npm - specweave - Versions diffs - 0.1.0 - Mend

specweave 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (288) hide show

package/INSTALL.md +848 -0
package/LICENSE +21 -0
package/README.md +675 -0
package/SPECWEAVE.md +665 -0
package/bin/install-agents.sh +57 -0
package/bin/install-all.sh +49 -0
package/bin/install-commands.sh +56 -0
package/bin/install-skills.sh +57 -0
package/bin/specweave.js +81 -0
package/dist/adapters/adapter-base.d.ts +50 -0
package/dist/adapters/adapter-base.d.ts.map +1 -0
package/dist/adapters/adapter-base.js +146 -0
package/dist/adapters/adapter-base.js.map +1 -0
package/dist/adapters/adapter-interface.d.ts +108 -0
package/dist/adapters/adapter-interface.d.ts.map +1 -0
package/dist/adapters/adapter-interface.js +9 -0
package/dist/adapters/adapter-interface.js.map +1 -0
package/dist/adapters/claude/adapter.d.ts +54 -0
package/dist/adapters/claude/adapter.d.ts.map +1 -0
package/dist/adapters/claude/adapter.js +184 -0
package/dist/adapters/claude/adapter.js.map +1 -0
package/dist/adapters/copilot/adapter.d.ts +42 -0
package/dist/adapters/copilot/adapter.d.ts.map +1 -0
package/dist/adapters/copilot/adapter.js +239 -0
package/dist/adapters/copilot/adapter.js.map +1 -0
package/dist/adapters/cursor/adapter.d.ts +42 -0
package/dist/adapters/cursor/adapter.d.ts.map +1 -0
package/dist/adapters/cursor/adapter.js +297 -0
package/dist/adapters/cursor/adapter.js.map +1 -0
package/dist/adapters/generic/adapter.d.ts +40 -0
package/dist/adapters/generic/adapter.d.ts.map +1 -0
package/dist/adapters/generic/adapter.js +155 -0
package/dist/adapters/generic/adapter.js.map +1 -0
package/dist/cli/commands/init.d.ts +6 -0
package/dist/cli/commands/init.d.ts.map +1 -0
package/dist/cli/commands/init.js +247 -0
package/dist/cli/commands/init.js.map +1 -0
package/dist/cli/commands/install.d.ts +7 -0
package/dist/cli/commands/install.d.ts.map +1 -0
package/dist/cli/commands/install.js +160 -0
package/dist/cli/commands/install.js.map +1 -0
package/dist/cli/commands/list.d.ts +6 -0
package/dist/cli/commands/list.d.ts.map +1 -0
package/dist/cli/commands/list.js +154 -0
package/dist/cli/commands/list.js.map +1 -0
package/package.json +90 -0
package/src/adapters/README.md +312 -0
package/src/adapters/adapter-base.ts +146 -0
package/src/adapters/adapter-interface.ts +120 -0
package/src/adapters/claude/README.md +241 -0
package/src/adapters/claude/adapter.ts +157 -0
package/src/adapters/copilot/.github/copilot/instructions.md +376 -0
package/src/adapters/copilot/README.md +200 -0
package/src/adapters/copilot/adapter.ts +210 -0
package/src/adapters/cursor/.cursor/context/docs-context.md +62 -0
package/src/adapters/cursor/.cursor/context/increments-context.md +71 -0
package/src/adapters/cursor/.cursor/context/strategy-context.md +73 -0
package/src/adapters/cursor/.cursor/context/tests-context.md +89 -0
package/src/adapters/cursor/.cursorrules +325 -0
package/src/adapters/cursor/README.md +243 -0
package/src/adapters/cursor/adapter.ts +268 -0
package/src/adapters/generic/README.md +277 -0
package/src/adapters/generic/SPECWEAVE-MANUAL.md +676 -0
package/src/adapters/generic/adapter.ts +159 -0
package/src/adapters/registry.yaml +126 -0
package/src/agents/architect/AGENT.md +416 -0
package/src/agents/devops/AGENT.md +1738 -0
package/src/agents/docs-writer/AGENT.md +239 -0
package/src/agents/performance/AGENT.md +228 -0
package/src/agents/pm/AGENT.md +751 -0
package/src/agents/qa-lead/AGENT.md +150 -0
package/src/agents/security/AGENT.md +179 -0
package/src/agents/sre/AGENT.md +582 -0
package/src/agents/sre/modules/backend-diagnostics.md +481 -0
package/src/agents/sre/modules/database-diagnostics.md +509 -0
package/src/agents/sre/modules/infrastructure.md +561 -0
package/src/agents/sre/modules/monitoring.md +439 -0
package/src/agents/sre/modules/security-incidents.md +421 -0
package/src/agents/sre/modules/ui-diagnostics.md +302 -0
package/src/agents/sre/playbooks/01-high-cpu-usage.md +204 -0
package/src/agents/sre/playbooks/02-database-deadlock.md +241 -0
package/src/agents/sre/playbooks/03-memory-leak.md +252 -0
package/src/agents/sre/playbooks/04-slow-api-response.md +269 -0
package/src/agents/sre/playbooks/05-ddos-attack.md +293 -0
package/src/agents/sre/playbooks/06-disk-full.md +314 -0
package/src/agents/sre/playbooks/07-service-down.md +333 -0
package/src/agents/sre/playbooks/08-data-corruption.md +337 -0
package/src/agents/sre/playbooks/09-cascade-failure.md +430 -0
package/src/agents/sre/playbooks/10-rate-limit-exceeded.md +464 -0
package/src/agents/sre/scripts/health-check.sh +230 -0
