npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@alexgorbatchev/typescript-ai-policy

v5.0.3

Published

Shared TypeScript AI policy configs and Oxlint rules

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

alexgorbatchevalexgorbatchev

Keywords

Readme

@alexgorbatchev/typescript-ai-policy

Shared Oxfmt and Oxlint config for teams that want AI-assisted TypeScript to stay strict, predictable, and reviewable.

This package is opinionated on purpose. It does not try to be a flexible style preset. It encodes repository contracts as lint rules so generated and modified code lands in a shape you can actually trust.

Who this is for

Use this package if you want to:

  • enforce stricter structure on AI-generated or AI-modified TypeScript
  • replace hand-wavy coding guidance with machine-checkable rules
  • keep React, tests, fixtures, and type boundaries deterministic
  • ship one shared policy pack across repositories

If you want a loose collection of optional style rules, this package is the wrong tool.

What you get

  • shared Oxfmt config
  • shared Oxlint config
  • custom @alexgorbatchev/* rules aimed at common LLM failure modes
  • diagnostics written as direct repair instructions
  • a semantic-fix CLI for a small set of safe structural fixes

Upstream Oxlint, TypeScript, and Jest rules stay enabled as baseline correctness guardrails.

Install

bun add -d @alexgorbatchev/typescript-ai-policy oxfmt oxlint

If you want the semantic-fix CLI, install its optional peer dependencies too:

bun add -d typescript @typescript/native-preview

The published package ships compiled .js runtime files plus .d.ts declarations. The installed semantic-fix CLI runs through Node.js, so Bun is not required just to execute the package-installed bin, but the CLI still expects its optional peer dependencies to be installed in the consuming project.

Quick start

oxfmt.config.ts

import createOxfmtConfig from "@alexgorbatchev/typescript-ai-policy/oxfmt-config";

export default createOxfmtConfig(() => ({
  ignorePatterns: ["vendor/**"],
}));

oxlint.config.ts

import createOxlintConfig from "@alexgorbatchev/typescript-ai-policy/oxlint-config";

export default createOxlintConfig(() => ({
  ignorePatterns: ["coverage"],
  rules: {
    "no-var": "error",
  },
}));

Both config entrypoints export factory functions. The callback is optional and is deep-merged before the shared defaults, so the shared policy still wins on conflicting keys.

For Oxlint specifically, consumer configs are extension-only. If the callback tries to redefine a shared rule, the factory throws instead of letting repositories silently weaken the policy downstream.

When you run Oxlint manually, use Bun to launch the CLI:

bun --bun oxlint .

Treat bun --bun oxlint ... as the canonical invocation form for this package and for consumer repositories using these TypeScript config entrypoints.

What it enforces

At a glance, the shared policy enforces:

  • one runtime React component per ownership file
  • one runtime hook per ownership file
  • matching Storybook files for component ownership files under sibling stories/ directories
  • matching test files for hook ownership files under sibling __tests__/ directories
  • typed Storybook meta with package-relative titles and typed stories with play functions
  • deterministic component test ids such as ComponentName and ComponentName--child
  • strict boundaries between runtime code, test code, story code, and fixture code
  • explicit type/value ownership rules for files such as index.ts, constants.ts, and types.ts
  • strict naming and structural conventions for interfaces and type aliases
  • a policy stance that inline lint-disable comments are not an acceptable escape hatch for fixing violations

Lint-disable comments are not a valid repair strategy

Agents and developers are expected to satisfy the shared policy directly, not suppress it locally with comments such as // oxlint-disable-next-line or /* oxlint-disable */.

This package explicitly bans inline lint-disable comments for both ESLint and Oxlint. Treat this as a hard policy signal, not as an obstacle to bypass. The enforcement strategy assumes you will fix the underlying contract violation rather than suppressing the warning.

The important contract is simple:

  • do not use inline lint-disable comments to get around the shared policy
  • fix the code so it satisfies the rule set instead
  • if the policy itself is wrong, change the shared package deliberately rather than bypassing it locally

Storybook is the React component contract

For React components, this policy is intentionally story-first.

Every component ownership file must have a matching Storybook file, every story meta must be typed and use a package-relative title, and every exported story must be typed and include a play function. In practice, that makes Storybook the canonical artifact for component behavior:

  • the same story layer can back CI interaction coverage
  • the same stories also act as the human visual reference for the component
  • component structure and component verification stay in one place instead of drifting across separate ad-hoc test files

This package does not wire your CI for you, but it does enforce the repository shape required for Storybook-driven component verification.

Expected layout shape

The policy enforces role directories, not one hardcoded feature tree.

That means component and hook ownership files may live in different parent folders, but some roles still have strict placement rules:

  • story files live under sibling stories/ directories
  • test files live under sibling __tests__/ directories
  • fixture entrypoints and fixture directories live under stories/ or __tests__/
  • component filenames match the exported PascalCase component name in PascalCase or kebab-case form
  • hook filenames match the exported use* hook name in camelCase or kebab-case form
  • index.ts is reserved for pure barrel re-exports only
  • constants.ts is for runtime values only
  • types.ts is for type-only exports only

Example:

feature/
├── AccountPanel.tsx
├── stories/
│   └── AccountPanel.stories.tsx
├── useAccount.ts
└── __tests__/
    └── useAccount.test.ts

Semantic-fix tooling

The package includes a semantic-fix CLI backed by tsgo --lsp --stdio.

Package-installed usage:

  • bun run typescript-ai-policy-fix-semantic -- <target-directory> — run Oxlint with this package's policy config, collect supported diagnostics, and apply semantic fixes to the target directory.
  • bun run typescript-ai-policy-fix-semantic -- <target-directory> --dry-run — print the planned semantic-fix scope without mutating files.

Repository-local development usage:

  • bun run fix:semantic -- <target-directory> — run the same semantic fixer from this repository checkout while developing the package itself.

The repository-local development command still uses Bun to execute the TypeScript source directly. The published npm package uses the compiled Node.js bin instead.

Today the framework applies three conservative semantic fixes:

  • @alexgorbatchev/interface-naming-convention — rename repository-owned interfaces to their required I* form when the existing name can be normalized safely.
  • @alexgorbatchev/no-i-prefixed-type-aliases — rename repository-owned type aliases to drop the interface-style I* prefix when the diagnostic resolves to a concrete type alias name safely.
  • @alexgorbatchev/test-file-location-convention — move misplaced .test.ts / .test.tsx files into a sibling __tests__/ directory as __tests__/basename.test.ts[x] and rewrite the moved file's relative imports.

The command and backend shape remain intentionally generic so more rule-backed semantic operations can be added later.

Learn more

Local package setup

This repository also consumes its own shared configs at the root:

  • oxfmt.config.ts
  • oxlint.config.ts