feat: standardize package configuration and workflows

[Zaiidmo]

Standardization Pull Request

Changes

• ✅ Updated ESLint configuration for v9 compatibility
• ✅ Fixed 43 lint errors (unused variables)
• ✅ Fixed TypeScript import type issue in postgres.adapter.spec.ts
• ✅ Added standardized GitHub workflows (pr-validation, release-check, publish)
• ✅ Updated SONAR_PROJECT_KEY to CISCODE-MA_DatabaseKit
• ✅ Applied Prettier formatting
• ✅ All checks passing: format, lint, typecheck, build

Files Modified

• eslint.config.js: Enhanced no-unused-vars rule
• src/adapters/postgres.adapter.spec.ts: Simplified Knex type annotation
• .github/workflows/: Added 3 standard workflows

Status

• ✅ Format: Passing
• ✅ Lint: Passing
• ✅ Typecheck: Passing
• ✅ Build: Passing

[Copilot]

Pull request overview

This PR standardizes tooling and CI configuration for DatabaseKit (NestJS database abstraction library), aiming to modernize linting (ESLint v9), formatting, testing, and GitHub workflows.

Changes:

• Added/updated ESLint + TypeScript lint setup (flat config + dedicated tsconfig.eslint.json) and applied formatting updates across the codebase.
• Added a new Jest TypeScript config and introduced standardized CI workflows for PR validation, release checks, and publishing.
• Refactored/normalized several library source files (adapters/services/utils/contracts) primarily for type-import hygiene and formatting consistency.

Reviewed changes

Copilot reviewed 26 out of 28 changed files in this pull request and generated 10 comments.

Show a summary per file

File	Description
tsconfig.json	Formatting-only normalization of compiler options/paths.
tsconfig.eslint.json	Adds an ESLint-focused TS config to lint TS/JS across repo.
eslint.config.js	Introduces ESLint v9 flat config with TS + import rules.
jest.config.ts	Adds a TypeScript-based Jest configuration (new).
package.json	Updates scripts/tooling and changes package module type.
src/services/database.service.ts	Import ordering/formatting; no functional change intended.
src/services/logger.service.ts	Formatting-only adjustments.
src/database-kit.module.ts	Formatting/structure cleanup; provider wiring unchanged.
src/contracts/database.contracts.ts	Formatting/type literal normalization (quotes/layout).
src/config/database.config.ts	Formatting + small helper additions/organization.
src/config/database.constants.ts	Formatting/string literal normalization.
src/index.ts	Export formatting; no export-surface change intended.
src/filters/database-exception.filter.ts	Formatting and minor structural cleanup.
src/utils/pagination.utils.ts	Type-only imports + formatting.
src/utils/validation.utils.ts	Formatting and minor style normalization.
src/utils/*.spec.ts	Prettier-driven formatting updates.
src/adapters/mongo.adapter.ts	Formatting; repository implementation unchanged in behavior.
src/adapters/postgres.adapter.ts	Formatting; repository/transaction behavior unchanged in intent.
src/adapters/mongo.adapter.spec.ts	Formatting/type-only imports normalization.
.github/workflows/pr-validation.yml	Adds PR validation workflow (develop branch).
.github/workflows/release-check.yml	Adds release-check workflow (master PRs + optional Sonar).
.github/workflows/publish.yml	Updates publish pipeline behavior/Node version/publish flags.
.github/workflows/ci.yml	Removes the prior combined CI workflow.

[Copilot]

The "prepare": "husky" script will run on install, but husky is not listed in devDependencies (and isn’t present in package-lock). This will cause installs (including CI/publish) to fail with "husky: command not found". Either add husky as a dependency or remove the prepare script.

[Copilot]

tsconfigRootDir: import.meta.dirname requires Node versions that support import.meta.dirname (not available in Node 18). Since package.json declares engines >=18, linting will break for Node 18 users. Use a Node-18-compatible dirname derivation (fileURLToPath(import.meta.url) + path.dirname) or bump engines to >=20.

[Copilot]

The JSDoc example shows const [user] = await usersRepo.create(...), but Repository.create() returns a single entity, not an array. This example is likely incorrect and may confuse consumers; update it to match the actual return type for create().

Suggested change

	* const [user] = await usersRepo.create({ name: 'John' });
	* const [order] = await ordersRepo.create({ user_id: user.id, total: 100 });
	* const user = await usersRepo.create({ name: 'John' });
	* const order = await ordersRepo.create({ user_id: user.id, total: 100 });

[Copilot]

trx.raw(SET LOCAL statement_timeout = ${timeout}) interpolates a value directly into SQL. Even though timeout is typed as number, it’s runtime input from consumers and can be non-numeric in JS. Validate/coerce it to a safe integer and prefer parameter binding (if supported) to avoid SQL injection risk and SQL syntax errors.

