mirror of
https://github.com/ivuorinen/dotfiles.git
synced 2026-02-08 06:46:35 +00:00
Ismo Vuorinen
6d72003446
* fix(ci): replace broad permissions with specific scopes in workflows
Replace read-all/write-all with minimum required permission scopes
across all GitHub Actions workflows to follow the principle of least
privilege (SonarCloud rule githubactions:S8234).
* fix(shell): use [[ instead of [ for conditional tests
Replace single brackets with double brackets in bash conditional
expressions across 14 files (28 changes). All scripts use bash
shebangs so [[ is safe everywhere (SonarCloud rule shelldre:S7688).
* fix(shell): add explicit return statements to functions
Add return 0 as the last statement in ~46 shell functions across
17 files that previously relied on implicit return codes
(SonarCloud rule shelldre:S7682).
* fix(shell): assign positional parameters to local variables
Replace direct $1/$2/$3 usage with named local variables in _log(),
msg(), msg_err(), msg_done(), msg_run(), msg_ok(), and array_diff()
(SonarCloud rule shelldre:S7679).
* fix(python): replace dict() constructor with literal
Use {} instead of dict() for empty dictionary initialization
(SonarCloud rule python:S7498).
* fix(shell): fix husky shebang and tolerate npm outdated exit code
* docs(shell): add function docstring comments
* fix(shell): fix heredoc indentation in x-sonarcloud
* feat(python): add ruff linter and formatter configuration
* fix(ci): align megalinter config with biome, ruff, and shfmt settings
* fix(ci): disable black and yaml-prettier in megalinter config
* chore(ci): update ruff-pre-commit to v0.15.0 and fix hook name
* fix(scripts): check for .git dir before skipping clone in install-fonts
* fix(shell): address code review issues in scripts and shared.sh
- Guard wezterm show-keys failure in create-wezterm-keymaps.sh
- Stop masking git failures with return 0 in install-cheat-purebashbible.sh
- Add missing shared.sh source in install-xcode-cli-tools.sh
- Replace exit 1 with return 1 in sourced shared.sh
* fix(scripts): address code review and security findings
- Guard wezterm show-keys failure in create-wezterm-keymaps.sh
- Stop masking git failures with return 0 in install-cheat-purebashbible.sh
- Add missing shared.sh source in install-xcode-cli-tools.sh
- Replace exit 1 with return 1 in sourced shared.sh
- Remove shell=True subprocess calls in x-git-largest-files.py
* style(shell): apply shfmt formatting and add args to pre-commit hook
* fix(python): suppress bandit false positives in x-git-largest-files
* fix(python): add nosemgrep suppression for check_output call
* feat(format): add prettier for YAML formatting
Install prettier, add .prettierrc.json config (200-char width, 2-space
indent, LF endings), .prettierignore, yarn scripts (lint:prettier,
fix:prettier, format:yaml), and pre-commit hook scoped to YAML files.
* style(yaml): apply prettier formatting
* fix(scripts): address remaining code review findings
- Python: use list comprehension to filter empty strings instead of
slicing off the last element
- create-wezterm-keymaps: write to temp file and mv for atomic updates
- install-xcode-cli-tools: fix shellcheck source directive path
* fix(python): sort imports alphabetically in x-git-largest-files
* fix(lint): disable PYTHON_ISORT in MegaLinter, ruff handles it
* chore(git): add __pycache__ to gitignore
* fix(python): rename ambiguous variable l to line (E741)
* style: remove trailing whitespace and blank lines
* style(fzf): apply shfmt formatting
* style(shell): apply shfmt formatting
* docs(plans): add design documents
* style(docs): add language specifier to fenced code block
* feat(lint): add markdown-table-formatter to dev tooling
Add markdown-table-formatter as a dev dependency with yarn scripts
(lint:md-table, fix:md-table) and a local pre-commit hook to
automatically format markdown tables on commit.
