sinapse-ai 7.1.0 → 7.3.0

package/squads/claude-code-mastery/templates/github-actions-claude-ci.yml

@@ -0,0 +1,348 @@
+# GitHub Actions Workflow — CI with Claude Code
+# Squad: claude-code-mastery
+# Template: Drop into .github/workflows/ and configure secrets
+#
+# Prerequisites:
+#   1. Store ANTHROPIC_API_KEY in GitHub repository secrets
+#   2. Standard CI tools (Node.js, npm) available
+#
+# Features:
+#   - Standard CI checks (lint, typecheck, test)
+#   - Claude Code quality analysis on changed files
+#   - Test coverage gap detection
+#   - Auto-generate missing tests (optional, manual trigger)
+
+name: CI with Claude Code
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main, develop]
+  workflow_dispatch:
+    inputs:
+      generate_tests:
+        description: 'Auto-generate missing tests'
+        required: false
+        type: boolean
+        default: false
+      quality_check:
+        description: 'Run Claude quality analysis'
+        required: false
+        type: boolean
+        default: true
+
+permissions:
+  contents: write
+  pull-requests: write
+  checks: write
+
+jobs:
+  # -----------------------------------------------------------------------
+  # Job 1: Standard CI checks (always runs)
+  # -----------------------------------------------------------------------
+  standard-ci:
+    name: Lint, Typecheck, Test
+    runs-on: ubuntu-latest
+    timeout-minutes: 15
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          cache: 'npm'
+
+      - name: Install Dependencies
+        run: npm ci
+
+      - name: Lint
+        run: npm run lint
+
+      - name: Type Check
+        run: npm run typecheck
+
+      - name: Test
+        run: npm test -- --coverage --ci
+        env:
+          CI: true
+
+      - name: Upload Coverage
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: coverage-report
+          path: coverage/
+          retention-days: 7
+
+  # -----------------------------------------------------------------------
+  # Job 2: Claude Code quality analysis (on PRs and manual trigger)
+  # -----------------------------------------------------------------------
+  claude-quality:
+    name: Claude Quality Analysis
+    needs: standard-ci
+    if: |
+      github.event_name == 'pull_request' ||
+      (github.event_name == 'workflow_dispatch' && github.event.inputs.quality_check == 'true')
+    runs-on: ubuntu-latest
+    timeout-minutes: 20
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Install Claude Code
+        run: npm install -g @anthropic-ai/claude-code
+
+      - name: Identify Changed Source Files
+        id: changed-files
+        run: |
+          if [ "${{ github.event_name }}" = "pull_request" ]; then
+            BASE="${{ github.base_ref }}"
+          else
+            BASE="HEAD~1"
+          fi
+
+          # Get changed source files (exclude tests, configs, docs)
+          FILES=$(git diff --name-only origin/$BASE...HEAD 2>/dev/null || git diff --name-only $BASE...HEAD \
+            | grep -E '\.(ts|tsx|js|jsx|py|rs|go)$' \
+            | grep -v -E '\.(test|spec|stories)\.' \
+            | grep -v -E '(node_modules|dist|build|\.next)/' \
+            | head -10)
+
+          echo "files<<EOF" >> $GITHUB_OUTPUT
+          echo "$FILES" >> $GITHUB_OUTPUT
+          echo "EOF" >> $GITHUB_OUTPUT
+
+          FILE_COUNT=$(echo "$FILES" | grep -c . || echo "0")
+          echo "count=$FILE_COUNT" >> $GITHUB_OUTPUT
+
+      - name: Run Quality Analysis
+        if: steps.changed-files.outputs.count > 0
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+        run: |
+          # Build file contents for analysis (limit to 30KB total)
+          FILE_CONTENTS=""
+          TOTAL_SIZE=0
+          MAX_SIZE=30000
+
+          for FILE in ${{ steps.changed-files.outputs.files }}; do
+            if [ -f "$FILE" ]; then
+              FILE_SIZE=$(wc -c < "$FILE")
+              NEW_TOTAL=$((TOTAL_SIZE + FILE_SIZE))
+              if [ $NEW_TOTAL -lt $MAX_SIZE ]; then
+                FILE_CONTENTS="$FILE_CONTENTS
+          --- FILE: $FILE ---
+          $(cat "$FILE")
+          --- END FILE ---
+          "
+                TOTAL_SIZE=$NEW_TOTAL
+              fi
+            fi
+          done
+
+          PROMPT="Analyze these source files for code quality. For each file, check:
+          1. Code complexity (functions over 30 lines, deep nesting)
+          2. Missing error handling
+          3. Potential null/undefined issues
+          4. Performance concerns (N+1 queries, unnecessary re-renders)
+          5. Security issues (injection, XSS, exposed secrets)
+          6. Missing input validation
+
+          Output JSON:
+          {
+            \"score\": 1-10,
+            \"files\": [
+              {
+                \"file\": \"path\",
+                \"issues\": [
+                  {\"severity\": \"high|medium|low\", \"line\": N, \"issue\": \"description\", \"fix\": \"suggestion\"}
+                ]
+              }
