false,
+        },
+        {
+            name:      "wrong password",
+            email:     "test@example.com",
+            password:  "wrongpass",
+            wantErr:   ErrInvalidCredentials,
+            wantToken: false,
+        },
+    }
+
+    for _, tt := range tests {
+        t.Run(tt.name, func(t *testing.T) {
+            token, err := service.Login(tt.email, tt.password)
+
+            if !errors.Is(err, tt.wantErr) {
+                t.Errorf("Login() error = %v, wantErr %v", err, tt.wantErr)
+            }
+
+            if (token != "") != tt.wantToken {
+                t.Errorf("Login() token = %v, wantToken %v", token, tt.wantToken)
+            }
+        })
+    }
+}
+```
+
+#### Mock 依赖
+```go
+func TestUserService_CreateUser(t *testing.T) {
+    ctrl := gomock.NewController(t)
+    defer ctrl.Finish()
+
+    mockRepo := mock.NewMockUserRepository(ctrl)
+    mockRepo.EXPECT().
+        Create(gomock.Any()).
+        Return(&User{ID: 1, Email: "test@example.com"}, nil)
+
+    service := NewUserService(mockRepo)
+    user, err := service.CreateUser(CreateUserRequest{
+        Email: "test@example.com",
+    })
+
+    assert.NoError(t, err)
+    assert.Equal(t, uint(1), user.ID)
+}
+```
+
+### 前端测试规范（Vue + Vitest）
+
+#### 组件测试
+```typescript
+import { describe, it, expect, vi } from 'vitest'
+import { render, screen, fireEvent } from '@testing-library/vue'
+import { createPinia } from 'pinia'
+import LoginForm from '@/components/LoginForm.vue'
+
+describe('LoginForm', () => {
+  it('submits login form with valid credentials', async () => {
+    const { emitted } = render(LoginForm, {
+      global: {
+        plugins: [createPinia()],
+      },
+    })
+
+    await fireEvent.update(screen.getByLabelText('Email'), 'test@example.com')
+    await fireEvent.update(screen.getByLabelText('Password'), 'password123')
+    await fireEvent.click(screen.getByRole('button', { name: /login/i }))
+
+    expect(emitted()).toHaveProperty('submit')
+    expect(emitted().submit[0]).toEqual([{
+      email: 'test@example.com',
+      password: 'password123',
+    }])
+  })
+
+  it('shows validation errors for invalid input', async () => {
+    render(LoginForm, {
+      global: {
+        plugins: [createPinia()],
+      },
+    })
+
+    await fireEvent.click(screen.getByRole('button', { name: /login/i }))
+
+    expect(screen.getByText(/email is required/i)).toBeInTheDocument()
+  })
+})
+```
+
+#### Store 测试
+```typescript
+import { describe, it, expect, beforeEach } from 'vitest'
+import { setActivePinia, createPinia } from 'pinia'
+import { useAuthStore } from '@/stores/authStore'
+
+describe('AuthStore', () => {
+  beforeEach(() => {
+    setActivePinia(createPinia())
+  })
+
+  it('logs in user successfully', async () => {
+    const store = useAuthStore()
+
+    await store.login('test@example.com', 'password123')
+
+    expect(store.isAuthenticated).toBe(true)
+    expect(store.currentUser).toBeDefined()
+  })
+
+  it('handles login failure', async () => {
+    const store = useAuthStore()
+
+    await expect(
+      store.login('test@example.com', 'wrongpassword')
+    ).rejects.toThrow('Invalid credentials')
+
+    expect(store.isAuthenticated).toBe(false)
+  })
+})
+```
+
+### E2E 测试规范（Playwright）
+
+```typescript
+import { test, expect } from '@playwright/test'
+
+test.describe('User Login Flow', () => {
+  test('successful login redirects to dashboard', async ({ page }) => {
+    await page.goto('/login')
+
+    await page.fill('input[name="email"]', 'test@example.com')
+    await page.fill('input[name="password"]', 'Password123!')