91 lines
4.9 KiB
YAML
91 lines
4.9 KiB
YAML
# language of the project (csharp, python, rust, java, typescript, go, cpp, or ruby)
|
|
# * For C, use cpp
|
|
# * For JavaScript, use typescript
|
|
# Special requirements:
|
|
# * csharp: Requires the presence of a .sln file in the project folder.
|
|
language: bash
|
|
|
|
# whether to use the project's gitignore file to ignore files
|
|
# Added on 2025-04-07
|
|
ignore_all_files_in_gitignore: true
|
|
# list of additional paths to ignore
|
|
# same syntax as gitignore, so you can use * and **
|
|
# Was previously called `ignored_dirs`, please update your config if you are using that.
|
|
# Added (renamed) on 2025-04-07
|
|
ignored_paths:
|
|
- "*.swp"
|
|
- "*.tmp"
|
|
- "*.tmp.*"
|
|
- ".DS_Store"
|
|
- ".git/**"
|
|
- /config/cheat/cheatsheets/community/**
|
|
- /config/cheat/cheatsheets/pure-bash-bible/**
|
|
- /config/cheat/cheatsheets/tldr/**
|
|
- /config/fish/cheatsheets/community/**
|
|
- /config/fzf/**
|
|
- /config/nvim/snippets/**
|
|
- /config/nvim/spell/**
|
|
- /config/op/plugins/**
|
|
- /config/tmux/plugins/**
|
|
- /config/vim/extra/**
|
|
- /config/zsh/completions/**
|
|
- /config/zsh/plugins/**
|
|
- /local/man/fzf
|
|
- /local/share/fonts
|
|
- /tools/antidote
|
|
- /tools/dotbot
|
|
- /tools/dotbot-*/**
|
|
- node_modules/**
|
|
|
|
# whether the project is in read-only mode
|
|
# If set to true, all editing tools will be disabled and attempts to use them will result in an error
|
|
# Added on 2025-04-18
|
|
read_only: false
|
|
|
|
# list of tool names to exclude. We recommend not excluding any tools, see the readme for more details.
|
|
# Below is the complete list of tools for convenience.
|
|
# To make sure you have the latest list of tools, and to view their descriptions,
|
|
# execute `uv run scripts/print_tool_overview.py`.
|
|
#
|
|
# * `activate_project`: Activates a project by name.
|
|
# * `check_onboarding_performed`: Checks whether project onboarding was already performed.
|
|
# * `create_text_file`: Creates/overwrites a file in the project directory.
|
|
# * `delete_lines`: Deletes a range of lines within a file.
|
|
# * `delete_memory`: Deletes a memory from Serena's project-specific memory store.
|
|
# * `execute_shell_command`: Executes a shell command.
|
|
# * `find_referencing_code_snippets`: Finds code snippets in which the symbol at the given location is referenced.
|
|
# * `find_referencing_symbols`: Finds symbols that reference the symbol at the given location (optionally filtered by type).
|
|
# * `find_symbol`: Performs a global (or local) search for symbols with/containing a given name/substring (optionally filtered by type).
|
|
# * `get_current_config`: Prints the current configuration of the agent, including the active and available projects, tools, contexts, and modes.
|
|
# * `get_symbols_overview`: Gets an overview of the top-level symbols defined in a given file.
|
|
# * `initial_instructions`: Gets the initial instructions for the current project.
|
|
# Should only be used in settings where the system prompt cannot be set,
|
|
# e.g. in clients you have no control over, like Claude Desktop.
|
|
# * `insert_after_symbol`: Inserts content after the end of the definition of a given symbol.
|
|
# * `insert_at_line`: Inserts content at a given line in a file.
|
|
# * `insert_before_symbol`: Inserts content before the beginning of the definition of a given symbol.
|
|
# * `list_dir`: Lists files and directories in the given directory (optionally with recursion).
|
|
# * `list_memories`: Lists memories in Serena's project-specific memory store.
|
|
# * `onboarding`: Performs onboarding (identifying the project structure and essential tasks, e.g. for testing or building).
|
|
# * `prepare_for_new_conversation`: Provides instructions for preparing for a new conversation (in order to continue with the necessary context).
|
|
# * `read_file`: Reads a file within the project directory.
|
|
# * `read_memory`: Reads the memory with the given name from Serena's project-specific memory store.
|
|
# * `remove_project`: Removes a project from the Serena configuration.
|
|
# * `replace_lines`: Replaces a range of lines within a file with new content.
|
|
# * `replace_symbol_body`: Replaces the full definition of a symbol.
|
|
# * `restart_language_server`: Restarts the language server, may be necessary when edits not through Serena happen.
|
|
# * `search_for_pattern`: Performs a search for a pattern in the project.
|
|
# * `summarize_changes`: Provides instructions for summarizing the changes made to the codebase.
|
|
# * `switch_modes`: Activates modes by providing a list of their names
|
|
# * `think_about_collected_information`: Thinking tool for pondering the completeness of collected information.
|
|
# * `think_about_task_adherence`: Thinking tool for determining whether the agent is still on track with the current task.
|
|
# * `think_about_whether_you_are_done`: Thinking tool for determining whether the task is truly completed.
|
|
# * `write_memory`: Writes a named memory (for future reference) to Serena's project-specific memory store.
|
|
excluded_tools: []
|
|
|
|
# initial prompt for the project. It will always be given to the LLM upon activating the project
|
|
# (contrary to the memories, which are loaded on demand).
|
|
initial_prompt: ""
|
|
|
|
project_name: ".dotfiles"
|