+            ],
+            \"summary\": \"overall assessment\"
+          }
+
+          Files:
+          $FILE_CONTENTS"
+
+          claude -p \
+            --output-format text \
+            --max-turns 3 \
+            "$PROMPT" > /tmp/quality-results.txt 2>/dev/null || true
+
+      - name: Post Quality Results
+        if: steps.changed-files.outputs.count > 0 && github.event_name == 'pull_request'
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const fs = require('fs');
+            let results = '';
+            try {
+              results = fs.readFileSync('/tmp/quality-results.txt', 'utf8');
+            } catch {
+              results = 'Quality analysis could not be completed.';
+            }
+
+            const { data: comments } = await github.rest.issues.listComments({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              issue_number: context.issue.number,
+            });
+
+            const existing = comments.find(c =>
+              c.body.includes('<!-- claude-quality-analysis -->')
+            );
+
+            const body = `<!-- claude-quality-analysis -->
+            ## Code Quality Analysis
+
+            ${results}
+
+            ---
+            *Analysis by Claude Code CI*`;
+
+            if (existing) {
+              await github.rest.issues.updateComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                comment_id: existing.id,
+                body: body,
+              });
+            } else {
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                issue_number: context.issue.number,
+                body: body,
+              });
+            }
+
+  # -----------------------------------------------------------------------
+  # Job 3: Auto-generate missing tests (manual trigger only)
+  # -----------------------------------------------------------------------
+  generate-tests:
+    name: Generate Missing Tests
+    needs: standard-ci
+    if: |
+      github.event_name == 'workflow_dispatch' &&
+      github.event.inputs.generate_tests == 'true'
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          cache: 'npm'
+
+      - name: Install Dependencies
+        run: |
+          npm ci
+          npm install -g @anthropic-ai/claude-code
+
+      - name: Find Files Without Tests
+        id: untested
+        run: |
+          # Find source files that lack corresponding test files
+          UNTESTED=""
+          for FILE in $(find src -name '*.ts' -o -name '*.tsx' | grep -v -E '\.(test|spec|stories|d)\.' | grep -v __tests__ | head -5); do
+            TEST_FILE="${FILE%.ts}.test.ts"
+            TEST_FILE2="${FILE%.tsx}.test.tsx"
+            DIR_TEST="$(dirname "$FILE")/__tests__/$(basename "${FILE%.ts}").test.ts"
+            if [ ! -f "$TEST_FILE" ] && [ ! -f "$TEST_FILE2" ] && [ ! -f "$DIR_TEST" ]; then
+              UNTESTED="$UNTESTED $FILE"
+            fi
+          done
+
+          echo "files=$UNTESTED" >> $GITHUB_OUTPUT
+          echo "Found untested files: $UNTESTED"
+
+      - name: Generate Tests
+        if: steps.untested.outputs.files != ''
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+        run: |
+          for FILE in ${{ steps.untested.outputs.files }}; do
+            echo "Generating tests for: $FILE"
+
+            claude -p \
+              --output-format text \
+              --max-turns 5 \
+              --dangerously-skip-permissions \
+              "Generate comprehensive unit tests for the file '$FILE'. Requirements:
+              - Use Jest and React Testing Library (if React component)
+              - Test all exported functions/components
+              - Include edge cases and error scenarios
+              - Follow existing test patterns in this project
+              - Write the test file to the co-located path (same directory, .test.ts extension)
+              - Do NOT modify the source file
+              Read the source file first, then write the test file." || true
+          done
+
+      - name: Verify Generated Tests
+        run: |
+          # Run only newly generated test files
+          NEW_TESTS=$(git diff --name-only | grep -E '\.(test|spec)\.' || echo "")
+          if [ -n "$NEW_TESTS" ]; then
+            echo "Running generated tests: $NEW_TESTS"
+            npx jest $NEW_TESTS --passWithNoTests || true
+          else
+            echo "No new test files generated"
+          fi
+
+      - name: Create PR with Tests
+        run: |
+          if git diff --quiet; then
+            echo "No test files generated"
+            exit 0
+          fi
+
+          git config user.name "claude-code[bot]"
+          git config user.email "claude-code[bot]@users.noreply.github.com"
+
+          BRANCH="test/auto-generate-$(date +%Y%m%d-%H%M%S)"
+          git checkout -b "$BRANCH"
+          git add '*.test.ts' '*.test.tsx'
+          git commit -m "test: auto-generate unit tests for untested files
+
+          Generated by Claude Code CI pipeline.