package/src/agents/sre/scripts/log-analyzer.py +213 -0
package/src/agents/sre/scripts/metrics-collector.sh +294 -0
package/src/agents/sre/scripts/trace-analyzer.js +257 -0
package/src/agents/sre/templates/incident-report.md +249 -0
package/src/agents/sre/templates/mitigation-plan.md +375 -0
package/src/agents/sre/templates/post-mortem.md +418 -0
package/src/agents/sre/templates/runbook-template.md +412 -0
package/src/agents/tech-lead/AGENT.md +263 -0
package/src/commands/add-tasks.md +176 -0
package/src/commands/close-increment.md +347 -0
package/src/commands/create-increment.md +223 -0
package/src/commands/create-project.md +528 -0
package/src/commands/generate-docs.md +623 -0
package/src/commands/list-increments.md +180 -0
package/src/commands/review-docs.md +331 -0
package/src/commands/start-increment.md +139 -0
package/src/commands/sync-github.md +115 -0
package/src/commands/validate-increment.md +800 -0
package/src/hooks/README.md +252 -0
package/src/hooks/docs-changed.sh +59 -0
package/src/hooks/human-input-required.sh +55 -0
package/src/hooks/post-task-completion.sh +57 -0
package/src/hooks/pre-implementation.sh +47 -0
package/src/skills/ado-sync/README.md +449 -0
package/src/skills/ado-sync/SKILL.md +245 -0
package/src/skills/ado-sync/test-cases/test-1.yaml +9 -0
package/src/skills/ado-sync/test-cases/test-2.yaml +8 -0
package/src/skills/ado-sync/test-cases/test-3.yaml +9 -0
package/src/skills/bmad-method-expert/SKILL.md +628 -0
package/src/skills/bmad-method-expert/scripts/analyze-project.js +318 -0
package/src/skills/bmad-method-expert/scripts/check-setup.js +208 -0
package/src/skills/bmad-method-expert/scripts/generate-template.js +1149 -0
package/src/skills/bmad-method-expert/scripts/validate-documents.js +340 -0
package/src/skills/bmad-method-expert/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/bmad-method-expert/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/bmad-method-expert/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/brownfield-analyzer/SKILL.md +523 -0
package/src/skills/brownfield-analyzer/test-cases/test-1-basic-analysis.yaml +48 -0
package/src/skills/brownfield-analyzer/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/brownfield-analyzer/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/brownfield-onboarder/SKILL.md +625 -0
package/src/skills/brownfield-onboarder/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/brownfield-onboarder/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/brownfield-onboarder/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/calendar-system/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/calendar-system/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/calendar-system/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/context-loader/SKILL.md +734 -0
package/src/skills/context-loader/test-cases/test-1-basic-loading.yaml +39 -0
package/src/skills/context-loader/test-cases/test-2-token-budget-exceeded.yaml +44 -0
package/src/skills/context-loader/test-cases/test-3-section-anchors.yaml +45 -0
package/src/skills/context-optimizer/SKILL.md +618 -0
package/src/skills/context-optimizer/test-cases/test-1-bug-fix-narrow.yaml +97 -0
package/src/skills/context-optimizer/test-cases/test-2-feature-focused.yaml +109 -0
package/src/skills/context-optimizer/test-cases/test-3-architecture-broad.yaml +98 -0
package/src/skills/cost-optimizer/SKILL.md +190 -0
package/src/skills/cost-optimizer/test-cases/test-1-basic-comparison.yaml +75 -0
package/src/skills/cost-optimizer/test-cases/test-2-budget-constraint.yaml +52 -0
package/src/skills/cost-optimizer/test-cases/test-3-scale-requirement.yaml +63 -0
package/src/skills/cost-optimizer/test-results/README.md +46 -0
package/src/skills/design-system-architect/SKILL.md +107 -0
package/src/skills/design-system-architect/test-cases/test-1-token-structure.yaml +23 -0
package/src/skills/design-system-architect/test-cases/test-2-component-hierarchy.yaml +24 -0
package/src/skills/design-system-architect/test-cases/test-3-accessibility-checklist.yaml +23 -0
package/src/skills/diagrams-architect/SKILL.md +763 -0
package/src/skills/diagrams-generator/SKILL.md +25 -0
package/src/skills/diagrams-generator/test-cases/test-1.yaml +9 -0
package/src/skills/diagrams-generator/test-cases/test-2.yaml +9 -0
package/src/skills/diagrams-generator/test-cases/test-3.yaml +8 -0
package/src/skills/docs-updater/README.md +48 -0
package/src/skills/docs-updater/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/docs-updater/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/docs-updater/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/dotnet-backend/SKILL.md +250 -0
