Merge remote-tracking branch 'v3/dev' into dev

Author: ymc9

.coderabbit.yaml

@@ -0,0 +1,10 @@
+# yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json
+language: 'en-US'
+early_access: false
+reviews:
+    auto_review:
+        enabled: true
+        base_branches: ['dev', 'main']
+    sequence_diagrams: false
+chat:
+    auto_reply: true

.devcontainer/devcontainer.json

@@ -1,20 +1,19 @@
+// For format details, see https://aka.ms/devcontainer.json. For config options, see the
+// README at: https://github.com/devcontainers/templates/tree/main/src/typescript-node
 {
-  "name": "zenstack",
-  "dockerComposeFile": [
-    "./docker-compose.yml"
-  ],
-  "workspaceMount": "source=${localWorkspaceFolder},target=/workspace,type=bind",
-  "workspaceFolder": "/workspace",
-  "service": "workspace",
-  "shutdownAction": "stopCompose",
-  "postCreateCommand": "npm i -g pnpm@9.15.9 && pnpm install && pnpm build && pnpm test-scaffold",
-  "remoteUser": "node",
-  "customizations": {
-    "vscode": {
-      "extensions": [
-        "langium.langium-vscode",
-        "firsttris.vscode-jest-runner"
-      ]
-    }
-  }
-}
+    "name": "Node.js & TypeScript",
+    // Or use a Dockerfile or Docker Compose file. More info: https://containers.dev/guide/dockerfile
+    "image": "mcr.microsoft.com/devcontainers/typescript-node:1-22-bookworm",
+    "features": {
+        "ghcr.io/devcontainers/features/git-lfs:1": {
+            "autoPull": true,
+            "version": "latest"
+        },
+        "ghcr.io/itsmechlark/features/postgresql:1": {
+            "version": "latest"
+        }
+    },
+
+    // Use 'postCreateCommand' to run commands after the container is created.
+    "postCreateCommand": "pnpm install"
+}

.github/dependabot.yml

@@ -0,0 +1,20 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for more information:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+# https://containers.dev/guide/dependabot
+
+version: 2
+updates:
+ - package-ecosystem: "devcontainers"
+   directory: "/"
+   schedule:
+     interval: weekly
+
+ - package-ecosystem: "npm"
+   directory: "/"
+   schedule:
+     interval: weekly
+
+target-branch: dev
+

.github/workflows/build-test.yml

@@ -1,18 +1,14 @@
-# This workflow will do a clean installation of node dependencies, cache/restore them, build the source code and run tests across different versions of node
-# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-nodejs
-
-name: CI
-
-env:
-    TELEMETRY_TRACKING_TOKEN: ${{ secrets.TELEMETRY_TRACKING_TOKEN }}
-    DO_NOT_TRACK: '1'
+name: Build and Test
 
 on:
     pull_request:
         branches:
             - main
             - dev
-            - release/*
+
+env:
+    TELEMETRY_TRACKING_TOKEN: ${{ secrets.TELEMETRY_TRACKING_TOKEN }}
+    DO_NOT_TRACK: '1'
 
 permissions:
     contents: read
@@ -25,7 +21,7 @@ jobs:
             postgres:
                 image: postgres
                 env:
-                    POSTGRES_PASSWORD: abc123
+                    POSTGRES_PASSWORD: postgres
                 # Set health checks to wait until postgres has started
                 options: >-
                     --health-cmd pg_isready
@@ -35,25 +31,44 @@ jobs:
                 ports:
                     - 5432:5432
 
+            mysql:
+                image: mysql:8.4
+                env:
+                    MYSQL_ROOT_PASSWORD: mysql
+                ports:
+                    - 3306:3306
+                # Set health checks to wait until mysql has started
+                options: >-
+                    --health-cmd="mysqladmin ping --silent"
+                    --health-interval=10s
+                    --health-timeout=5s
+                    --health-retries=3
+
         strategy:
             matrix:
-                node-version: [20.x]
+                node-version: [22.x]
+                provider: [sqlite, postgresql, mysql]
 
         steps:
             - name: Checkout
-              uses: actions/checkout@v3
+              uses: actions/checkout@v4
 
