feat: Complete 1.1.1 Initialize Node.js project structure (#10)

* feat: Complete 1.1.1 Initialize Node.js project structure

  - Create package.json with dependencies
  - Set up TypeScript configuration
  - Configure ESLint and Prettier
  - Set up Git hooks and CI/CD

* fix: Enhance security workflow with CodeQL initialization and improve build script formatting

Author: synthable

.github/dependabot.yml

@@ -0,0 +1,40 @@
+# Generated by Claude Sonnet 4 AI model
+version: 2
+updates:
+  # Enable version updates for npm
+  - package-ecosystem: 'npm'
+    directory: '/'
+    schedule:
+      interval: 'weekly'
+      day: 'monday'
+      time: '09:00'
+    open-pull-requests-limit: 5
+    reviewers:
+      - 'synthable'
+    commit-message:
+      prefix: 'chore'
+      include: 'scope'
+    # Group patch updates together
+    groups:
+      patch-updates:
+        patterns:
+          - '*'
+        update-types:
+          - 'patch'
+      minor-updates:
+        patterns:
+          - '*'
+        update-types:
+          - 'minor'
+
+  # Enable version updates for GitHub Actions
+  - package-ecosystem: 'github-actions'
+    directory: '/'
+    schedule:
+      interval: 'weekly'
+      day: 'monday'
+      time: '09:30'
+    open-pull-requests-limit: 3
+    commit-message:
+      prefix: 'ci'
+      include: 'scope'

.github/workflows/ci.yml

@@ -0,0 +1,80 @@
+# Generated by Claude Sonnet 4 AI model
+name: CI
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main, develop]
+
+jobs:
+  test:
+    name: Test on Node.js ${{ matrix.node-version }}
+    runs-on: ubuntu-latest
+
+    strategy:
+      matrix:
+        node-version: [18.x, 20.x, 22.x]
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: TypeScript type checking
+        run: npm run typecheck
+
+      - name: ESLint validation
+        run: npm run lint
+
+      - name: Prettier format checking
+        run: npm run format:check
+
+      - name: Run tests with coverage
+        run: npm run test:coverage
+
+      - name: Build verification
+        run: npm run build
+
+      - name: Upload coverage to Codecov
+        if: matrix.node-version == '20.x'
+        uses: codecov/codecov-action@v4
+        with:
+          file: ./coverage/lcov.info
+          fail_ci_if_error: false
+
+  quality-gate:
+    name: Quality Gate
+    runs-on: ubuntu-latest
+    needs: test
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20.x'
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run comprehensive quality check
+        run: npm run quality-check
+
+      - name: Verify build artifacts
+        run: |
+          npm run build
+          test -f dist/index.js
+          test -f dist/index.d.ts
+          test -f dist/core/cli.js

.github/workflows/release.yml

@@ -0,0 +1,64 @@
+# Generated by Claude Sonnet 4 AI model
+name: Release
+
+on:
+  push:
+    tags:
+      - 'v*'
+
+jobs:
+  release:
+    name: Release and Publish
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20.x'
+          cache: 'npm'
+          registry-url: 'https://registry.npmjs.org'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run full test suite
+        run: npm run test:coverage
+
+      - name: TypeScript type checking
+        run: npm run typecheck
+
+      - name: ESLint validation
+        run: npm run lint
+
+      - name: Prettier format checking
+        run: npm run format:check
+
+      - name: Build project
+        run: npm run build
+
+      - name: Verify package contents
+        run: |
+          npm pack --dry-run
+
+      - name: Extract version from tag
+        id: version
+        run: echo "version=${GITHUB_REF#refs/tags/v}" >> $GITHUB_OUTPUT
+
+      - name: Create GitHub Release
+        uses: actions/create-release@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          tag_name: ${{ github.ref }}
+          release_name: Release ${{ steps.version.outputs.version }}
+          draft: false
+          prerelease: false
+
+      - name: Publish to npm
+        run: npm publish
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

.github/workflows/security.yml

@@ -0,0 +1,56 @@
+# Generated by Claude Sonnet 4 AI model
+name: Security
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main, develop]
+  schedule:
+    # Run security scan every Monday at 9 AM UTC
+    - cron: '0 9 * * 1'
+
+jobs:
+  security-audit:
+    name: Security Audit
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20.x'
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run npm audit
+        run: npm audit --audit-level moderate
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: javascript
+
+      - name: Run CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
+        with:
+          languages: javascript
+
+  dependency-review:
+    name: Dependency Review
+    runs-on: ubuntu-latest
+    if: github.event_name == 'pull_request'
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v4
+        with:
+          fail-on-severity: moderate

.github/workflows/update-dependencies.yml

@@ -0,0 +1,61 @@
+# Generated by Claude Sonnet 4 AI model
+name: Update Dependencies
+
+on:
+  schedule:
+    # Run every Sunday at 6 AM UTC
+    - cron: '0 6 * * 0'
+  workflow_dispatch: # Allow manual trigger
+
+jobs:
+  update-dependencies:
+    name: Update Dependencies
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20.x'
+          cache: 'npm'
+
+      - name: Check for outdated packages
+        id: outdated
+        run: |
+          npm outdated --json > outdated.json || true
+          if [ -s outdated.json ]; then
+            echo "has_updates=true" >> $GITHUB_OUTPUT
+          else
+            echo "has_updates=false" >> $GITHUB_OUTPUT
+          fi
+
+      - name: Update dependencies
+        if: steps.outdated.outputs.has_updates == 'true'
+        run: |
+          npm update
+
+      - name: Run tests after update
+        if: steps.outdated.outputs.has_updates == 'true'
+        run: |
+          npm run quality-check
+
+      - name: Create Pull Request
+        if: steps.outdated.outputs.has_updates == 'true'
+        uses: peter-evans/create-pull-request@v6
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          commit-message: 'chore: update dependencies'
+          title: 'chore: automated dependency updates'
+          body: |
+            This PR contains automated dependency updates.
+
+            - Dependencies have been updated to their latest compatible versions
+            - All tests and quality checks have passed
+            - Please review the changes before merging
+          branch: automated-dependency-updates
+          delete-branch: true

.husky/pre-commit

@@ -0,0 +1,13 @@
+# Generated by Claude-4 AI model
+
+echo "🔍 Running pre-commit checks..."
+
+# Run TypeScript type checking
+echo "📝 Type checking..."
+npm run typecheck
+
+# Run lint-staged for staged files (includes ESLint auto-fix and Prettier)
+echo "🧹 Linting and formatting staged files..."
+npx lint-staged
+
+echo "✅ Pre-commit checks completed!"

.husky/pre-push

@@ -0,0 +1,21 @@
+# Generated by Claude-4 AI model
+
+echo "🚀 Running pre-push checks..."
+
+# Run TypeScript type checking
+echo "📝 Type checking..."
+npm run typecheck
+
+# Run full test suite
+echo "🧪 Running full test suite..."
+npm test
+
+# Run full lint check (not just staged files)
+echo "🔍 Running full lint check..."
+npm run lint
+
+# Verify build works
+echo "🏗️ Verifying build..."
+npm run build
+
+echo "✅ Pre-push checks completed! Ready to push."