package/src/skills/e2e-playwright/README.md +506 -0
package/src/skills/e2e-playwright/SKILL.md +457 -0
package/src/skills/e2e-playwright/execute.js +373 -0
package/src/skills/e2e-playwright/lib/utils.js +514 -0
package/src/skills/e2e-playwright/package.json +33 -0
package/src/skills/e2e-playwright/test-cases/TC-001-basic-navigation.yaml +54 -0
package/src/skills/e2e-playwright/test-cases/TC-002-form-interaction.yaml +64 -0
package/src/skills/e2e-playwright/test-cases/TC-003-specweave-integration.yaml +74 -0
package/src/skills/e2e-playwright/test-cases/TC-004-accessibility-check.yaml +98 -0
package/src/skills/figma-designer/SKILL.md +149 -0
package/src/skills/figma-implementer/SKILL.md +148 -0
package/src/skills/figma-mcp-connector/SKILL.md +136 -0
package/src/skills/figma-mcp-connector/test-cases/test-1-read-file-desktop.yaml +22 -0
package/src/skills/figma-mcp-connector/test-cases/test-2-read-file-framelink.yaml +21 -0
package/src/skills/figma-mcp-connector/test-cases/test-3-error-handling.yaml +18 -0
package/src/skills/figma-to-code/SKILL.md +128 -0
package/src/skills/figma-to-code/test-cases/test-1-token-generation.yaml +29 -0
package/src/skills/figma-to-code/test-cases/test-2-component-generation.yaml +27 -0
package/src/skills/figma-to-code/test-cases/test-3-typescript-generation.yaml +28 -0
package/src/skills/frontend/SKILL.md +177 -0
package/src/skills/github-sync/SKILL.md +252 -0
package/src/skills/github-sync/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/github-sync/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/github-sync/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/hetzner-provisioner/README.md +308 -0
package/src/skills/hetzner-provisioner/SKILL.md +251 -0
package/src/skills/hetzner-provisioner/test-cases/test-1-basic-provision.yaml +71 -0
package/src/skills/hetzner-provisioner/test-cases/test-2-postgres-provision.yaml +85 -0
package/src/skills/hetzner-provisioner/test-cases/test-3-ssl-config.yaml +126 -0
package/src/skills/hetzner-provisioner/test-results/README.md +259 -0
package/src/skills/increment-planner/SKILL.md +889 -0
package/src/skills/increment-planner/scripts/feature-utils.js +250 -0
package/src/skills/increment-planner/test-cases/test-1-basic-feature.yaml +27 -0
package/src/skills/increment-planner/test-cases/test-2-complex-feature.yaml +30 -0
package/src/skills/increment-planner/test-cases/test-3-auto-numbering.yaml +24 -0
package/src/skills/increment-quality-judge/SKILL.md +566 -0
package/src/skills/increment-quality-judge/test-cases/test-1-good-spec.yaml +95 -0
package/src/skills/increment-quality-judge/test-cases/test-2-poor-spec.yaml +108 -0
package/src/skills/increment-quality-judge/test-cases/test-3-export-suggestions.yaml +87 -0
package/src/skills/jira-sync/README.md +328 -0
package/src/skills/jira-sync/SKILL.md +209 -0
package/src/skills/jira-sync/test-cases/test-1.yaml +9 -0
package/src/skills/jira-sync/test-cases/test-2.yaml +9 -0
package/src/skills/jira-sync/test-cases/test-3.yaml +10 -0
package/src/skills/nextjs/SKILL.md +176 -0
package/src/skills/nodejs-backend/SKILL.md +181 -0
package/src/skills/notification-system/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/notification-system/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/notification-system/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/python-backend/SKILL.md +226 -0
package/src/skills/role-orchestrator/README.md +197 -0
package/src/skills/role-orchestrator/SKILL.md +1184 -0
package/src/skills/role-orchestrator/test-cases/test-1-simple-product.yaml +98 -0
package/src/skills/role-orchestrator/test-cases/test-2-quality-gate-failure.yaml +73 -0
package/src/skills/role-orchestrator/test-cases/test-3-security-workflow.yaml +121 -0
package/src/skills/role-orchestrator/test-cases/test-4-parallel-execution.yaml +145 -0
package/src/skills/role-orchestrator/test-cases/test-5-feedback-loops.yaml +149 -0
package/src/skills/skill-creator/LICENSE.txt +202 -0
package/src/skills/skill-creator/SKILL.md +209 -0
package/src/skills/skill-creator/scripts/init_skill.py +303 -0
package/src/skills/skill-creator/scripts/package_skill.py +110 -0
package/src/skills/skill-creator/scripts/quick_validate.py +65 -0
package/src/skills/skill-creator/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/skill-creator/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/skill-creator/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/skill-router/SKILL.md +497 -0
