cuenv 0.1.7

A direnv alternative that uses CUE files for environment configuration
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143

# cuenv Refactoring TODO List

## Critical Issues - Must Fix

### 1. Error Handling Refactor ๐Ÿšจ
- [ ] Replace ALL instances of `?` operator with explicit match expressions or if-let
- [ ] Create custom error types implementing `std::error::Error`
- [ ] Add `#[must_use]` to all Result-returning functions
- [ ] Implement proper error context with actionable messages

**Files to refactor:**
- `src/main.rs` - 6+ instances
- `src/env_manager.rs` - 8+ instances  
- `src/secrets.rs` - 6+ instances
- `src/cue_parser.rs` - 10+ instances

### 2. Type Safety Improvements ๐Ÿ”’
- [ ] Replace `HashMap<String, String>` with newtype wrappers
- [ ] Replace `serde_json::Value` with strongly typed structs
- [ ] Implement builder pattern for `EnvManager`, `SecretManager`, `CommandResolver`
- [ ] Use phantom types for compile-time guarantees
- [ ] Add const generics where applicable

### 3. Memory & Performance Optimization ๐Ÿš€
- [ ] Replace string allocations with `Cow<'_, str>` in hot paths
- [ ] Implement zero-copy patterns for parsing
- [ ] Add bounded concurrency to secret resolution
- [ ] Use `Arc<str>` instead of `String` for immutable strings
- [ ] Implement object pooling for frequently allocated types
- [ ] Add criterion benchmarks for critical paths

### 4. Security Hardening ๐Ÿ›ก๏ธ
- [ ] Implement constant-time comparison for secrets
- [ ] Use `zeroize` crate for secret memory management
- [ ] Replace naive string filtering with proper secret masking
- [ ] Add security audit logging
- [ ] Implement rate limiting for secret resolution
- [ ] Add input validation and sanitization

### 5. Async/Await Refactor ๐Ÿ”„
- [ ] Remove `tokio::runtime::Runtime::new()` from sync contexts
- [ ] Make `EnvManager::run_command` properly async
- [ ] Implement async builder patterns
- [ ] Add proper cancellation support
- [ ] Use `tokio::select!` for concurrent operations

### 6. Testing Overhaul ๐Ÿงช
- [ ] Remove all mocking - test behavior not implementation
- [ ] Add comprehensive property-based tests with proptest
- [ ] Test error paths and edge cases
- [ ] Add fuzzing tests for parsers
- [ ] Implement integration tests for all commands
- [ ] Add performance regression tests

## High Priority

### 7. Documentation ๐Ÿ“š
- [ ] Add comprehensive module-level documentation
- [ ] Document the "why" not just the "what"
- [ ] Add usage examples for all public APIs
- [ ] Create architecture decision records (ADRs)
- [ ] Add inline examples with `doc_test`

### 8. Platform Abstraction ๐Ÿ–ฅ๏ธ
- [ ] Replace conditional compilation with trait-based design
- [ ] Extract platform-specific code to separate crates
- [ ] Add WASM support for Cloudflare Workers
- [ ] Implement proper Windows support

### 9. Code Quality ๐ŸŽฏ
- [ ] Add `const fn` wherever possible
- [ ] Implement `From`/`TryFrom` instead of custom conversions
- [ ] Use `#[inline]` judiciously for performance
- [ ] Add `#[cold]` to error paths
- [ ] Implement proper Drop traits for cleanup

## Medium Priority

### 10. Feature Enhancements ๐ŸŒŸ
- [ ] Add support for encrypted CUE files
- [ ] Implement secret rotation notifications
- [ ] Add environment inheritance chains
- [ ] Support for remote CUE file sources
- [ ] Add dry-run mode for commands

### 11. Observability ๐Ÿ“Š
- [ ] Add structured logging with `tracing`
- [ ] Implement OpenTelemetry support
- [ ] Add metrics for secret resolution times
- [ ] Create health check endpoints
- [ ] Add debug mode with detailed traces

### 12. CLI Improvements ๐Ÿ’ป
- [ ] Add shell completion generation
- [ ] Implement interactive mode
- [ ] Add progress indicators for long operations
- [ ] Support for parallel environment loading
- [ ] Add environment diff visualization

## Low Priority

### 13. Ecosystem Integration ๐Ÿ”—
- [ ] Create GitHub Action
- [ ] Add Docker image
- [ ] Create Homebrew formula
- [ ] Add VSCode extension
- [ ] Create language-specific SDKs

### 14. Performance Monitoring ๐Ÿ“ˆ
- [ ] Add flamegraph generation
- [ ] Implement memory profiling
- [ ] Add startup time optimization
- [ ] Create performance dashboard
- [ ] Add continuous benchmarking

## Breaking Changes Required

1. **Error Handling**: Moving from `?` to explicit handling will change function signatures
2. **Async API**: Making operations properly async will break current sync API
3. **Type Safety**: Introducing newtypes will break direct string usage
4. **Builder Pattern**: Will change how objects are constructed

## Migration Guide Needed For:
- Error handling changes
- Async API migration
- New type system
- Platform-specific changes

## Estimated Effort:
- Critical Issues: 2-3 weeks
- High Priority: 1-2 weeks  
- Medium Priority: 1 week
- Low Priority: 1 week

Total: ~6 weeks for complete refactor

## Success Metrics:
- Zero uses of `?` operator
- 100% of public APIs have examples
- 90%+ test coverage with property tests
- Zero memory allocations in hot paths
- All secrets properly zeroed after use
- Criterion benchmarks for all critical operations