+
+          Co-Authored-By: Claude Code <noreply@anthropic.com>"
+
+          git push origin "$BRANCH"
+
+          gh pr create \
+            --title "test: auto-generated unit tests" \
+            --body "## Auto-Generated Tests
+
+          These tests were automatically generated by Claude Code for files lacking test coverage.
+
+          **Action Required:** Review generated tests before merging. Auto-generated tests may need adjustments.
+
+          ### Files Tested
+          $(echo '${{ steps.untested.outputs.files }}' | tr ' ' '\n' | sed 's/^/- /')
+
+          ---
+          *Generated by Claude Code CI*" \
+            --base "${{ github.ref_name }}" \
+            --head "$BRANCH"
+        env:
+          GH_TOKEN: ${{ github.token }}

package/squads/claude-code-mastery/templates/github-actions-claude-review.yml

@@ -0,0 +1,179 @@
+# GitHub Actions Workflow — Automated PR Review with Claude Code
+# Squad: claude-code-mastery
+# Template: Drop into .github/workflows/ and configure secrets
+#
+# Prerequisites:
+#   1. Store ANTHROPIC_API_KEY in GitHub repository secrets
+#   2. Enable "Allow GitHub Actions to create and approve pull requests" in repo settings
+#
+# Usage:
+#   Automatically triggered on PR open/update. Posts a review comment with findings.
+
+name: Claude Code PR Review
+
+on:
+  pull_request:
+    types: [opened, synchronize, ready_for_review]
+    # Optionally limit to specific paths:
+    # paths:
+    #   - 'src/**'
+    #   - 'packages/**'
+
+# Required permissions for posting PR comments
+permissions:
+  contents: read
+  pull-requests: write
+
+# Prevent concurrent reviews on the same PR
+concurrency:
+  group: claude-review-${{ github.event.pull_request.number }}
+  cancel-in-progress: true
+
+jobs:
+  review:
+    name: Claude Code Review
+    # Skip draft PRs and bot-authored PRs
+    if: |
+      !github.event.pull_request.draft &&
+      github.event.pull_request.user.login != 'dependabot[bot]' &&
+      github.event.pull_request.user.login != 'claude-code[bot]'
+    runs-on: ubuntu-latest
+    timeout-minutes: 15
+
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Install Claude Code
+        run: npm install -g @anthropic-ai/claude-code
+
+      - name: Get PR Context
+        id: pr-context
+        run: |
+          # Get the diff between base and head
+          git diff origin/${{ github.base_ref }}...HEAD > /tmp/pr-diff.txt
+          DIFF_SIZE=$(wc -c < /tmp/pr-diff.txt)
+          FILES_CHANGED=$(git diff --name-only origin/${{ github.base_ref }}...HEAD | wc -l)
+          echo "diff_size=$DIFF_SIZE" >> $GITHUB_OUTPUT
+          echo "files_changed=$FILES_CHANGED" >> $GITHUB_OUTPUT
+
+          # Get the file list for context
+          git diff --name-only origin/${{ github.base_ref }}...HEAD > /tmp/files-changed.txt
+
+      - name: Skip Large PRs
+        if: steps.pr-context.outputs.diff_size > 200000
+        run: |
+          echo "PR diff is too large (${{ steps.pr-context.outputs.diff_size }} bytes). Skipping automated review."