package/src/skills/skill-router/test-cases/test-1-basic-routing.yaml +33 -0
package/src/skills/skill-router/test-cases/test-2-ambiguous-request.yaml +42 -0
package/src/skills/skill-router/test-cases/test-3-nested-orchestration.yaml +50 -0
package/src/skills/spec-driven-brainstorming/README.md +264 -0
package/src/skills/spec-driven-brainstorming/SKILL.md +439 -0
package/src/skills/spec-driven-brainstorming/test-cases/TC-001-simple-idea-to-design.yaml +148 -0
package/src/skills/spec-driven-brainstorming/test-cases/TC-002-complex-ultrathink-design.yaml +190 -0
package/src/skills/spec-driven-brainstorming/test-cases/TC-003-unclear-requirements-socratic.yaml +233 -0
package/src/skills/spec-driven-debugging/README.md +479 -0
package/src/skills/spec-driven-debugging/SKILL.md +652 -0
package/src/skills/spec-driven-debugging/test-cases/TC-001-simple-auth-bug.yaml +212 -0
package/src/skills/spec-driven-debugging/test-cases/TC-002-race-condition-ultrathink.yaml +461 -0
package/src/skills/spec-driven-debugging/test-cases/TC-003-brownfield-missing-spec.yaml +366 -0
package/src/skills/spec-kit-expert/SKILL.md +1012 -0
package/src/skills/spec-kit-expert/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/spec-kit-expert/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/spec-kit-expert/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/specweave-ado-mapper/SKILL.md +501 -0
package/src/skills/specweave-detector/SKILL.md +420 -0
package/src/skills/specweave-detector/test-cases/test-1-basic-detection.yaml +37 -0
package/src/skills/specweave-detector/test-cases/test-2-missing-config.yaml +37 -0
package/src/skills/specweave-detector/test-cases/test-3-non-specweave-project.yaml +34 -0
package/src/skills/specweave-jira-mapper/SKILL.md +500 -0
package/src/skills/stripe-integrator/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/stripe-integrator/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/stripe-integrator/test-cases/test-3-placeholder.yaml +12 -0
package/src/skills/task-builder/README.md +90 -0
package/src/skills/task-builder/test-cases/test-1-placeholder.yaml +12 -0
package/src/skills/task-builder/test-cases/test-2-placeholder.yaml +12 -0
package/src/skills/task-builder/test-cases/test-3-placeholder.yaml +12 -0
package/src/templates/.env.example +144 -0
package/src/templates/.gitignore.template +81 -0
package/src/templates/CLAUDE.md.template +383 -0
package/src/templates/README.md.template +240 -0
package/src/templates/config.yaml +333 -0
package/src/templates/docs/README.md +124 -0
package/src/templates/docs/adr-template.md +118 -0
package/src/templates/docs/hld-template.md +220 -0
package/src/templates/docs/lld-template.md +580 -0
package/src/templates/docs/prd-template.md +132 -0
package/src/templates/docs/rfc-template.md +229 -0
package/src/templates/docs/runbook-template.md +298 -0
package/src/templates/environments/minimal/.env.production +16 -0
package/src/templates/environments/minimal/README.md +54 -0
package/src/templates/environments/minimal/deploy-production.yml +52 -0
package/src/templates/environments/progressive/.env.qa +28 -0
package/src/templates/environments/progressive/README.md +129 -0
package/src/templates/environments/progressive/deploy-production.yml +93 -0
package/src/templates/environments/progressive/deploy-qa.yml +62 -0
package/src/templates/environments/progressive/deploy-staging.yml +67 -0
package/src/templates/environments/standard/.env.development +20 -0
package/src/templates/environments/standard/.env.production +30 -0
package/src/templates/environments/standard/.env.staging +23 -0
package/src/templates/environments/standard/README.md +97 -0
package/src/templates/environments/standard/deploy-production.yml +68 -0
package/src/templates/environments/standard/deploy-staging.yml +61 -0
package/src/templates/environments/standard/docker-compose.yml +43 -0
package/src/templates/increment-metadata-template.yaml +138 -0

package/src/templates/docs/lld-template.md ADDED Viewed

@@ -0,0 +1,580 @@
+# LLD: [Service/Component Name]
+**Status**: draft | review | approved | deprecated
+**Author**: [Your Name]
+**Created**: YYYY-MM-DD
+**Last Updated**: YYYY-MM-DD
+**Reviewers**: @tech-lead, @senior-engineer
+**Related HLD**: [Link to HLD](hld-{system-name}.md)
+---
+## Context
+**Why does this component exist?**
+Link to the high-level design and explain the context:
+- **HLD**: [Link to HLD](hld-{system-name}.md)
+- **Component Purpose**: What specific problem does this component solve?
+- **Scope**: What is within and outside this component's responsibility?
