chore: draft documentation

Author: evens-stone

.github/dependabot.yml

@@ -5,29 +5,43 @@ updates:
     directory: "/"
     schedule:
       interval: "weekly"
-    open-pull-requests-limit: 5
+      day: "sunday"
+      time: "05:00"
+      timezone: "UTC"
+    open-pull-requests-limit: 1
     commit-message:
       prefix: "chore(deps)"
       include: "scope"
-    labels:
-      - "dependencies"
-    reviewers:
-      - "pierrevensy"
-    assignees:
-      - "pierrevensy"
+    labels: ["dependencies"]
+    reviewers: ["pierrevensy"]
+    assignees: ["pierrevensy"]
+    groups:
+      minor-updates:
+        patterns:
+          - "*"
+        update-types:
+          - "minor"
+          - "patch"
 
   # Check for updates to GitHub Actions
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
       interval: "weekly"
-    open-pull-requests-limit: 5
+      day: "sunday"
+      time: "06:00"
+      timezone: "UTC"
+    open-pull-requests-limit: 1
     commit-message:
       prefix: "chore(actions)"
       include: "scope"
-    labels:
-      - "github-actions"
-    reviewers:
-      - "pierrevensy"
-    assignees:
-      - "pierrevensy"
+    labels: ["github-actions"]
+    reviewers: ["pierrevensy"]
+    assignees: ["pierrevensy"]
+    groups:
+      minor-updates:
+        patterns:
+          - "*"
+        update-types:
+          - "minor"
+          - "patch"

.github/workflows/main.yml

@@ -15,6 +15,8 @@ jobs:
     steps:
       - name: Checkout code
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
       - name: Setup Node.js
         uses: actions/setup-node@v4
         with:
@@ -27,6 +29,10 @@ jobs:
         run: npm run test:cvg
       - name: Build library
         run: npm run build
+      - name: SonarQube Scan
+        uses: SonarSource/sonarqube-scan-action@v5
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
 
   release-please:
     runs-on: ubuntu-latest

.github/workflows/pr.yml

@@ -4,13 +4,19 @@ on:
   pull_request:
     branches:
       - main
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
 
 jobs:
   build:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
       - name: Setup Node.js
         uses: actions/setup-node@v4
         with:
@@ -22,4 +28,9 @@ jobs:
       - name: Run tests
         run: npm run test:cvg
       - name: Build library
-        run: npm run build
+        run: npm run build
+      - name: SonarQube Scan
+        if: github.actor != 'dependabot[bot]'
+        uses: SonarSource/sonarqube-scan-action@v5
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

.github/workflows/release.yml

@@ -5,6 +5,10 @@ on:
     types:
       - published
 
+permissions:
+  contents: read
+  packages: write
+
 jobs:
   publish:
     runs-on: ubuntu-latest
@@ -27,4 +31,4 @@ jobs:
       - name: Publish to NPM
         run: npm publish --access public
         env:
-          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

CHANGELOG.md

@@ -10,4 +10,4 @@ All notable changes to the "Stone.js AWS Lambda Adapter" extension will be docum
 
 ### Features
 
-* implement aws adapters ([8695eb2](https://github.com/stonemjs/aws-lambda-http-adapter/commit/8695eb2c7960769d56015943ac0839e787f176d2))
+* implement aws adapters ([8695eb2](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/commit/8695eb2c7960769d56015943ac0839e787f176d2))

README.md

@@ -1,20 +1,187 @@
-# Stone.js: AWS Lambda Adapters
+# Stone.js - AWS Lambda HTTP Adapter
 
-[![npm](https://img.shields.io/npm/l/@stone-js/browser-core)](https://opensource.org/licenses/MIT)
+[![npm](https://img.shields.io/npm/l/@stone-js/aws-lambda-http-adapter)](https://opensource.org/licenses/MIT)
 [![npm](https://img.shields.io/npm/v/@stone-js/aws-lambda-http-adapter)](https://www.npmjs.com/package/@stone-js/aws-lambda-http-adapter)
 [![npm](https://img.shields.io/npm/dm/@stone-js/aws-lambda-http-adapter)](https://www.npmjs.com/package/@stone-js/aws-lambda-http-adapter)
 ![Maintenance](https://img.shields.io/maintenance/yes/2025)
-[![Publish Package to npmjs](https://github.com/stonemjs/aws-lambda-http-adapter/actions/workflows/release.yml/badge.svg)](https://github.com/stonemjs/aws-lambda-http-adapter/actions/workflows/release.yml)
-[![Dependabot Status](https://img.shields.io/badge/Dependabot-enabled-brightgreen.svg?logo=dependabot)](https://github.com/stonemjs/aws-lambda-http-adapter/network/updates)
+[![Build Status](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/actions/workflows/main.yml/badge.svg)](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/actions/workflows/main.yml)
+[![Publish Package to npmjs](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/actions/workflows/release.yml/badge.svg)](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/actions/workflows/release.yml)
+[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=stone-foundation_stone-js-aws-lambda-http-adapter&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=stone-foundation_stone-js-aws-lambda-http-adapter)
+[![Coverage](https://sonarcloud.io/api/project_badges/measure?project=stone-foundation_stone-js-aws-lambda-http-adapter&metric=coverage)](https://sonarcloud.io/summary/new_code?id=stone-foundation_stone-js-aws-lambda-http-adapter)
+[![Security Policy](https://img.shields.io/badge/Security-Policy-blue.svg)](./SECURITY.md)
+[![CodeQL](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/actions/workflows/github-code-scanning/codeql/badge.svg)](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/security/code-scanning)
+[![Dependabot Status](https://img.shields.io/badge/Dependabot-enabled-brightgreen.svg)](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/network/updates)
 [![Conventional Commits](https://img.shields.io/badge/Conventional%20Commits-1.0.0-yellow.svg)](https://conventionalcommits.org)
 