             - name: Install pnpm
               uses: pnpm/action-setup@v2
               with:
-                  version: 9.15.9
+                  version: 10.12.1
 
             - name: Use Node.js ${{ matrix.node-version }}
               uses: buildjet/setup-node@v3
               with:
                   node-version: ${{ matrix.node-version }}
                   cache: 'pnpm'
 
+            - name: Use Bun
+              uses: oven-sh/setup-bun@v2
+              with:
+                  bun-version: latest
+
             - name: Get pnpm store directory
               id: pnpm-cache
               shell: bash
@@ -71,29 +86,17 @@ jobs:
             - name: Install dependencies
               run: pnpm install --frozen-lockfile
 
-            - name: Gradle Wrapper Validation
-              uses: gradle/wrapper-validation-action@v1.1.0
-
-            - name: Setup Java
-              uses: actions/setup-java@v4
-              with:
-                  distribution: zulu
-                  java-version: 17
-
-            - name: Setup Gradle
-              uses: gradle/gradle-build-action@v2.4.2
-              with:
-                  gradle-home-cache-cleanup: true
-
             - name: Build
-              run: DEFAULT_NPM_TAG=latest pnpm run build-ci
+              run: |
+                  pnpm run build
+                  pnpm tsx packages/cli/scripts/post-build.ts
 
             - name: Lint
-              run: pnpm lint
+              run: pnpm run lint
 
-            # install again for internal dependencies
-            - name: Install internal dependencies
-              run: pnpm install --frozen-lockfile
+            - name: Set MySQL max_connections
+              run: |
+                  mysql -h 127.0.0.1 -uroot -pmysql -e "SET GLOBAL max_connections=500;"
 
             - name: Test
-              run: pnpm run test-scaffold && pnpm run test-ci
+              run: TEST_DB_PROVIDER=${{ matrix.provider }} pnpm run test

.github/workflows/bump-version.yml

@@ -0,0 +1,54 @@
+name: Bump Version
+
+on:
+    workflow_dispatch:
+        inputs:
+            version_type:
+                description: 'Version type to bump'
+                required: true
+                type: choice
+                options:
+                    - patch
+                    - minor
+
+permissions:
+    contents: write
+    pull-requests: write
+
+jobs:
+    bump-version:
+        runs-on: ubuntu-latest
+        if: github.ref == 'refs/heads/dev'
+
+        steps:
+            - name: Checkout
+              uses: actions/checkout@v4
+              with:
+                  ref: dev
+
+            - name: Install pnpm
+              uses: pnpm/action-setup@v2
+              with:
+                  version: 10.12.1
+
+            - name: Use Node.js
+              uses: actions/setup-node@v4
+              with:
+                  node-version: 22.x
+                  cache: 'pnpm'
+
+            - name: Install dependencies
+              run: pnpm install --frozen-lockfile
+
+            - name: Bump version
+              id: bump
+              run: npx tsx scripts/bump-version.ts ${{ inputs.version_type }}
+
+            - name: Create PR
+              uses: peter-evans/create-pull-request@v7
+              with:
+                  commit-message: 'chore: bump version ${{ steps.bump.outputs.new_version }}'
+                  title: '[CI] Bump version ${{ steps.bump.outputs.new_version }}'
+                  body: Automated changes for bumping version
+                  branch: chore/ci-bump-version
+                  branch-suffix: timestamp