+## Component Overview (C4 Level 3)
+**Internal structure of this service/component**
+**Diagram File**: `lld-{component-name}.c4-component.mmd` (co-located with this file)
+```mermaid
+graph TB
+    subgraph "Auth Service Container"
+        Controller[Auth Controller]
+        Service[Auth Service]
+        Validator[Input Validator]
+        TokenManager[JWT Token Manager]
+        Repository[User Repository]
+        Cache[Cache Layer]
+        Controller -->|validate| Validator
+        Controller -->|authenticate| Service
+        Service -->|generateToken| TokenManager
+        Service -->|getUser| Repository
+        Repository -->|check cache| Cache
+        Repository -->|query| DB[(User Database)]
+        Cache -->|miss| DB
+    end
+    Client[External Client] -->|HTTP Request| Controller
+    Controller -->|Response| Client
+```
+**Component Responsibilities**:
+- **Auth Controller**: HTTP request handling, input validation, response formatting
+- **Auth Service**: Core authentication logic, orchestrates validation and token generation
+- **Input Validator**: Request validation, sanitization, security checks
+- **JWT Token Manager**: JWT token creation, validation, refresh
+- **User Repository**: User data access, caching strategy
+- **Cache Layer**: In-memory caching for frequently accessed user data
+**Related Diagrams**:
+- `lld-{component-name}.c4-component.mmd` - Component internal structure (this diagram)
+- `lld-{component-name}.sequence-login.mmd` - Login flow sequence
+- `lld-{component-name}.class.mmd` - Class diagram (if applicable)
+**See**: [Diagram Conventions](../delivery/guides/diagram-conventions-comprehensive.md) for C4 diagram best practices.
+## API / Interface Specification
+### Public Interfaces
+**Endpoints** (if HTTP service):
+```
+POST /auth/login
+POST /auth/logout
+POST /auth/refresh
+GET  /auth/validate
+```
+**Methods** (if library/module):
+```typescript
+interface AuthService {
+  login(credentials: Credentials): Promise<AuthToken>
+  logout(token: string): Promise<void>
+  refresh(refreshToken: string): Promise<AuthToken>
+  validate(token: string): Promise<User>
+}
+```
+### Internal Interfaces
+**Between components within this service**:
+```typescript
+interface UserRepository {
+  findByEmail(email: string): Promise<User | null>
+  findById(id: string): Promise<User | null>
+  updateLastLogin(userId: string): Promise<void>
+}
+interface TokenManager {
+  generate(user: User): Promise<AuthToken>
+  validate(token: string): Promise<TokenPayload>
+  refresh(refreshToken: string): Promise<AuthToken>
+}
+```
+## Detailed Flow Diagrams
+### Login Flow (Sequence Diagram)
+**Diagram File**: `lld-{component-name}.sequence-login.mmd`
+```mermaid
+sequenceDiagram
+    participant Client
+    participant Controller as Auth Controller
+    participant Validator
+    participant Service as Auth Service
+    participant Repo as User Repository
+    participant Cache
+    participant DB as Database
+    participant TokenMgr as Token Manager
+    Client->>Controller: POST /auth/login {email, password}
+    Controller->>Validator: validate(request)
+    Validator-->>Controller: ValidationResult
+    alt validation failed
+        Controller-->>Client: 400 Bad Request
+    end
+    Controller->>Service: authenticate(email, password)
+    Service->>Repo: findByEmail(email)
+    Repo->>Cache: get(email)
+    alt cache hit
+        Cache-->>Repo: User data
+    else cache miss
+        Repo->>DB: SELECT * FROM users WHERE email=?
+        DB-->>Repo: User row
+        Repo->>Cache: set(email, user)
+    end
+    Repo-->>Service: User | null
+    alt user not found
+        Service-->>Controller: AuthError(USER_NOT_FOUND)
+        Controller-->>Client: 401 Unauthorized
+    end
+    Service->>Service: verifyPassword(password, user.hash)
+    alt password invalid
+        Service-->>Controller: AuthError(INVALID_PASSWORD)
+        Controller-->>Client: 401 Unauthorized
+    end
+    Service->>TokenMgr: generate(user)
+    TokenMgr-->>Service: AuthToken
+    Service->>Repo: updateLastLogin(user.id)
+    Service-->>Controller: AuthToken
+    Controller-->>Client: 200 OK {token, refreshToken}
+```
+### Error Handling Flow
+```mermaid
+graph TB
+    Request[Incoming Request] --> Validator{Valid?}
+    Validator -->|No| BadRequest[400 Bad Request]
+    Validator -->|Yes| Auth{Authenticated?}
+    Auth -->|No| Unauthorized[401 Unauthorized]
+    Auth -->|Yes| Authorized{Authorized?}
+    Authorized -->|No| Forbidden[403 Forbidden]
+    Authorized -->|Yes| Process[Process Request]