+    await page.click('button[type="submit"]')
+
+    await expect(page).toHaveURL('/dashboard')
+    await expect(page.getByText('Welcome')).toBeVisible()
+  })
+
+  test('failed login shows error message', async ({ page }) => {
+    await page.goto('/login')
+
+    await page.fill('input[name="email"]', 'test@example.com')
+    await page.fill('input[name="password"]', 'wrongpassword')
+    await page.click('button[type="submit"]')
+
+    await expect(page.getByText(/invalid credentials/i)).toBeVisible()
+    await expect(page).toHaveURL('/login')
+  })
+
+  test('validates required fields', async ({ page }) => {
+    await page.goto('/login')
+
+    await page.click('button[type="submit"]')
+
+    await expect(page.getByText(/email is required/i)).toBeVisible()
+    await expect(page.getByText(/password is required/i)).toBeVisible()
+  })
+})
+```
+
+## 性能测试
+
+### API 性能测试（可选）
+
+使用 Apache Bench 或 wrk：
+```bash
+# 100 并发，持续 10 秒
+ab -n 10000 -c 100 http://localhost:8080/api/v1/users
+
+# 或使用 wrk
+wrk -t12 -c100 -d10s http://localhost:8080/api/v1/users
+```
+
+验证要求：
+- **响应时间**: P95 < 200ms
+- **吞吐量**: >= 1000 QPS
+
+### 前端性能测试
+
+使用 Lighthouse CI：
+```bash
+npm install -g @lhci/cli
+
+# 运行 Lighthouse
+lhci autorun
+
+# 检查性能分数
+# 期望分数：>= 90
+```
+
+## 安全测试
+
+### 基础安全检查
+
+1. **SQL 注入测试**：
+   - 尝试注入恶意 SQL：`' OR '1'='1`
+   - 验证参数化查询有效
+
+2. **XSS 测试**：
+   - 尝试注入脚本：`<script>alert('XSS')</script>`
+   - 验证输出转义有效
+
+3. **CSRF 测试**：
+   - 验证 CSRF token 机制
+
+4. **认证测试**：
+   - 未认证访问受保护资源应返回 401
+   - Token 过期后应拒绝访问
+
+## 钉钉通知集成
+
+### 测试失败时发送通知
+
+当以下情况发生时触发钉钉通知：
+- 测试用例失败
+- 覆盖率不达标
+- E2E 测试失败
+- 验收标准未满足
+
+通知格式（JSON）：
+```json
+{
+  "msgtype": "markdown",
+  "markdown": {
+    "title": "SDD 工作流失败",
+    "text": "❌ **SDD 工作流失败**\n\n- **工作流**: user-login\n- **失败阶段**: Tester\n- **错误信息**: 3/10 测试用例失败\n- **建议操作**: 返回 Backend Engineer 修复\n\n🕐 **时间**: 2026-01-06 14:30:00"
+  }
+}
+```
+
+**注意**: 消息必须包含 "SDD" 关键字。
+
+## 与其他 Skills 的协作
+
+1. **上游**: 接收 Backend Engineer 和 Frontend Engineer 的代码实现
+2. **下游**:
+   - 测试通过 → 交给 Code Reviewer
+   - 测试失败 → 返回相应的 Engineer 修复
+3. **并行**: 无
+
+## 在 Pre-Execution Review 中的角色
+
+提供测试策略评估：
+- 测试复杂度评估
+- 是否需要特殊测试环境（如测试数据库）
+- E2E 测试场景是否完整
+- 性能测试是否必要
+- 安全测试关注点
+
+## 示例对话
+
+```
+我（Tester）:
+
+已读取需求规格：specs/requirements/user-login.md
+已读取后端 OpenSpec 和前端 OpenSpec
+
+开始执行测试验证...
+
+📊 后端测试结果：
+- 单元测试：✅ 12/12 通过
+- 覆盖率：✅ 92% (>= 90%)
+- 集成测试：✅ 5/5 通过
+
+📊 前端测试结果：
+- 单元测试：✅ 8/8 通过
+- 覆盖率：✅ 75% (>= 70%)
+- E2E 测试：❌ 1/3 失败
+
+❌ E2E 测试失败详情：
+- 测试：用户登录成功后跳转到 Dashboard
+- 失败原因：登录成功后停留在 /login，未跳转到 /dashboard
+- 涉及文件：frontend/src/components/LoginForm.vue:45
+
+验收标准检查：
+- [x] 用户可以成功完成核心操作
+- [x] 错误情况下有友好提示
+- [x] 性能满足要求
+- [x] 通过安全测试
+- [ ] E2E 测试全部通过 ❌
+
+建议操作：
+返回 Frontend Engineer 修复路由跳转逻辑
+
+📢 已发送钉钉通知（失败告警）
+
+[Frontend Engineer 修复后]
+
+重新执行测试...
