Experimental/improvements

.dockerignore

@@ -0,0 +1,100 @@
+# Dependencies
+node_modules/
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+
+# Build outputs
+dist/
+trace/
+docs/
+coverage/
+
+# Environment variables
+.env
+.env.local
+.env.development.local
+.env.test.local
+.env.production.local
+
+# IDE and editor files
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# OS generated files
+.DS_Store
+.DS_Store?
+._*
+.Spotlight-V100
+.Trashes
+ehthumbs.db
+Thumbs.db
+
+# Git
+.git/
+.gitignore
+
+# CI/CD
+.github/
+.gitlab-ci.yml
+.travis.yml
+.circleci/
+
+# Cache directories
+.npm/
+.eslintcache
+.nyc_output/
+.cache/
+
+# Logs
+logs/
+*.log
+
+# Runtime data
+pids/
+*.pid
+*.seed
+*.pid.lock
+
+# Optional npm cache directory
+.npm
+
+# Optional REPL history
+.node_repl_history
+
+# Output of 'npm pack'
+*.tgz
+
+# Yarn Integrity file
+.yarn-integrity
+
+# Development files
+src/
+tests/
+*.test.js
+*.spec.js
+jest.config.js
+babel.config.js
+
+# Documentation
+README.md
+CHANGELOG.md
+LICENSE
+*.md
+docs/
+
+# TypeScript
+tsconfig*.json
+*.tsbuildinfo
+
+# Linting
+.eslintrc*
+.prettierrc*
+
+# Other config files
+.editorconfig
+.gitattributes

.eslintrc

@@ -15,13 +15,32 @@
     "project": "./tsconfig.eslint.json"
   },
   "plugins": ["@typescript-eslint"],
+  "ignorePatterns": ["**/*.d.ts", "dist/**/*", "node_modules/**/*"],
   "rules": {
     "class-methods-use-this": 0,
     "import/prefer-default-export": 0,
     "@typescript-eslint/no-redeclare": 0,
     "@typescript-eslint/naming-convention": 0,
     "@typescript-eslint/no-unused-vars": ["error", { "argsIgnorePattern": "^_" }],
     "@typescript-eslint/no-use-before-define": ["error", "nofunc"],
-    "func-names": 0
+    "func-names": 0,
+
+    // Architecture-specific overrides for perfect 10/10 architecture
+    "max-classes-per-file": ["error", 5], // Allow multiple related classes in architecture files
+    "no-underscore-dangle": ["error", { 
+      "allow": ["__brand", "__constraint", "__phantom"] // Allow TypeScript branded type symbols
+    }],
+    "no-restricted-syntax": ["error", 
+      // Keep most restrictions but allow for...of loops for dependency checking
+      "ForInStatement",
+      "LabeledStatement", 
+      "WithStatement"
+    ],
+
+    // Allow .js extensions for proper ESM compatibility
+    "import/extensions": ["error", "ignorePackages", {
+      "js": "always",
+      "ts": "never"
+    }]
   }
 }

.github/dependabot.yml

@@ -0,0 +1,61 @@
+version: 2
+
+updates:
+  # NPM package updates
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "06:00"
+      timezone: "UTC"
+    open-pull-requests-limit: 10
+    assignees:
+      - "tabaktoni"
+    reviewers:
+      - "tabaktoni"
+    commit-message:
+      prefix: "chore"
+      include: "scope"
+    labels:
+      - "dependencies"
+      - "automerge"
+    ignore:
+      # Ignore major version updates for breaking changes
+      - dependency-name: "*"
+        update-types: ["version-update:semver-major"]
+    groups:
+      # Group development dependencies
+      development-dependencies:
+        dependency-type: "development"
+        patterns:
+          - "@types/*"
+          - "@typescript-eslint/*"
+          - "eslint*"
+          - "prettier*"
+          - "semantic-release*"
+        update-types:
+          - "minor"
+          - "patch"
+
+      # Group production dependencies
+      production-dependencies:
+        dependency-type: "production"
+        update-types:
+          - "patch"
+
+  # GitHub Actions updates
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "sunday"
+      time: "08:00"
+      timezone: "UTC"
+    open-pull-requests-limit: 5
+    commit-message:
+      prefix: "ci"
+      include: "scope"
+    labels:
+      - "github-actions"
+      - "automerge"

.github/workflows/dependabot-automerge.yml

@@ -0,0 +1,69 @@
+name: Dependabot Auto-merge
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened, ready_for_review]
+
+permissions:
+  contents: write
+  pull-requests: write
+  checks: read
+
+jobs:
+  dependabot-automerge:
+    name: Auto-merge Dependabot PRs
+    runs-on: ubuntu-latest
+    if: github.actor == 'dependabot[bot]' && !github.event.pull_request.draft
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Check Dependabot metadata
+        id: dependabot-metadata
+        uses: dependabot/fetch-metadata@v2
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Wait for status checks
+        uses: WyriHaximus/[email protected]
+        id: wait-for-status
+        with:
+          ignoreActions: "dependabot-automerge"
+          checkInterval: 30
+          timeout: 900
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Auto-merge minor/patch updates
+        if: >
+          steps.wait-for-status.outputs.status == 'success' &&
+          (
+            steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch' ||
+            steps.dependabot-metadata.outputs.update-type == 'version-update:semver-minor'
+          )
+        run: |
+          echo "✅ Auto-merging ${{ steps.dependabot-metadata.outputs.update-type }} update"
+          gh pr merge --auto --squash "${{ github.event.pull_request.html_url }}"
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Comment on major updates
+        if: steps.dependabot-metadata.outputs.update-type == 'version-update:semver-major'
+        run: |
+          gh pr comment "${{ github.event.pull_request.html_url }}" --body \
+            "🚨 **Major version update detected** - Manual review required before merging.
+
+            **Dependency:** ${{ steps.dependabot-metadata.outputs.dependency-names }}
+            **Update type:** ${{ steps.dependabot-metadata.outputs.update-type }}
+
+            Please review the changelog and breaking changes before approving."
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Label security updates
+        if: steps.dependabot-metadata.outputs.package-ecosystem == 'npm' && contains(steps.dependabot-metadata.outputs.dependency-names, 'security')
+        run: |
+          gh pr edit "${{ github.event.pull_request.html_url }}" --add-label "security,priority:high"
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}