[Copilot]

const model = opts.model as Model<any>; introduces any into the public repository implementation, reducing type safety and making it easier to misuse the adapter. Consider using Model<Record<string, unknown>> / Model<unknown> (or making MongoRepositoryOptions generic over the model type) to avoid any leaking into the implementation.

Suggested change

	const model = opts.model as Model<any>;
	const model = opts.model as Model<Record<string, unknown>>;

[Copilot]

NestJS Logger.error’s second argument is a stack/trace string. Passing the raw Error object as the second parameter can lead to logs like "[object Object]" or missing stack traces depending on logger implementation. Consider passing error instanceof Error ? error.stack : String(error) as the trace argument (and/or include the error as structured metadata if supported).

Suggested change

	this.logger.error("Error during database disconnect", error);
	const trace = error instanceof Error ? error.stack : String(error);
	this.logger.error("Error during database disconnect", trace);

[Copilot]

The publish workflow dropped --provenance (and no longer requests id-token: write), which reduces supply-chain integrity for npm releases. If this wasn’t intentional, consider restoring provenance publishing and the required OIDC permission.

[Copilot]

Setting "type": "module" makes Node treat all .js files (including dist/index.js) as ESM. The project still compiles TypeScript with "module": "commonjs" (tsconfig.json), so the published output is likely CommonJS and will fail to load for consumers (ERR_REQUIRE_ESM / syntax errors). Consider either reverting to CommonJS package type or switching the build output + package exports to true ESM (and providing a CJS fallback if needed).

Suggested change

"type": "module",

[Copilot]

This repo currently contains both eslint.config.js and eslint.config.mjs. ESLint will only load one flat-config file, so having two configs is ambiguous and makes it unclear which rules are actually applied. Consider removing the unused one (or consolidating) so there is a single source of truth.

Suggested change

	import eslint from "@eslint/js";
	import globals from "globals";
	import importPlugin from "eslint-plugin-import";
	import tseslint from "@typescript-eslint/eslint-plugin";
	import tsparser from "@typescript-eslint/parser";
	export default [
	{ ignores: ["dist/**", "coverage/**", "node_modules/**"] },
	eslint.configs.recommended,
	// Base TS rules (all TS files)
	{
	files: ["**/*.ts"],
	languageOptions: {
	parser: tsparser,
	parserOptions: {
	project: "./tsconfig.eslint.json",
	tsconfigRootDir: import.meta.dirname,
	ecmaVersion: "latest",
	sourceType: "module",
	},
	globals: { ...globals.node, ...globals.jest },
	},
	plugins: {
	"@typescript-eslint": tseslint,
	import: importPlugin,
	},
	rules: {
	"no-unused-vars": "off", // Disable base rule to use TypeScript version
	"@typescript-eslint/no-unused-vars": [
	"error",
	{
	argsIgnorePattern: "^_",
	varsIgnorePattern: "^_",
	caughtErrorsIgnorePattern: "^_",
	destructuredArrayIgnorePattern: "^_",
	},
	],
	"@typescript-eslint/consistent-type-imports": [
	"error",
	{ prefer: "type-imports" },
	],
	"import/no-duplicates": "error",
	"import/order": [
	"error",
	{
	"newlines-between": "always",
	alphabetize: { order: "asc", caseInsensitive: true },
	},
	],
	},
	},
	// Test files
	{
	files: ["**/*.spec.ts", "**/*.test.ts"],
	rules: {
	"@typescript-eslint/no-explicit-any": "off",
	},
	},
	// NestJS Controllers can use constructor injection with no-explicit-any
	{
	files: ["**/*.controller.ts"],
	rules: {
	"@typescript-eslint/no-explicit-any": "off",
	},
	},
	];
	import config from "./eslint.config.mjs";
	export default config;

[Copilot]

moduleNameMapper maps @common, @core, and @controllers to src/common|core|controllers, but those directories don’t exist in this package (src/ only has adapters/config/contracts/filters/middleware/services/utils). This is misleading and can hide real resolution errors; consider removing these mappings and aligning the remaining aliases with tsconfig.json paths (@adapters, @config, @contracts, etc.).