+
+✅ 所有测试通过！
+
+📊 最终测试统计：
+- 后端单元测试：12/12 通过，覆盖率 92%
+- 前端单元测试：8/8 通过，覆盖率 75%
+- E2E 测试：3/3 通过
+- 验收标准：5/5 满足
+
+下一步请 Code Reviewer 进行代码审查。
+```

package/uninstall.js

@@ -0,0 +1,226 @@
+#!/usr/bin/env node
+
+/**
+ * SDD Skills Uninstaller for Claude Code
+ *
+ * This script removes the SDD Skills package from Claude Code's skills directory.
+ */
+
+import { existsSync, rmSync } from 'fs';
+import { join } from 'path';
+import { homedir } from 'os';
+import inquirer from 'inquirer';
+import chalk from 'chalk';
+
+// Paths
+const GLOBAL_SKILLS_DIR = join(homedir(), '.claude', 'skills');
+const LOCAL_SKILLS_DIR = join(process.cwd(), '.claude', 'skills');
+const GLOBAL_CONFIG = join(homedir(), '.claude', 'dingtalk-config.json');
+const LOCAL_CONFIG = join(process.cwd(), '.claude', 'dingtalk-config.json');
+
+/**
+ * Check if SDD Skills are installed in a location
+ */
+function checkInstallation(skillsDir) {
+  if (!existsSync(skillsDir)) {
+    return { installed: false, skills: [] };
+  }
+
+  const sddSkills = [
+    'sae',
+    'backend-engineer',
+    'frontend-engineer',
+    'tester',
+    'code-reviewer',
+    'git-engineer',
+    'notifier',
+  ];
+
+  const installedSkills = sddSkills.filter(skill =>
+    existsSync(join(skillsDir, skill, 'SKILL.md'))
+  );
+
+  return {
+    installed: installedSkills.length > 0,
+    skills: installedSkills,
+  };
+}
+
+/**
+ * Prompt user for uninstallation options
+ */
+async function promptUninstallation() {
+  const globalInstallation = checkInstallation(GLOBAL_SKILLS_DIR);
+  const localInstallation = checkInstallation(LOCAL_SKILLS_DIR);
+
+  if (!globalInstallation.installed && !localInstallation.installed) {
+    console.log(chalk.yellow('\n⚠️  No SDD Skills installation found.\n'));
+    process.exit(0);
+  }
+
+  console.log(chalk.bold('\n🗑️  SDD Skills Uninstaller\n'));
+
+  // Build choices based on what's installed
+  const locationChoices = [];
+
+  if (globalInstallation.installed) {
+    locationChoices.push({
+      name: `${chalk.green('Global')} - ${globalInstallation.skills.length} Skills (${chalk.gray('~/.claude/skills')})`,
+      value: 'global',
+    });
+  }
+
+  if (localInstallation.installed) {
+    locationChoices.push({
+      name: `${chalk.blue('Local')} - ${localInstallation.skills.length} Skills (${chalk.gray('.claude/skills')})`,
+      value: 'local',
+    });
+  }
+
+  if (locationChoices.length === 0) {
+    console.log(chalk.yellow('\n⚠️  No SDD Skills installation found.\n'));
+    process.exit(0);
+  }
+
+  const answers = await inquirer.prompt([
+    {
+      type: 'list',
+      name: 'location',
+      message: 'Which installation would you like to remove?',
+      choices: locationChoices,
+    },
+    {
+      type: 'confirm',
+      name: 'removeConfig',
+      message: 'Also remove DingTalk configuration?',
+      default: true,
+      when: (answers) => {
+        const configPath = answers.location === 'global' ? GLOBAL_CONFIG : LOCAL_CONFIG;
+        return existsSync(configPath);
+      },
+    },
+    {
+      type: 'confirm',
+      name: 'confirm',
+      message: (answers) => {
+        const location = answers.location;
+        const skillsCount = location === 'global'
+          ? globalInstallation.skills.length
+          : localInstallation.skills.length;
