Merge branch 'refactor'

Author: wysh3

.editorconfig

@@ -0,0 +1,9 @@
+root = true
+
+[*]
+charset = utf-8
+indent_style = space
+indent_size = 2
+end_of_line = lf
+insert_final_newline = true
+trim_trailing_whitespace = true

.github/CODEOWNERS

@@ -0,0 +1 @@
+* @sm-moshi

.github/CONTRIBUTING.md

@@ -0,0 +1,35 @@
+# Contributing to Perplexity MCP Zerver
+
+Thank you for your interest in contributing! Please follow these guidelines:
+
+## Branching
+
+- Use `feature/*`, `release/*`, or `hotfix/*` branches for all work.
+- Never commit directly to `main` or `develop`.
+
+## Commit Style
+
+- Use [Conventional Commits](https://www.conventionalcommits.org/).
+- Example: `feat: add new tool handler`
+
+## Pull Requests
+
+- Ensure all tests and lints pass before opening a PR.
+- Link related issues in your PR description.
+- Request review from a code owner.
+
+## Code Style
+
+- Use pnpm for all scripts and dependency management.
+- Run `pnpm lint` and `pnpm format` before committing.
+- Write and update tests for all new features.
+
+## Review Process
+
+- At least one code owner must approve before merging.
+- Address all review comments and suggestions.
+
+## Community
+
+- Be respectful and constructive in all communications.
+- For questions, open an issue or ask in the project chat.

.github/FUNDING.yml

@@ -0,0 +1 @@
+github: sm-moshi

.github/ISSUE_TEMPLATE/bug_report.yml

@@ -0,0 +1,43 @@
+name: Bug Report
+description: File a bug report
+labels: [ bug ]
+body:
+- type: markdown
+  attributes:
+    value: |
+      Thank you for reporting a bug!
+- type: input
+  id: summary
+  attributes:
+    label: Bug Summary
+    description: A short summary of the bug
+  validations:
+    required: true
+- type: textarea
+  id: steps
+  attributes:
+    label: Steps to Reproduce
+    description: How can we reproduce the bug?
+  validations:
+    required: true
+- type: textarea
+  id: expected
+  attributes:
+    label: Expected Behavior
+    description: What did you expect to happen?
+  validations:
+    required: true
+- type: textarea
+  id: actual
+  attributes:
+    label: Actual Behavior
+    description: What actually happened?
+  validations:
+    required: true
+- type: input
+  id: env
+  attributes:
+    label: Environment
+    description: OS, Node.js version, pnpm version, etc.
+  validations:
+    required: false

.github/ISSUE_TEMPLATE/feature_request.yml

@@ -0,0 +1,36 @@
+name: Feature Request
+description: Suggest a new feature or improvement
+labels: [ enhancement ]
+body:
+- type: markdown
+  attributes:
+    value: |
+      Thank you for suggesting a feature!
+- type: input
+  id: summary
+  attributes:
+    label: Feature Summary
+    description: A short summary of the feature
+  validations:
+    required: true
+- type: textarea
+  id: motivation
+  attributes:
+    label: Motivation
+    description: Why is this feature important?
+  validations:
+    required: true
+- type: textarea
+  id: proposal
+  attributes:
+    label: Proposal
+    description: Describe the solution you'd like
+  validations:
+    required: true
+- type: textarea
+  id: alternatives
+  attributes:
+    label: Alternatives
+    description: Any alternative solutions or features considered?
+  validations:
+    required: false

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,15 @@
+# Pull Request
+
+## Description
+<!-- Please include a summary of the change and which issue is fixed. -->
+
+## Checklist
+
+- [ ] All tests pass (`pnpm test`)
+- [ ] Lint passes (`pnpm lint`)
+- [ ] Code is formatted (`pnpm format`)
+- [ ] Relevant docs updated
+- [ ] PR targets `develop` or a feature branch
+
+## Related Issues
+<!-- List related issues or discussions. -->

.github/SECURITY.md

@@ -0,0 +1,16 @@
+# Security Policy
+
+## Supported Versions
+
+- Only the latest release is supported for security updates.
+
+## Reporting a Vulnerability
+
+- Please report vulnerabilities by opening a GitHub Security Advisory or emailing the maintainer.
+- Do **not** disclose security issues publicly until a fix is released.
+
+## Best Practices
+
+- Keep dependencies up to date.
+- Run `pnpm audit` regularly.
+- Never commit secrets or sensitive data.

.github/dependabot.yml

@@ -0,0 +1,29 @@
+version: 2
+updates:
+# npm dependencies (including pnpm/yarn, if present)
+- package-ecosystem: "npm"
+  directory: "/" # Location of package.json
+  schedule:
+    interval: "daily"
+  open-pull-requests-limit: 5
+  groups:
+    dev-dependencies:
+      dependency-type: "development"
+    prod-dependencies:
+      dependency-type: "production"
+  labels:
+  - "dependencies"
+  - "actions"
+  - "automated"
+  allow:
+  - dependency-type: "all"
+
+# GitHub Actions dependencies
+- package-ecosystem: "github-actions"
+  directory: "/" # Location of workflow files
+  schedule:
+    interval: "daily"
+  open-pull-requests-limit: 5
+  labels:
+  - "actions"
+  - "automated"

.github/workflows/build.yml

@@ -0,0 +1,52 @@
+name: Build & Analyze
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
+  actions: read
+  security-events: write
+
+jobs:
+  analyze:
+    name: SonarQube Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Set up pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 10
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 22
+          cache: 'pnpm'
+
+      - name: Install dependencies
+        run: pnpm install
+
+      - name: Run tests with coverage
+        run: pnpm test:coverage
+
+      - name: Upload coverage report
+        uses: actions/upload-artifact@v4
+        with:
+          name: coverage-report
+          path: coverage/
+
+      - name: SonarQube Scan
+        uses: SonarSource/sonarqube-scan-action@2500896589ef8f7247069a56136f8dc177c27ccf
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_SCANNER_OPTS: -Dsonar.javascript.lcov.reportPaths=coverage/lcov.info