npm - technical-debt-radar - Versions diffs - 1.4.0 → 1.5.0 - Mend

technical-debt-radar 1.4.0 → 1.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +111 -8
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -90,7 +90,8 @@ var require_constants = __commonJS({
       MISSING_NULL_GUARD: "missing-null-guard",
       MISSING_DTO_VALIDATION: "missing-dto-validation",
       UNGUARDED_ROUTE_TODO: "unguarded-route-todo",
-      ERROR_LOGGED_AS_INFO: "error-logged-as-info"
+      ERROR_LOGGED_AS_INFO: "error-logged-as-info",
+      CATCH_SWALLOWS_CONTEXT: "catch-block-swallows-error-context"
     };
     exports2.PERFORMANCE_RULES = {
       UNBOUNDED_FIND_MANY: "unbounded-find-many",
@@ -110,6 +111,7 @@ var require_constants = __commonJS({
       CODE_DUPLICATION: "code-duplication",
       MISSING_TEST_FILE: "missing-test-file",
       UNUSED_EXPORT: "unused-export",
+      DEBUG_CONSOLE_LOG: "debug-console-log-in-production",
       LOW_TEST_COVERAGE: "low-test-coverage",
       LOW_BRANCH_COVERAGE: "low-branch-coverage",
       COVERAGE_DROP: "coverage-drop"
@@ -118,7 +120,9 @@ var require_constants = __commonJS({
       LAYER_VIOLATION: "layer-boundary-violation",
       CIRCULAR_DEPENDENCY: "circular-dependency",
       MODULE_BOUNDARY: "module-boundary-violation",
-      FORBIDDEN_FRAMEWORK: "forbidden-framework-in-layer"
+      FORBIDDEN_FRAMEWORK: "forbidden-framework-in-layer",
+      PROVIDER_OUTSIDE_HOME: "provider-declared-outside-home-module",
+      SCHEMA_MULTI_MODULE: "schema-registered-in-multiple-modules"
     };
     exports2.CROSS_FILE_RULES = {
       INDIRECT_SYNC_FS: "indirect-sync-fs",
@@ -12763,12 +12767,15 @@ var require_import_graph = __commonJS({
       return specifiers;
     }
     function resolveModuleSpecifier(sourcePath, specifier, project) {
-      if (!specifier.startsWith(".") && !specifier.startsWith("/")) {
-        return void 0;
+      if (specifier.startsWith(".") || specifier.startsWith("/")) {
+        const sourceDir = posixDirname(sourcePath);
+        const resolved = posixJoinAndNormalize(sourceDir, specifier);
+        return resolveInProject(resolved, project) ?? resolved;
       }
-      const sourceDir = posixDirname(sourcePath);
-      const resolved = posixJoinAndNormalize(sourceDir, specifier);
-      return resolveInProject(resolved, project) ?? resolved;
+      const directResolved = resolveInProject(specifier, project);
+      if (directResolved)
+        return directResolved;
+      return void 0;
     }
     function resolveInProject(resolved, project) {
       const lookup = "/" + resolved;
@@ -12787,6 +12794,16 @@ var require_import_graph = __commonJS({
           return indexPath;
         }
       }
+      const suffix = "/" + resolved;
+      for (const sf of project.getSourceFiles()) {
+        const fp = sf.getFilePath();
+        if (fp.endsWith(suffix))
+          return normalizeFilePath(fp);
+        for (const ext of extensions) {
+          if (fp.endsWith(suffix + ext))
+            return normalizeFilePath(fp);
+        }
+      }
       return void 0;
     }
     function buildEdge(source, target, importType, policy) {
@@ -12877,12 +12894,22 @@ var require_boundary_checker = __commonJS({
       return /nestjs/i.test(policy.stack.framework);
     }
     var suffixPattern = (suffix) => new RegExp(`\\.${suffix}(\\.(ts|tsx|js|jsx))?$`);
-    var NESTJS_SHARED_INFRA_FOLDERS = ["guards", "decorators", "interceptors", "pipes", "filters", "middleware", "shared"];
+    var NESTJS_SHARED_INFRA_FOLDERS = ["guards", "decorators", "interceptors", "pipes", "filters", "middleware", "shared", "strategies", "common", "config"];
     function isNestJSExemptImport(sourcePath, targetPath, customSharedFolders = []) {
       const srcBase = sourcePath.replace(/\\/g, "/");
       const tgtBase = targetPath.replace(/\\/g, "/");
       if (suffixPattern("module").test(srcBase))
         return true;
+      if (suffixPattern("strategy").test(srcBase))
+        return true;
+      if (suffixPattern("guard").test(srcBase))
+        return true;
+      if (suffixPattern("interceptor").test(srcBase))
+        return true;
+      if (suffixPattern("pipe").test(srcBase))
+        return true;
+      if (suffixPattern("filter").test(srcBase))
+        return true;
       if (suffixPattern("module").test(tgtBase))
         return true;
       if (suffixPattern("entity").test(tgtBase))
@@ -12899,6 +12926,8 @@ var require_boundary_checker = __commonJS({
         return true;
       if (suffixPattern("filter").test(tgtBase))
         return true;
+      if (suffixPattern("strategy").test(tgtBase))
+        return true;
       if (/\/dto\//.test(tgtBase) || suffixPattern("dto").test(tgtBase))
         return true;
       for (const folder of NESTJS_SHARED_INFRA_FOLDERS) {
