chore: add CodeRabbit configuration#49
Conversation
|
Warning Ignoring CodeRabbit configuration file changes. For security, only the configuration from the base branch is applied for open source repositories. No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Plus Run ID: 📒 Files selected for processing (1)
📝 WalkthroughWalkthroughAdds a complete ChangesCodeRabbit Configuration
Estimated code review effort🎯 3 (Moderate) | ⏱️ ~20 minutes Poem
🚥 Pre-merge checks | ✅ 5✅ Passed checks (5 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
86edf50 to
982a0f6
Compare
Summary
.coderabbit.yamlwith review guidance tailored to a modern TypeScript-based Nuxt authentication SDK.[BASELINE]— generic to any TS auth SDK: review behavior, path filters, TS rules, an auth security review block (secrets/token leakage, cookie flags, state/nonce/PKCE, open redirects, token validation, timing-safe comparison, prototype pollution, fail-closed auth), test/example/CI guidance, and tools.[NUXT]— repo-specific: Nuxt moduleruntimeConfigsecret exposure (private vs. public), Nitro OAuth/OIDC server route handlers +toSafeRedirect, route/auth middleware fail-closed behavior, server utils (cookie/session/url safety), and server-only composable leakage / SSR-safe state.dist/,coverage/,.nuxt/,.output/,*.d.ts, and the lockfile; skips release PRs.Summary by CodeRabbit