-Stone.js AWS Lambda HTTP Adapters with typings.
+The **AWS Lambda HTTP Adapter** allows your Stone.js application to run as a fully event-driven Lambda function behind API Gateway or any Lambda-compatible HTTP environment. It seamlessly transforms API Gateway events into `IncomingEvent` and returns `OutgoingResponse`, adhering to the Continuum Architecture.
 
 ---
 
-Get started with the [documentation](https://stonejs.com/docs/architecture/adapter.html).
+## Introduction
 
+In Stone.js, **adapters** serve as bridges between raw platform input and structured internal events. The AWS Lambda HTTP Adapter processes API Gateway-style HTTP events and turns them into normalized `IncomingEvent` objects. It also formats your system’s `OutgoingResponse` into a valid Lambda HTTP response payload.
+
+This adapter empowers you to write cloud-native functions that stay decoupled from AWS specifics while preserving the full Stone.js lifecycle, type safety, and cross-platform consistency.
+
+## Installation
+
+```bash
+npm install @stone-js/aws-lambda-http-adapter
+````
+
+> This package is **pure ESM**. Make sure your project uses ESM (`"type": "module"` in `package.json`) or configure your tooling accordingly.
+
+## Usage
+
+You can integrate the adapter either declaratively with a decorator or imperatively using the `awsLambdaHttpAdapterBlueprint`.
+
+### Declarative API
+
+```ts
+import { AwsLambdaHttp } from '@stone-js/aws-lambda-http-adapter'
+import { StoneApp, IncomingEvent, IEventHandler } from '@stone-js/core'
+
+@StoneApp()
+@AwsLambdaHttp({ default: true })
+export class Application implements IEventHandler<IncomingEvent> {
+  handle(event: IncomingEvent) {
+    const name = event.get<string>('name', 'Lambda')
+    return { message: `Hello ${name}` }
+  }
+}
+```
+
+### Imperative API
+
+```ts
+import { defineStoneApp, IncomingEvent, defineConfig, IBlueprint } from '@stone-js/core'
+import { awsLambdaHttpAdapterBlueprint, AWS_LAMBDA_HTTP_PLATFORM } from '@stone-js/aws-lambda-http-adapter'
+
+const handler = (event: IncomingEvent) => {
+  const name = event.get<string>('name', 'Lambda')
+  return { message: `Hi ${name}` }
+}
+
+export const App = defineStoneApp(handler, {}, [awsLambdaHttpAdapterBlueprint])
+
+export const AppConfig = defineConfig({
+  afterConfigure(blueprint: IBlueprint) {
+    if (blueprint.is('stone.adapter.platform', AWS_LAMBDA_HTTP_PLATFORM)) {
+      blueprint.set('stone.adapter.default', true)
+    }
+  }
+})
+```
+
+## What It Enables
+
+* **Serverless by Design**
+  Build modern HTTP APIs or websites running entirely on AWS Lambda behind API Gateway or ALB.
+
+* **Clean Separation of Concerns**
+  Your app never sees AWS-specific payloads. All requests and responses are fully normalized by the adapter.
+
+* **Full Continuum Integration**
+  Request becomes `IncomingEvent`, response becomes `OutgoingResponse`. Lambda is just another execution environment.
+
+* **Small, Fast, Efficient**
+  No cold start bloat. No Express or frameworks. Just your logic and the lightweight Stone.js runtime.
+
+* **Lifecycle Support**
+  Includes support for `onStart`, `onStop`, error hooks, and adapter middleware.
+
+* **Typed Event Context**
+  Access query, body, headers, cookies, IPs and more with full TypeScript support.
+
+* **Zero Glue Code**
+  No need to write `handler(event, context)` boilerplate. Stone.js manages that for you.
+
+* **Multi-platform Ready**
+  The same app can run locally with Node, in the browser, or in the cloud, just change the adapter.
+
+## Configuration Options
+
+Unlike Node, this adapter inherits all standard options from the core `AdapterConfig`:
+
+| Option          | Type                                      | Description                                      |
+| --------------- | ----------------------------------------- | ------------------------------------------------ |
+| `default`       | `boolean`                                 | Set as the default adapter for your app          |
+| `alias`         | `string`                                  | Optional name to reference this adapter          |
+| `current`       | `boolean`                                 | Marks this adapter as active at runtime          |
+| `middleware[]`  | `AdapterMixedPipeType[]`                  | Middleware executed during the adapter lifecycle |
+| `errorHandlers` | `Record<string, MetaAdapterErrorHandler>` | Customize error response formatting or behavior  |
+
+> Note: AWS Lambda automatically injects its execution context and raw event. This adapter handles both without manual plumbing.
+
+## Adapter Context Shape
+
+When middleware or hooks execute, the AWS Lambda adapter provides this normalized context:
+
+```ts
+interface AwsLambdaHttpAdapterContext {
+  rawEvent: AwsLambdaHttpEvent;
+  rawResponse?: RawHttpResponseOptions;
+  executionContext: Record<string, unknown>;
+  incomingEvent?: IncomingHttpEvent;
+  outgoingResponse?: OutgoingHttpResponse;
+  incomingEventBuilder: IAdapterEventBuilder<IncomingHttpEventOptions, IncomingHttpEvent>;
+  rawResponseBuilder: IAdapterEventBuilder<RawHttpResponseOptions, IRawResponseWrapper<RawHttpResponseOptions>>;
+}
+```
+
+### AWS Lambda Event
+
+```ts
+export interface AwsLambdaHttpEvent extends Record<string, unknown> {
+  path?: string
+  body?: unknown
+  rawPath?: string
+  encoding?: string
+  httpMethod?: string
+  isBase64Encoded?: boolean
+  headers: Record<string, string>
+  queryStringParameters?: Record<string, string>
+  requestContext?: {
+    identity?: {
+      sourceIp?: string
+    }
+    httpMethod?: string
+    http?: {
+      method?: string
+      sourceIp?: string
+    }
+  }
+}
+```
+
+### AWS Lambda Response
+
+```ts
+export interface RawHttpResponseOptions {
+  body?: unknown
+  statusCode: number
+  statusMessage?: string
+  headers?: Record<string, string>
+  isBase64Encoded?: boolean
+}
+```
+
+This context ensures complete control over request handling and response shaping, even in a FaaS environment.
+
+## Summary
+
+The `@stone-js/aws-lambda-http-adapter` makes your Stone.js app cloud-native, cost-efficient, and Lambda-ready. Embrace the event-driven cloud with minimal effort and maximum architectural clarity.
+
+## Learn More
+
+This package is part of the Stone.js ecosystem, a modern JavaScript framework built around the Continuum Architecture.
+
+Explore the full documentation: [https://stonejs.dev](https://stonejs.dev)
+
+## API documentation
+
+* [API](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/blob/main/docs)
 