.github/workflows/claude-code-review.yml

@@ -0,0 +1,77 @@
+name: Claude Code Review
+
+on:
+    pull_request:
+        types: [opened, synchronize]
+        # Optional: Only run on specific file changes
+        # paths:
+        #   - "src/**/*.ts"
+        #   - "src/**/*.tsx"
+        #   - "src/**/*.js"
+        #   - "src/**/*.jsx"
+
+jobs:
+    claude-review:
+        # Optional: Filter by PR author
+        # if: |
+        #   github.event.pull_request.user.login == 'external-contributor' ||
+        #   github.event.pull_request.user.login == 'new-developer' ||
+        #   github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR'
+
+        runs-on: ubuntu-latest
+        permissions:
+            contents: read
+            pull-requests: write
+            issues: read
+            id-token: write
+
+        steps:
+            - name: Checkout repository
+              uses: actions/checkout@v4
+              with:
+                  fetch-depth: 1
+
+            - name: Run Claude Code Review
+              id: claude-review
+              uses: anthropics/claude-code-action@beta
+              with:
+                  claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
+
+                  # Optional: Specify model (defaults to Claude Sonnet 4, uncomment for Claude Opus 4)
+                  # model: "claude-opus-4-20250514"
+
+                  # Direct prompt for automated review (no @claude mention needed)
+                  direct_prompt: |
+                      Please review this pull request and provide feedback on:
+                      - Code quality and best practices
+                      - Potential bugs or issues
+                      - Performance considerations
+                      - Security concerns
+                      - Test coverage
+
+                      Be constructive and helpful in your feedback.
+
+                  # Optional: Use sticky comments to make Claude reuse the same comment on subsequent pushes to the same PR
+                  # use_sticky_comment: true
+
+                  # Optional: Customize review based on file types
+                  # direct_prompt: |
+                  #   Review this PR focusing on:
+                  #   - For TypeScript files: Type safety and proper interface usage
+                  #   - For API endpoints: Security, input validation, and error handling
+                  #   - For React components: Performance, accessibility, and best practices
+                  #   - For tests: Coverage, edge cases, and test quality
+
+                  # Optional: Different prompts for different authors
+                  # direct_prompt: |
+                  #   ${{ github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR' &&
+                  #   'Welcome! Please review this PR from a first-time contributor. Be encouraging and provide detailed explanations for any suggestions.' ||
+                  #   'Please provide a thorough code review focusing on our coding standards and best practices.' }}
+
+                  # Optional: Add specific tools for running tests or linting
+                  # allowed_tools: "Bash(npm run test),Bash(npm run lint),Bash(npm run typecheck)"
+
+                  # Optional: Skip review for certain conditions
+                  # if: |
+                  #   !contains(github.event.pull_request.title, '[skip-review]') &&
+                  #   !contains(github.event.pull_request.title, '[WIP]')

.github/workflows/claude.yml

@@ -0,0 +1,63 @@
+name: Claude Code
+
+on:
+    issue_comment:
+        types: [created]
+    pull_request_review_comment:
+        types: [created]
+    issues:
+        types: [opened, assigned]
+    pull_request_review:
+        types: [submitted]
+
+jobs:
+    claude:
+        if: |
+            (github.event_name == 'issue_comment' && contains(github.event.comment.body, '@claude')) ||
+            (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude')) ||
+            (github.event_name == 'pull_request_review' && contains(github.event.review.body, '@claude')) ||
+            (github.event_name == 'issues' && (contains(github.event.issue.body, '@claude') || contains(github.event.issue.title, '@claude')))
+        runs-on: ubuntu-latest
+        permissions:
+            contents: read
+            pull-requests: write
+            issues: read
+            id-token: write
+            actions: read # Required for Claude to read CI results on PRs
+        steps:
+            - name: Checkout repository
+              uses: actions/checkout@v4
+              with:
+                  fetch-depth: 1
+
+            - name: Run Claude Code
+              id: claude
+              uses: anthropics/claude-code-action@beta
+              with:
+                  claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
+
+                  # This is an optional setting that allows Claude to read CI results on PRs
+                  additional_permissions: |
+                      actions: read
+
+                  # Optional: Specify model (defaults to Claude Sonnet 4, uncomment for Claude Opus 4)
+                  # model: "claude-opus-4-20250514"
+
+                  # Optional: Customize the trigger phrase (default: @claude)
+                  # trigger_phrase: "/claude"
+
+                  # Optional: Trigger when specific user is assigned to an issue
+                  # assignee_trigger: "claude-bot"
+
+                  # Optional: Allow Claude to run specific commands
+                  # allowed_tools: "Bash(npm install),Bash(npm run build),Bash(npm run test:*),Bash(npm run lint:*)"
+
+                  # Optional: Add custom instructions for Claude to customize its behavior for your project
+                  # custom_instructions: |
+                  #   Follow our coding standards
+                  #   Ensure all new code has tests
+                  #   Use TypeScript for new files
+
+                  # Optional: Custom environment variables for Claude
+                  # claude_env: |
+                  #   NODE_ENV: test