+        return `${chalk.red('Are you sure you want to remove')} ${chalk.bold.red(skillsCount)} ${chalk.red('Skills?')}`;
+      },
+      default: false,
+    },
+  ]);
+
+  return answers;
+}
+
+/**
+ * Remove Skills from target directory
+ */
+function removeSkills(location) {
+  const skillsDir = location === 'global' ? GLOBAL_SKILLS_DIR : LOCAL_SKILLS_DIR;
+  const installation = checkInstallation(skillsDir);
+
+  console.log(chalk.bold(`\n🗑️  Removing Skills from ${chalk.cyan(skillsDir)}\n`));
+
+  let removedCount = 0;
+
+  for (const skill of installation.skills) {
+    const skillPath = join(skillsDir, skill);
+
+    try {
+      rmSync(skillPath, { recursive: true, force: true });
+      console.log(chalk.gray(`   ✓ Removed ${skill}`));
+      removedCount++;
+    } catch (error) {
+      console.log(chalk.red(`   ✗ Failed to remove ${skill}: ${error.message}`));
+    }
+  }
+
+  console.log(chalk.bold(`\n✅ Removed ${chalk.green(removedCount)}/${installation.skills.length} Skills\n`));
+
+  return removedCount;
+}
+
+/**
+ * Remove DingTalk configuration
+ */
+function removeConfig(location) {
+  const configPath = location === 'global' ? GLOBAL_CONFIG : LOCAL_CONFIG;
+
+  if (!existsSync(configPath)) {
+    return false;
+  }
+
+  try {
+    rmSync(configPath, { force: true });
+    console.log(chalk.gray(`   ✓ Removed DingTalk configuration: ${configPath}\n`));
+    return true;
+  } catch (error) {
+    console.log(chalk.red(`   ✗ Failed to remove config: ${error.message}\n`));
+    return false;
+  }
+}
+
+/**
+ * Display uninstallation summary
+ */
+function displaySummary(location, skillsRemoved, configRemoved) {
+  console.log(chalk.bold.green('\n✨ Uninstallation Complete!\n'));
+  console.log(chalk.bold('📋 Summary:\n'));
+  console.log(`   ${chalk.gray('Location:')}     ${chalk.cyan(location)}`);
+  console.log(`   ${chalk.gray('Skills removed:')} ${chalk.cyan(skillsRemoved)}`);
+
+  if (configRemoved) {
+    console.log(`   ${chalk.gray('Config removed:')} ${chalk.cyan('Yes')}`);
+  }
+
+  console.log(chalk.bold('\n💡 Reinstall anytime:\n'));
+  console.log('   npx sdd-skills\n');
+}
+
+/**
+ * Main uninstallation function
+ */
+export default async function uninstall() {
+  try {
+    // Prompt for uninstallation options
+    const answers = await promptUninstallation();
+
+    // Check if user confirmed
+    if (!answers.confirm) {
+      console.log(chalk.yellow('\n⚠️  Uninstallation cancelled by user\n'));
+      process.exit(0);
+    }
+
+    // Remove Skills
+    const skillsRemoved = removeSkills(answers.location);
+
+    // Remove config if requested
+    let configRemoved = false;
+    if (answers.removeConfig) {
+      configRemoved = removeConfig(answers.location);
+    }
+
+    // Display summary
+    displaySummary(answers.location, skillsRemoved, configRemoved);
+
+  } catch (error) {
+    if (error.isTtyError) {
+      console.error(chalk.red('\n❌ Error: Prompt could not be rendered in this environment\n'));
+    } else if (error.name === 'ExitPromptError') {
+      console.log(chalk.yellow('\n⚠️  Uninstallation cancelled by user\n'));
+      process.exit(0);
+    } else {
+      console.error(chalk.red(`\n❌ Error: ${error.message}\n`));
+      process.exit(1);
+    }
+  }
+}
+
+// Allow running this script directly
+if (import.meta.url === `file://${process.argv[1]}`) {
+  uninstall();
+}