+    Process --> DBError{DB Error?}
+    DBError -->|Yes| ServerError[500 Internal Error]
+    DBError -->|No| Success[200 OK]
+```
+## Data Models (Component-Specific)
+### Internal Data Structures
+```typescript
+// Domain entities (internal representation)
+interface User {
+  id: string
+  email: string
+  passwordHash: string
+  salt: string
+  role: UserRole
+  mfaEnabled: boolean
+  mfaSecret?: string
+  lastLogin?: Date
+  createdAt: Date
+  updatedAt: Date
+}
+interface AuthToken {
+  accessToken: string
+  refreshToken: string
+  expiresIn: number
+  tokenType: 'Bearer'
+}
+interface TokenPayload {
+  userId: string
+  email: string
+  role: UserRole
+  iat: number
+  exp: number
+}
+```
+### Database Schema (if applicable)
+```sql
+CREATE TABLE users (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  email VARCHAR(255) UNIQUE NOT NULL,
+  password_hash VARCHAR(255) NOT NULL,
+  salt VARCHAR(255) NOT NULL,
+  role VARCHAR(50) NOT NULL DEFAULT 'user',
+  mfa_enabled BOOLEAN DEFAULT FALSE,
+  mfa_secret VARCHAR(255),
+  last_login TIMESTAMP,
+  created_at TIMESTAMP DEFAULT NOW(),
+  updated_at TIMESTAMP DEFAULT NOW()
+);
+CREATE INDEX idx_users_email ON users(email);
+CREATE INDEX idx_users_last_login ON users(last_login);
+```
+### Caching Strategy
+```yaml
+cache_keys:
+  user_by_email: "user:email:{email}"
+  user_by_id: "user:id:{id}"
+  token_blacklist: "token:blacklist:{jti}"
+ttl:
+  user_data: 300  # 5 minutes
+  token_blacklist: 86400  # 24 hours (until token expires)
+invalidation:
+  - On user update: Clear user:email:{email} and user:id:{id}
+  - On logout: Add token:blacklist:{jti}
+```
+## Implementation Details
+### Technology Stack (Component-Specific)
+- **Language**: TypeScript / Node.js
+- **Framework**: Express.js / Fastify / NestJS
+- **ORM**: Prisma / TypeORM
+- **Caching**: Redis
+- **Authentication**: jsonwebtoken library
+- **Validation**: Zod / Joi / class-validator
+- **Password Hashing**: bcrypt / argon2
+### Key Algorithms
+**Password Verification**:
+```typescript
+async function verifyPassword(
+  plainPassword: string,
+  hash: string
+): Promise<boolean> {
+  // Use constant-time comparison to prevent timing attacks
+  return await bcrypt.compare(plainPassword, hash)
+}
+```
+**Token Generation**:
+```typescript
+function generateToken(user: User): AuthToken {
+  const payload: TokenPayload = {
+    userId: user.id,
+    email: user.email,
+    role: user.role,
+    iat: Math.floor(Date.now() / 1000),
+    exp: Math.floor(Date.now() / 1000) + (60 * 60) // 1 hour
+  }
+  const accessToken = jwt.sign(payload, SECRET_KEY, { algorithm: 'HS256' })
+  const refreshToken = jwt.sign({ userId: user.id }, REFRESH_SECRET, {
+    expiresIn: '7d'
+  })
+  return {
+    accessToken,
+    refreshToken,
+    expiresIn: 3600,
+    tokenType: 'Bearer'
+  }
+}
+```
+### Configuration
+```typescript
+interface AuthConfig {
+  jwt: {
+    secret: string
+    refreshSecret: string
+    algorithm: 'HS256' | 'RS256'
+    expiresIn: string
+    refreshExpiresIn: string
+  }
+  password: {
+    minLength: number
+    requireUppercase: boolean
+    requireLowercase: boolean
+    requireNumbers: boolean
+    requireSpecialChars: boolean
+    saltRounds: number
+  }
+  rateLimit: {
+    maxAttempts: number
+    windowMs: number
+    blockDurationMs: number
+  }
+  mfa: {
+    enabled: boolean
+    issuer: string
+  }
+}
+```
+## Security Considerations (Component-Level)
+### Input Validation
+- **Email**: RFC 5322 compliant, max 255 chars
+- **Password**: 8-128 chars, complexity requirements enforced
+- **Sanitization**: Strip HTML/SQL injection attempts
+- **Rate Limiting**: Max 5 login attempts per 15 minutes per IP
+### Token Security
+- **Algorithm**: HS256 (or RS256 for distributed systems)
+- **Secret Rotation**: Rotate JWT secrets quarterly
+- **Token Expiry**: Access token: 1 hour, Refresh token: 7 days
+- **Blacklisting**: Store revoked tokens in Redis until expiry
+### Password Security
+- **Hashing**: bcrypt with cost factor 12 (or argon2id)
+- **Salt**: Unique per-user salt (handled by bcrypt)
+- **Storage**: Never log or transmit plaintext passwords
+- **Complexity**: Enforced at validator level
+### Sensitive Data Handling
+- **Logging**: Never log passwords, tokens, or PII
+- **Masking**: Mask sensitive fields in logs (e.g., email → e***@example.com)
+- **Encryption at Rest**: Database column encryption for PII
+## Performance Considerations
+### Optimization Strategies
+- **Caching**: Redis cache for user lookups (5 min TTL)