 ## Contributing
 
-See [Contributing Guide](https://github.com/stonemjs/aws-lambda-http-adapter/blob/main/CONTRIBUTING.md).
+See [Contributing Guide](https://github.com/stone-foundation/stone-js-aws-lambda-http-adapter/blob/main/CONTRIBUTING.md)

SECURITY.md

@@ -0,0 +1,62 @@
+# Security Policy
+
+Thank you for your interest in the security of Stone.js. We take the security of our framework and its users seriously. 
+This document outlines the process for reporting vulnerabilities and our commitment to secure development.
+
+## Supported Versions
+
+We actively maintain and patch the latest stable release of Stone.js and its core packages.
+
+| Version   | Status                             |
+| --------- | ---------------------------------- |
+| `1.x`     | ✅ Actively maintained             |
+| `< 1.0.0` | ⚠️ Legacy, no guaranteed patches   |
+
+If you're using an older version and encounter a security issue, we encourage you to upgrade to the latest release.
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability in Stone.js or any of its official packages, **please report it responsibly and privately**.
+
+### How to report
+
+- Email: **security@stonejs.dev**
+- Subject: `Security Issue: [Your short description]`
+- Include:
+  - A detailed description of the vulnerability
+  - Steps to reproduce (if applicable)
+  - A suggested fix or patch (optional but appreciated)
+  - Affected versions and environments
+
+We will respond within **5 working days** and aim to provide a fix or mitigation within **30 days**, depending on severity.
+
+## Our Commitment
+
+We commit to:
+
+- Promptly investigate and validate reports
+- Keep reporters informed of the resolution progress
+- Publicly disclose confirmed vulnerabilities **after a fix is available**, with appropriate credit (unless anonymity is requested)
+- Maintain secure coding standards and regular dependency audits using:
+  - [GitHub CodeQL](https://codeql.github.com/)
+  - [Dependabot](https://github.com/dependabot)
+
+## Disclosure Policy
+
+We follow a **coordinated disclosure** policy:
+
+- Vulnerabilities are not published until a fix is available.
+- CVE identifiers will be requested when applicable.
+- Security-related changes are clearly documented in release notes and changelogs.
+
+## Acknowledgements
+
+We deeply appreciate the responsible security researchers and users who help keep Stone.js secure.
+
+If you’d like to contribute to security audits, penetration testing, or analysis of Stone.js internals, feel free to reach out via [security@stonejs.dev](mailto:security@stonejs.dev).
+
+## Thank You
+
+Security is a shared responsibility, thank you for helping make Stone.js safer for everyone.
+
+— The Stone.js Team