+          echo "Consider breaking this PR into smaller changes."
+          exit 0
+
+      - name: Run Claude Review
+        id: review
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+        run: |
+          # Truncate diff to avoid token limits (50KB)
+          head -c 50000 /tmp/pr-diff.txt > /tmp/pr-diff-truncated.txt
+
+          PROMPT="You are a senior code reviewer. Review this pull request diff and provide actionable feedback.
+
+          PR Title: ${{ github.event.pull_request.title }}
+          PR Description: ${{ github.event.pull_request.body }}
+          Files Changed: ${{ steps.pr-context.outputs.files_changed }}
+          Changed Files: $(cat /tmp/files-changed.txt)
+
+          Focus on:
+          1. Bugs and logic errors
+          2. Security vulnerabilities
+          3. Performance issues
+          4. Code quality and maintainability
+          5. Missing error handling
+          6. Test coverage gaps
+
+          Format your response as:
+          ## Summary
+          [1-2 sentence summary]
+
+          ## Findings
+          For each finding:
+          - **[SEVERITY]** File: description
+            Suggestion: how to fix
+
+          Severity levels: CRITICAL, HIGH, MEDIUM, LOW, INFO
+
+          ## Verdict
+          APPROVE / REQUEST_CHANGES / COMMENT
+
+          Diff:
+          $(cat /tmp/pr-diff-truncated.txt)"
+
+          claude -p \
+            --output-format text \
+            --max-turns 3 \
+            "$PROMPT" > /tmp/review-output.txt 2>/tmp/review-error.txt || true
+
+          # Check if review was generated
+          if [ -s /tmp/review-output.txt ]; then
+            echo "review_success=true" >> $GITHUB_OUTPUT
+          else
+            echo "review_success=false" >> $GITHUB_OUTPUT
+            echo "Review generation failed. Error output:"
+            cat /tmp/review-error.txt
+          fi
+
+      - name: Post Review Comment
+        if: steps.review.outputs.review_success == 'true'
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const fs = require('fs');
+            const review = fs.readFileSync('/tmp/review-output.txt', 'utf8');
+
+            // Check for existing Claude review comment and update it
+            const { data: comments } = await github.rest.issues.listComments({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              issue_number: context.issue.number,
+            });
+
+            const existingComment = comments.find(c =>
+              c.body.includes('<!-- claude-code-review -->')
+            );
+
+            const body = `<!-- claude-code-review -->
+            ## Claude Code Review
+
+            ${review}
+
+            ---
+            *Automated review by [Claude Code](https://claude.ai/code) | Commit: \`${context.sha.substring(0, 7)}\` | Files: ${process.env.FILES_CHANGED}*`;
+
+            if (existingComment) {
+              await github.rest.issues.updateComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                comment_id: existingComment.id,
+                body: body,
+              });
+            } else {
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                issue_number: context.issue.number,
+                body: body,
+              });
+            }
+        env:
+          FILES_CHANGED: ${{ steps.pr-context.outputs.files_changed }}
+
+      - name: Review Failed
+        if: steps.review.outputs.review_success == 'false'
+        run: |
+          echo "::warning::Claude Code review could not be generated. This is non-blocking."

package/squads/claude-code-mastery/workflows/wf-audit-complete.yaml

@@ -0,0 +1,140 @@
+# ============================================================================
+# Workflow: Complete Audit
+# Squad: claude-code-mastery
+# Version: 1.0.0
+# Purpose: Full audit of Claude Code setup using all specialist agents
+# ============================================================================
+
+workflow:
+  id: wf-audit-complete
+  name: "Complete Claude Code Audit"
+  version: "1.0.0"
+  description: |
+    Comprehensive audit that leverages all specialist agents to evaluate
+    every aspect of a Claude Code setup. Produces a detailed report with
+    scores per domain and actionable recommendations.