+- **Database Indexes**: Index on email column for fast lookups
+- **Connection Pooling**: Max 20 database connections
+- **Async Operations**: All I/O operations are async/await
+### Performance Targets (Component-Specific)
+- **Login Latency**: p95 < 200ms, p99 < 500ms
+- **Token Validation**: p95 < 50ms, p99 < 100ms
+- **Throughput**: 500 req/sec per instance
+- **Cache Hit Rate**: > 80% for user lookups
+### Monitoring & Metrics
+```typescript
+metrics:
+  - auth.login.success_count
+  - auth.login.failure_count
+  - auth.login.duration_ms
+  - auth.token.validation.duration_ms
+  - auth.cache.hit_rate
+  - auth.cache.miss_count
+  - auth.db.query.duration_ms
+```
+## Error Handling
+### Error Types
+```typescript
+enum AuthErrorCode {
+  INVALID_CREDENTIALS = 'INVALID_CREDENTIALS',
+  USER_NOT_FOUND = 'USER_NOT_FOUND',
+  INVALID_TOKEN = 'INVALID_TOKEN',
+  TOKEN_EXPIRED = 'TOKEN_EXPIRED',
+  RATE_LIMIT_EXCEEDED = 'RATE_LIMIT_EXCEEDED',
+  MFA_REQUIRED = 'MFA_REQUIRED',
+  MFA_INVALID = 'MFA_INVALID',
+  INTERNAL_ERROR = 'INTERNAL_ERROR'
+}
+class AuthError extends Error {
+  constructor(
+    public code: AuthErrorCode,
+    public httpStatus: number,
+    message: string
+  ) {
+    super(message)
+  }
+}
+```
+### Error Response Format
+```json
+{
+  "error": {
+    "code": "INVALID_CREDENTIALS",
+    "message": "Invalid email or password",
+    "statusCode": 401,
+    "timestamp": "2025-01-20T10:30:00Z",
+    "path": "/auth/login"
+  }
+}
+```
+### Retry Strategy
+- **Client Errors (4xx)**: Do not retry
+- **Server Errors (5xx)**: Retry with exponential backoff (max 3 retries)
+- **Database Errors**: Retry transient errors (connection timeout, deadlock)
+## Testing Strategy
+### Unit Tests
+```typescript
+describe('AuthService', () => {
+  describe('authenticate', () => {
+    test('should return token for valid credentials', async () => {
+      // Arrange
+      const credentials = { email: 'test@example.com', password: 'SecurePass123' }
+      // Act
+      const result = await authService.authenticate(credentials)
+      // Assert
+      expect(result).toHaveProperty('accessToken')
+      expect(result).toHaveProperty('refreshToken')
+    })
+    test('should throw error for invalid password', async () => {
+      // Arrange
+      const credentials = { email: 'test@example.com', password: 'WrongPass' }
+      // Act & Assert
+      await expect(authService.authenticate(credentials))
+        .rejects.toThrow(AuthError)
+    })
+  })
+})
+```
+### Integration Tests
+```typescript
+describe('Auth API Integration', () => {
+  test('POST /auth/login with valid credentials', async () => {
+    const response = await request(app)
+      .post('/auth/login')
+      .send({ email: 'test@example.com', password: 'SecurePass123' })
+    expect(response.status).toBe(200)
+    expect(response.body).toHaveProperty('accessToken')
+  })
+})
+```
+### Component Tests
+- Test all public interfaces
+- Test error handling paths
+- Test rate limiting
+- Test token validation edge cases
+- Test cache invalidation
+**Test Coverage Target**: > 80% for critical paths
+## Dependencies
+### External Dependencies
+```json
+{
+  "dependencies": {
+    "express": "^4.18.0",
+    "jsonwebtoken": "^9.0.0",
+    "bcrypt": "^5.1.0",
+    "zod": "^3.22.0",
+    "redis": "^4.6.0"
+  },
+  "devDependencies": {
+    "@types/express": "^4.17.0",
+    "@types/jsonwebtoken": "^9.0.0",
+    "jest": "^29.0.0",
+    "supertest": "^6.3.0"
+  }
+}
+```
+### Internal Dependencies
+- **Database Module**: User data persistence
+- **Logging Module**: Structured logging
+- **Config Module**: Environment configuration
+- **Metrics Module**: Performance monitoring
+## Deployment Considerations
+### Environment Variables
+```bash
+# JWT Configuration
+JWT_SECRET=<secret-key>
+JWT_REFRESH_SECRET=<refresh-secret>
+JWT_EXPIRES_IN=1h
+JWT_REFRESH_EXPIRES_IN=7d
+# Database
+DATABASE_URL=postgresql://user:pass@host:5432/db
+# Redis
+REDIS_URL=redis://localhost:6379
+# Security
+BCRYPT_ROUNDS=12
+RATE_LIMIT_MAX_ATTEMPTS=5
+RATE_LIMIT_WINDOW_MS=900000
+```
+### Health Checks
+```typescript
+GET /auth/health
+Response:
+{
+  "status": "healthy",
+  "checks": {
+    "database": "healthy",
+    "redis": "healthy",
+    "memory": "healthy"
+  },
+  "timestamp": "2025-01-20T10:30:00Z"
+}
+```
+### Graceful Shutdown
+1. Stop accepting new requests
+2. Complete in-flight requests (max 30s timeout)
+3. Close database connections
+4. Close Redis connections
+5. Exit process
+## Open Questions / TODOs
+- [ ] **Q1**: Should we support OAuth 2.0 providers (Google, GitHub)?