Suggested change

	"^@common/(.*)$": "<rootDir>/src/common/$1",
	"^@config/(.*)$": "<rootDir>/src/config/$1",
	"^@core/(.*)$": "<rootDir>/src/core/$1",
	"^@adapters/(.*)$": "<rootDir>/src/adapters/$1",
	"^@controllers/(.*)$": "<rootDir>/src/controllers/$1",
	"^@config/(.*)$": "<rootDir>/src/config/$1",
	"^@adapters/(.*)$": "<rootDir>/src/adapters/$1",
	"^@contracts/(.*)$": "<rootDir>/src/contracts/$1",
	"^@filters/(.*)$": "<rootDir>/src/filters/$1",
	"^@middleware/(.*)$": "<rootDir>/src/middleware/$1",
	"^@services/(.*)$": "<rootDir>/src/services/$1",
	"^@utils/(.*)$": "<rootDir>/src/utils/$1",

[Copilot]

Pull request overview

Copilot reviewed 45 out of 48 changed files in this pull request and generated 2 comments.

[Copilot]

"prepare": "husky || true" suggests Husky should manage git hooks, but Husky isn't listed in devDependencies (and || true will silently skip hook installation). If hooks are intended to be active for contributors, add husky as a devDependency and run husky install in prepare (without swallowing errors), or remove the Husky hooks/files if they're not meant to be enforced.

[Copilot]

The pre-commit hook runs npx lint-staged, but the repo doesn't include a lint-staged dependency or any lint-staged configuration (package.json / .lintstagedrc). As-is, this hook will typically fail for contributors (or attempt an implicit network install). Add lint-staged to devDependencies and provide config, or replace this hook with explicit commands (e.g., npm run format / npm run lint) if lint-staged isn't intended.

Suggested change

	npx lint-staged
	npm run lint

[Copilot]

Pull request overview

Copilot reviewed 45 out of 48 changed files in this pull request and generated 3 comments.

[Copilot]

There are now two ESLint flat configs in the repo (eslint.config.js and eslint.config.mjs). npm run lint will use ESLint's default config resolution (likely eslint.config.js), while lint-staged explicitly uses eslint.config.mjs, which can lead to inconsistent lint results locally vs hooks/CI. It’d be better to standardize on a single config file and have all scripts/hooks reference the same one.

[Copilot]

The new Jest config drops the global coverageThreshold from 80% (per project guidelines) down to 50%. If the intent is standardization/quality gating, this should be kept at 80% (or higher for critical paths) to avoid silently lowering the bar.

[Copilot]

The added Husky bootstrap file (_/husky.sh) contains only an echo deprecation notice (and no initialization logic), which means hooks that source it won’t set up PATH / execution behavior as Husky expects. This should either be replaced with Husky’s generated husky.sh for the installed version, or (preferred for Husky v9) hooks should source _/h instead and husky.sh can be removed.

Suggested change

	echo "husky - DEPRECATED
	Please remove the following two lines from $0:
	#!/usr/bin/env sh
	. \"\$(dirname -- \"\$0\")/_/husky.sh\"
	They WILL FAIL in v10.0.0
	"
	#!/usr/bin/env sh
	# Husky bootstrap script
	# Initializes environment and delegates execution to .husky/_/h
	if [ -z "$husky_skip_init" ]; then
	# Enable debug output when HUSKY_DEBUG=1
	debug () {
	[ "$HUSKY_DEBUG" = "1" ] && echo "husky (debug) - $1"
	}
	readonly hook_name="$(basename -- "$0")"
	debug "starting $hook_name..."
	# Allow disabling Husky by setting HUSKY=0
	if [ "$HUSKY" = "0" ]; then
	debug "HUSKY env variable is set to 0, skipping hook"
	exit 0
	fi
	# Skip if not in a project with package.json
	if [ ! -f package.json ]; then
	debug "no package.json, skipping hook"
	exit 0
	fi
	# Husky runner
	command=".husky/_/h"
	if [ ! -f "$command" ]; then
	debug "can't find husky runner at $command, skipping hook"
	exit 0
	fi
	if [ ! -x "$command" ]; then
	debug "husky runner is not executable, skipping hook"
	exit 0
	fi
	export husky_skip_init=1
	sh -e "$command" "$hook_name" "$@"
	exitCode="$?"
	if [ "$exitCode" != 0 ]; then
	echo "husky - $hook_name hook exited with code $exitCode (error)"
	fi
	exit "$exitCode"
	fi

[sonarqubecloud]

Quality Gate passed

Issues
9 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
1.6% Duplication on New Code

See analysis details on SonarQube Cloud