+
+  trigger: "*full-audit"
+  entry_agent: claude-mastery-chief
+  estimated_duration: "20-40 minutes"
+
+# ────────────────────────────────────────────────────────────────────────────
+# PHASES
+# ────────────────────────────────────────────────────────────────────────────
+
+phases:
+
+  # ─── PHASE 0: Baseline Scan ──────────────────────────────────────────────
+  - id: phase_0
+    name: "Baseline Scan"
+    agent: claude-mastery-chief
+    task: audit-setup.md
+    description: "Quick audit to establish baseline score and identify areas needing deep review."
+    outputs:
+      - baseline_score: "number (0-100)"
+      - areas_needing_review: "array of domain names"
+    checkpoint:
+      gate: "Baseline scan completed with score > 0"
+      veto: "If .claude/ directory does not exist, abort — no Claude Code setup to audit"
+
+  # ─── PHASE 1: Parallel Domain Audits ─────────────────────────────────────
+  - id: phase_1
+    name: "Domain-Specific Audits"
+    depends_on: [phase_0]
+    parallel: true
+    description: "Run domain audits in parallel for efficiency."
+    sub_phases:
+
+      - id: phase_1a
+        name: "Configuration Audit"
+        agent: config-engineer
+        task: audit-settings.md
+        description: "Audit settings hierarchy, permissions, deny rules."
+        outputs:
+          - config_score: "number (0-100)"
+          - config_issues: "array"
+        checkpoint:
+          gate: "Settings files parsed without errors"
+          veto: "If settings.json has syntax errors, fix before continuing"
+
+      - id: phase_1b
+        name: "Context Rot Audit"
+        agent: project-integrator
+        task: context-rot-audit.md
+        description: "Check CLAUDE.md and rules for staleness and bloat."
+        outputs:
+          - rot_score: "number (0-100, lower = more rot)"
+          - stale_entries: "array"
+        checkpoint:
+          gate: "CLAUDE.md and rules files accessible"
+          veto: "If rot_score < 20, flag as CRITICAL before continuing"
+
+      - id: phase_1c
+        name: "MCP Audit"
+        agent: mcp-integrator
+        task: mcp-workflow.md
+        description: "Verify MCP servers are configured, responsive, and within context budget."
+        outputs:
+          - mcp_score: "number (0-100)"
+          - context_budget_usage: "number (tokens)"
+        checkpoint:
+          gate: "MCP configuration readable"
+          veto: "If context_budget > 15K tokens, flag as WARNING"
+
+  # ─── PHASE 2: Synthesis ─────────────────────────────────────────────────
+  - id: phase_2
+    name: "Audit Synthesis"
+    agent: claude-mastery-chief
+    depends_on: [phase_1]
+    description: "Synthesize all domain audits into a comprehensive report."
+    steps:
+      - "Aggregate scores from all domain audits"
+      - "Calculate weighted overall score"
+      - "Rank issues by severity and impact"
+      - "Generate prioritized recommendation list"
+      - "Produce executive summary"
+    outputs:
+      - overall_score: "number (0-100)"
+      - grade: "string (A-F)"
+      - top_recommendations: "array (max 5)"
+      - full_report: "markdown"
+    checkpoint:
+      gate: "All domain scores aggregated and report generated"
+      veto: "If any domain score is 0 (audit failed to run), re-run that domain"
+
+# ────────────────────────────────────────────────────────────────────────────
+# VETO CONDITIONS (workflow-level)
+# ────────────────────────────────────────────────────────────────────────────
+
+veto_conditions:
+  - "No .claude/ directory — nothing to audit"
+  - "settings.json with syntax errors — fix first"
+  - "Critical security issue found — address before generating report"
+
+# ────────────────────────────────────────────────────────────────────────────
+# SCORING WEIGHTS
+# ────────────────────────────────────────────────────────────────────────────
+
+scoring:
+  weights:
+    configuration: 0.30
+    context_health: 0.25
+    mcp_integration: 0.20
+    baseline: 0.25
+
+  grade_thresholds:
+    A: 90
+    B: 80
+    C: 70
+    D: 60
+    F: 0
+
+# ────────────────────────────────────────────────────────────────────────────
+# COMPLETION CRITERIA
+# ────────────────────────────────────────────────────────────────────────────
+
+completion_criteria:
+  - "All domain audits completed"
+  - "Overall score calculated"
+  - "Top 5 recommendations generated"
+  - "Full report produced"