diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md new file mode 100644 index 0000000..b7b74a6 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/bug-report.md @@ -0,0 +1,34 @@ +--- +name: Bug Report +about: Report a bug or unexpected behavior +title: '' +labels: 'bug' +assignees: '' +--- + +## Description + + + +## Steps to Reproduce + +1. +2. +3. + +## Expected Behavior + + + +## Actual Behavior + + + +## Environment + +- **OS**: +- **App Version**: +- **Install Source**: + +## Additional Context + diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..06d1f96 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,20 @@ +version: 2 + +updates: + - package-ecosystem: npm + directory: / + schedule: + interval: weekly + target-branch: master + open-pull-requests-limit: 10 + groups: + production: + dependency-type: production + dev: + dependency-type: development + + - package-ecosystem: github-actions + directory: / + schedule: + interval: monthly + target-branch: master diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md new file mode 100644 index 0000000..028f4de --- /dev/null +++ b/.github/pull_request_template.md @@ -0,0 +1,9 @@ +## Summary + + + +## Test Plan + +- [ ] Ran `npm run lint` with no errors +- [ ] Ran `npm run test:run` with all tests passing +- [ ] Tested manually in dev mode (`npm start`) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml new file mode 100644 index 0000000..8b7d173 --- /dev/null +++ b/.github/workflows/ci.yml @@ -0,0 +1,25 @@ +name: CI + +on: + push: + branches: [master] + pull_request: + branches: [master] + +jobs: + lint-and-test: + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v4 + + - uses: actions/setup-node@v4 + with: + node-version: 20 + cache: npm + + - run: npm ci + + - run: npm run lint + + - run: npm run test:run diff --git a/.nvmrc b/.nvmrc new file mode 100644 index 0000000..209e3ef --- /dev/null +++ b/.nvmrc @@ -0,0 +1 @@ +20 diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 4857beb..7ad31d8 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -293,11 +293,7 @@ python scripts/add_license_headers.py ```bash git commit -m "Add feature: your feature description - Detailed explanation of changes... - - 🤖 Generated with [Claude Code](https://claude.com/claude-code) - - Co-Authored-By: Your Name " + Detailed explanation of changes..." ``` 5. **Push to your fork** diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..6bf1d38 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,34 @@ +# Security Policy + +## Supported Versions + +| Version | Supported | +| ------- | ------------------ | +| 1.1.x | Yes | +| < 1.1 | No | + +## Reporting a Vulnerability + +If you discover a security vulnerability in Compose Booster, please report it responsibly. + +**Do not open a public issue.** + +Instead, use one of these methods: + +1. **GitHub Private Vulnerability Reporting** - Use the [Security Advisories](https://github.com/lestephen/compose-booster/security/advisories/new) page to report privately. +2. **Email** - Send details to the maintainer via the email listed on the [GitHub profile](https://github.com/lestephen). + +### What to Include + +- Description of the vulnerability +- Steps to reproduce +- Potential impact +- Suggested fix (if any) + +### Response Timeline + +- **Acknowledgment** within 48 hours +- **Initial assessment** within 1 week +- **Fix or mitigation** as soon as practical, depending on severity + +We appreciate responsible disclosure and will credit reporters in the release notes (unless you prefer to remain anonymous). diff --git a/vitest.config.ts b/vitest.config.ts index a5aa588..3c567f9 100644 --- a/vitest.config.ts +++ b/vitest.config.ts @@ -4,6 +4,7 @@ // // Copyright (c) 2025 Stephen Le +// eslint-disable-next-line import/no-unresolved import { defineConfig } from 'vitest/config'; import path from 'path';