@@ -16174,6 +16203,8 @@ var require_reliability_detector = __commonJS({
         detectMissingNullGuard(sourceFile, file.path, fns, policy, violations);
         detectMissingDtoValidation(sourceFile, file.path, fns, policy, violations);
         detectUnguardedRouteTodo(sourceFile, file.path, fns, policy, violations);
+        detectCatchSwallowsContext(sourceFile, file.path, fns, policy, violations);
+        detectDebugConsoleLog(sourceFile, file.path, fns, policy, violations);
         project.removeSourceFile(sourceFile);
       }
       return applyExceptions(violations, policy);
@@ -16979,6 +17010,78 @@ var require_reliability_detector = __commonJS({
         violations.push(makeViolation(shared_1.RELIABILITY_RULES.UNGUARDED_ROUTE_TODO, filePath, node.getStartLineNumber(), `Route handler '${node.getName?.() ?? "anonymous"}' has TODO/FIXME comment and no @UseGuards() \u2014 unprotected endpoint`, policy, fn?.name, "Add @UseGuards(JwtAuthGuard) or appropriate guard \u2014 this route is currently unprotected"));
       });
     }
+    var DEBUG_LOG_PATTERN = /\b(RESULT|DEBUG|TEST|TODO|FIXME|HACK|XXX)\b/i;
+    var EXCLUDE_LOG_FILES = /\.(spec|test)\.(ts|js)|seed|migration|main\.(ts|js)$/;
+    function detectDebugConsoleLog(sourceFile, filePath, fns, policy, violations) {
+      if (EXCLUDE_LOG_FILES.test(filePath))
+        return;
+      sourceFile.forEachDescendant((node) => {
+        if (!ts_morph_1.Node.isCallExpression(node))
+          return;
+        const expr = node.getExpression();
+        if (!ts_morph_1.Node.isPropertyAccessExpression(expr))
+          return;
+        const obj = expr.getExpression();
+        if (!ts_morph_1.Node.isIdentifier(obj) || obj.getText() !== "console")
+          return;
+        if (expr.getName() !== "log")
+          return;
+        const args = node.getArguments();
+        const argsText = args.map((a) => a.getText()).join(" ");
+        if (!DEBUG_LOG_PATTERN.test(argsText))
+          return;
+        const catchClause = node.getFirstAncestorByKind(ts_morph_1.SyntaxKind.CatchClause);
+        if (catchClause)
+          return;
+        const fn = getEnclosingFn(node, fns);
+        violations.push({
+          category: "maintainability",
+          type: shared_1.MAINTAINABILITY_RULES.DEBUG_CONSOLE_LOG,
+          ruleId: shared_1.MAINTAINABILITY_RULES.DEBUG_CONSOLE_LOG,
+          severity: "warning",
+          source: "deterministic",
+          confidence: "high",
+          file: filePath,
+          line: node.getStartLineNumber(),
+          function: fn?.name,
+          message: `Debug console.log() in production code: ${argsText.substring(0, 60)}`,
+          suggestion: "Remove debug logging or replace with a proper logger (winston, pino)",
+          debtPoints: 1,
+          gateAction: "warn"
+        });
+      });
+    }
+    function detectCatchSwallowsContext(sourceFile, filePath, fns, policy, violations) {
+      sourceFile.forEachDescendant((node) => {
+        if (!ts_morph_1.Node.isCatchClause(node))
+          return;
+        const block = node.getBlock();
+        const errParam = node.getVariableDeclaration()?.getName();
+        if (!errParam)
+          return;
+        let throwsNew = false;
+        let referencesOriginal = false;
+        block.forEachDescendant((child) => {
+          if (ts_morph_1.Node.isThrowStatement(child)) {
+            throwsNew = true;
+            const thrownText = child.getExpression()?.getText() ?? "";
+            if (thrownText.includes(errParam)) {
+              referencesOriginal = true;
+            }
+          }
+        });
+        if (!throwsNew)
+          return;
+        if (referencesOriginal)
+          return;
+        const blockText = block.getText();
+        if (/\b(logger|console\.(?:error|warn))\b/i.test(blockText) && new RegExp(`\\b${escapeRegex(errParam)}\\b`).test(blockText)) {
+          return;
+        }
+        const fn = getEnclosingFn(node, fns);
+        violations.push(makeViolation(shared_1.RELIABILITY_RULES.CATCH_SWALLOWS_CONTEXT, filePath, node.getStartLineNumber(), `Catch block throws new error without including original '${errParam}' \u2014 error context lost`, policy, fn?.name, `Include the original error: throw new Error('message', { cause: ${errParam} }) or throw new HttpException(message, status, { cause: ${errParam} })`));
+      });
+    }
     function escapeRegex(str) {
       return str.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
     }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "technical-debt-radar",
-  "version": "1.4.0",
+  "version": "1.5.0",
   "description": "Stop Node.js production crashes before merge. 47 detection patterns across 5 categories.",
   "bin": {
     "radar": "dist/index.js",