+  - **Owner**: @tech-lead
+  - **Due Date**: YYYY-MM-DD
+- [ ] **Q2**: Should we implement passwordless login (magic links)?
+  - **Owner**: @product-manager
+  - **Due Date**: YYYY-MM-DD
+- [ ] **TODO1**: Implement MFA support (TOTP)
+  - **Assignee**: @developer
+  - **Priority**: P2
+## Related Documentation
+- [HLD: System Architecture](hld-{system-name}.md)
+- [ADR: Authentication Method](adr/0001-use-jwt-tokens.md)
+- [RFC: Auth API Specification](rfc/0001-auth-api.md)
+- [Runbook: Auth Service Operations](../operations/runbook-auth-service.md)
+- [Diagram Conventions](../../DIAGRAM-CONVENTIONS.md) - C4 diagram best practices
+---
+**Approval**:
+- [ ] Tech Lead: @name
+- [ ] Senior Engineer: @name
+- [ ] Security: @name

package/src/templates/docs/prd-template.md ADDED Viewed

@@ -0,0 +1,132 @@
+# PRD: [Feature Name]
+**Status**: draft | review | approved | deprecated
+**Author**: [Your Name]
+**Created**: YYYY-MM-DD
+**Last Updated**: YYYY-MM-DD
+**Reviewers**: @product-owner, @stakeholders
+---
+## Problem
+**What problem are we solving?**
+Describe the core problem or pain point. Be specific about:
+- Who experiences this problem?
+- How often does it occur?
+- What is the impact if we don't solve it?
+## Target Users
+**Who is this for?**
+Define the target audience:
+- **Primary Users**: Who will use this most?
+- **Secondary Users**: Who else benefits?
+- **User Personas**: Link to user personas if available
+## Desired Outcomes / Success Metrics
+**How do we measure success?**
+Define clear, measurable success criteria:
+- **Business Metrics**:
+  - Revenue impact: $XXX increase
+  - User growth: XX% increase
+  - Cost reduction: $XXX savings
+- **User Metrics**:
+  - Adoption: XX% of users adopt feature
+  - Engagement: XX% increase in usage
+  - Satisfaction: NPS score improvement
+- **Technical Metrics**:
+  - Performance: <XXms latency
+  - Reliability: XX% uptime
+  - Scalability: Support XX concurrent users
+## Scope (In / Out)
+**What's included and excluded?**
+### In Scope
+- [ ] Feature 1: Description
+- [ ] Feature 2: Description
+- [ ] Feature 3: Description
+### Out of Scope
+- ❌ Feature A: Reason why it's excluded
+- ❌ Feature B: Defer to future release
+- ❌ Feature C: Not aligned with goals
+## Assumptions & Risks
+**What could go wrong?**
+### Assumptions
+- Assumption 1: We assume...
+- Assumption 2: We assume...
+- Assumption 3: We assume...
+### Risks
+- **Risk 1**: Description
+  - **Probability**: High | Medium | Low
+  - **Impact**: High | Medium | Low
+  - **Mitigation**: How we address it
+- **Risk 2**: Description
+  - **Probability**: High | Medium | Low
+  - **Impact**: High | Medium | Low
+  - **Mitigation**: How we address it
+## Alternatives Considered
+**What else did we consider?**
+### Alternative 1: [Name]
+- **Description**: What is it?
+- **Pros**: Benefits
+- **Cons**: Drawbacks
+- **Why not chosen**: Reason
+### Alternative 2: [Name]
+- **Description**: What is it?
+- **Pros**: Benefits
+- **Cons**: Drawbacks
+- **Why not chosen**: Reason
+## Milestones & Release Criteria
+**When are we done?**
+### Milestones
+- **M1**: Milestone 1 - Date
+  - Deliverable 1
+  - Deliverable 2
+- **M2**: Milestone 2 - Date
+  - Deliverable 3
+  - Deliverable 4
+### Release Criteria
+- [ ] All features implemented
+- [ ] All tests passing (unit, integration, E2E)
+- [ ] Performance benchmarks met
+- [ ] Security review completed
+- [ ] Documentation complete
+- [ ] User acceptance testing passed
+## Related Documentation
+- [HLD: System Design](../architecture/hld-{feature}.md) - Technical design
+- [ADR: Decision Records](../architecture/adr/) - Architecture decisions
+- [RFC: API Design](../architecture/rfc/) - API specifications
+- [Roadmap](../delivery/roadmap.md) - Feature timeline
+---
+**Approval**:
+- [ ] Product Owner: @name
+- [ ] Engineering Lead: @name
+- [ ] Stakeholder: @name