agpm-cli 0.4.10

AGent Package Manager - A Git-based package manager for coding agents
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205

# Project-Specific Coding Standards

This file demonstrates the content filter feature. It's a project-local file that can be embedded into agents using `{{ 'docs/coding-standards.md' | content }}`.

## Project Overview

This project uses AGPM (Claude Code Package Manager) to manage AI coding assistant resources. When reviewing code, ensure adherence to these project-specific standards.

## Rust Version

- **Minimum**: Rust 2024 edition
- **Toolchain**: Use stable unless specifically needed features require nightly

## Project Structure

```
src/
├── cli/         # Command-line interface implementations
├── core/        # Core types and error handling
├── git/         # Git operations
├── resolver/    # Dependency resolution
└── installer/   # Resource installation
```

## Naming Conventions

### Modules
- Use snake_case for module names
- Organize by feature, not by type
- Keep modules focused and single-purpose

### Functions
- Prefer descriptive names over abbreviations
- Use verb phrases: `resolve_dependencies`, not `dependencies`
- Async functions should be clearly marked in documentation

### Types
- Use PascalCase for type names
- Error types end with `Error`: `ConfigError`, `InstallError`
- Result types should be meaningful: `InstallResult`, not `Result<()>`

## Error Handling

### Custom Error Types
All modules should define their own error types using `thiserror`:

```rust
#[derive(Debug, thiserror::Error)]
pub enum ModuleError {
    #[error("Operation failed: {0}")]
    OperationError(String),

    #[error("Invalid configuration: {source}")]
    ConfigError {
        #[from]
        source: ConfigError,
    },
}
```

### Context
Always add context to errors using `.context()` from anyhow:

```rust
fs::read_to_string(&path)
    .context(format!("Failed to read config file at {}", path.display()))?
```

## Testing Standards

### Test Organization
- Unit tests in same file as implementation
- Integration tests in `tests/` directory
- Use `TestProject` and `TestGit` helpers from `tests/common/`

### Test Naming
```rust
#[tokio::test]
async fn test_install_with_valid_manifest() {
    // Arrange
    let project = TestProject::new();

    // Act
    let result = install(&project.path()).await;

    // Assert
    assert!(result.is_ok());
}
```

### Parallel Safety
- ALL tests must be parallel-safe
- No `std::env::set_var()` - causes race conditions
- Each test gets its own temp directory
- Use `tokio::fs` in async tests, not `std::fs`

## Performance Guidelines

### Async I/O
Always use `tokio::fs` for file operations in async contexts:

```rust
// Good
let content = tokio::fs::read_to_string(&path).await?;

// Bad - blocks the executor
let content = std::fs::read_to_string(&path)?;
```

### Parallelism
- Leverage parallel iterators from rayon when appropriate
- Use batch operations instead of loops for Git operations
- Default parallelism: `max(10, 2 × CPU cores)`

## Documentation Requirements

### Public API
All public items must have documentation:

```rust
/// Installs resources from the manifest.
///
/// # Arguments
/// * `project_path` - Root directory of the project
///
/// # Errors
/// Returns `InstallError` if:
/// - The manifest file is missing or invalid
/// - Git operations fail
/// - File system operations fail
///
/// # Example
/// ```no_run
/// use agpm::install;
///
/// let result = install(Path::new(".")).await?;
/// ```
pub async fn install(project_path: &Path) -> Result<(), InstallError>
```

### Doctests
- Use `no_run` for examples that require external resources
- Use `ignore` for examples that won't compile standalone
- Prefer executable examples when possible

## Git Commit Messages

Follow conventional commits:

```
feat: add content filter for template embedding
fix: resolve path traversal vulnerability in content filter
docs: update README with content embedding examples
test: add integration tests for content filter
refactor: simplify dependency resolution logic
```

## CI/CD Requirements

All PRs must:
- Pass `cargo fmt -- --check`
- Pass `cargo clippy -- -D warnings`
- Pass `cargo nextest run` (all tests)
- Pass `cargo test --doc` (doctests)
- Maintain >70% code coverage

## Dependencies

### Adding New Dependencies
1. Justify the need - avoid unnecessary dependencies
2. Check license compatibility
3. Prefer well-maintained crates
4. Update CLAUDE.md with new dependency

### Dependency Versions
- Use specific versions in Cargo.toml
- Test with `cargo update` before releases
- Document any version constraints

## Security

### Path Handling
- Always validate and normalize paths
- Check for directory traversal attempts
- Use `PathBuf` instead of `String` for paths

### Credentials
- Never hardcode credentials
- Store in `~/.agpm/config.toml` only
- Never log credentials or tokens

## Code Review Checklist

Before requesting review:
- [ ] All tests pass locally
- [ ] Added tests for new functionality
- [ ] Updated documentation
- [ ] Ran `cargo fmt`
- [ ] Ran `cargo clippy` and addressed warnings
- [ ] Updated CLAUDE.md if needed
- [ ] Commit messages follow convention

---

*This is a living document. Update as project conventions evolve.*