feat(scripts)(settings): add ADR consistency lint infrastructure (#1552)

## Description

Added a PowerShell-based linter that enforces structural consistency
between Architecture Decision Record frontmatter and body sections in
*docs/planning/adrs/*. The linter is shipped as two reusable modules, a
CLI entry script, a JSON rule registry, and three Draft-07 JSON Schemas,
with editor schema bindings, a markdownlint exclusion for fixture
corpora, an `npm run lint:adr-consistency` entry, and a Pester 5.x test
suite covering all nine rules through a paired pass/fail fixture
pattern.

The change is additive. No existing linter was modified except a
one-line tolerance added to **skill structure validation** so skills can
carry a *templates/* subdirectory without warning. The new
`lint:adr-consistency` script is invokable on its own and is **not**
wired into the `lint:all` chain in this PR.

### Linter core

* Added
[scripts/linting/Modules/AdrConsistency.psm1](scripts/linting/Modules/AdrConsistency.psm1)
(857 lines) with the public `Invoke-AdrConsistencyValidation` dispatcher
and nine private `Test-*` rule functions covering `ADR-CONSISTENCY-001`
through `ADR-CONSISTENCY-009`. The module declares `#Requires -Version
7.0` and pins `PowerShell-Yaml` to version `0.4.7`, loads
`../rules/adr-consistency-rules.json` into `$script:RuleRegistry` keyed
by rule id, and routes all violation construction through a single
`New-AdrViolation` factory that owns rule lookup, `{token}`
substitution, and severity assignment.
* Added
[scripts/linting/Modules/AdrBodyParser.psm1](scripts/linting/Modules/AdrBodyParser.psm1)
(445 lines) with the public `Get-AdrBodySections` parser. The parser
splits an ADR body into structured sections — *AffectedComponents*,
*DecisionDrivers*, *DecisionOutcomeMatrixDrivers*, *BadConsequences*,
*RisksAndMitigationsRisks*, *Confirmation*, and three path-token sets —
and exposes only the parser; helpers like `Get-AdrH2Section`,
`Get-AdrH3SectionInH2` (for MADR v4 `### Consequences` under `##
Decision Outcome`), `Get-AdrTableRows`, `Get-AdrPathTokens`,
`Get-AdrBadConsequenceBullets`, and a stateful
`Remove-AdrFencedCodeBlocks` walker remain private.
* Added
[scripts/linting/Validate-AdrConsistency.ps1](scripts/linting/Validate-AdrConsistency.ps1)
as the CLI entry script. Parameters cover `-Paths`, `-Files`,
`-ExcludePaths`, `-WarningsAsErrors`, `-ChangedFilesOnly`,
`-BaseBranch`, and `-OutputPath` (defaulting to
*logs/adr-consistency-results.json*). The script imports
`Modules/AdrConsistency.psm1`, `Modules/LintingHelpers.psm1`, and
`../lib/Modules/CIHelpers.psm1`; resolves the repo root via `git
rev-parse --show-toplevel` with a `$PSScriptRoot` fallback; and uses an
ordinal-ignore-case `StartsWith` boundary check to reject paths that
escape the repository. Each violation prints to host output, and on CI
the script also emits `Write-CIAnnotation` per finding plus a single
`Write-CIStepSummary`. Exit code is `1` when error count is non-zero, or
when `-WarningsAsErrors` is set and warning count is non-zero.

### Rule registry, schemas, and editor integration

* Added
[scripts/linting/rules/adr-consistency-rules.json](scripts/linting/rules/adr-consistency-rules.json)
declaring all nine rules with `id`, `severity`, `scope`, `check`,
`message`, and `description` fields. Eight rules are `error` severity
and one (`ADR-CONSISTENCY-007`, *numeric-claim-generalized*) is `warn`.
Scopes split as `frontmatter` (002, 008), `body` (003, 004, 005, 006,
007), and `cross-region` (001, 009). The kebab-case `check` slug maps
mechanically to the `Test-<PascalCase>` PowerShell function name.
* Added
[scripts/linting/schemas/adr-consistency-rules.schema.json](scripts/linting/schemas/adr-consistency-rules.schema.json)
as a Draft-07 schema for the rule registry. It requires `rules` with
`minItems: 1`, pins `id` to `^ADR-CONSISTENCY-\d{3}$`, restricts
`severity` to `error|warn` and `scope` to
`frontmatter|body|cross-region`, and requires `check` to be kebab-case.
* Added
[scripts/linting/schemas/adr-frontmatter.schema.json](scripts/linting/schemas/adr-frontmatter.schema.json)
as a Draft-07 schema for `docs/planning/adrs/NNNN-{kebab-case}.md`
frontmatter. Required fields are `id`, `title`, `status`,
`proposed_date`, `deciders`, and `affected_components`. The schema
models the six-value status taxonomy (`proposed`, `accepted`,
`rejected`, `deprecated`, `superseded`, `withdrawn`), constrains
`effort` to `S|M|L|XL`, models `success_criteria` items with
`metric`/`target`/`measurement_window`/`source`, models `related` items
as `path`/`relation` pairs (with relation enum
`informational|influenced-by|influences`), pairs each `asr_triggers`
item with required `evidence`, and adds an `allOf` conditional that
requires `accepted_date` when `status` is `accepted`.
* Added
[scripts/linting/schemas/adr-config.schema.json](scripts/linting/schemas/adr-config.schema.json)
as a Draft-07 schema for `docs/planning/adrs/.adr-config.yml`. Required
keys are `project_slug`, `owner`, `default_status`,
`decision_id_format`, `template_source`, and `last_decision_id`.
`decision_id_format` is constrained to the literal `NNNN`;
`last_decision_id` is pinned to `^\d{4}$`.
* Modified
[scripts/linting/schemas/schema-mapping.json](scripts/linting/schemas/schema-mapping.json)
to register two new entries: ADR markdown files via the glob
`docs/planning/adrs/[0-9][0-9][0-9][0-9]-*.md` against the
*adr-frontmatter* schema, and the rule registry against the
*adr-consistency-rules* schema.
* Modified [.vscode/settings.json](.vscode/settings.json) to register
`./scripts/linting/schemas/adr-config.schema.json` against
`**/.adr-config.yml` and `**/.adr-config.yaml` under `yaml.schemas` so
editor validation matches the file-on-disk checker.

### Tests and fixtures

* Added
[scripts/tests/linting/AdrConsistency.Tests.ps1](scripts/tests/linting/AdrConsistency.Tests.ps1)
as a Pester 5.x suite tagged `Unit`. A `BeforeDiscovery` block declares
a nine-element `$RuleCases` array mapping each rule id to its fixture
directory; three `Describe` blocks then run data-driven `It -ForEach`
iterations over the cases, asserting that each `pass.md` produces zero
violations, each `fail.md` fires its target rule, no violation message
contains an unsubstituted `{token}` template, and the validator's return
shape exposes `File`/`Violations` properties with consistent fields. The
`BeforeAll` block force-imports the consistency module and mocks
`Write-Host`; the `AfterAll` block tears down both *AdrConsistency* and
its *AdrBodyParser* dependency.
* Added 18 fixture files under
[scripts/tests/linting/fixtures/adr-consistency/](scripts/tests/linting/fixtures/adr-consistency/)
— one folder per rule, each with `pass.md` and `fail.md`. All fixtures
derive from a single canonical 76-line *Fixture base ADR 9999* baseline
that follows MADR v4 layout: `## Context`, `## Decision Drivers`, `##
Considered Options`, `## Decision Outcome` (with a driver matrix and an
H3 *Consequences* block split into Good/Bad/Neutral H4 subsections), `##
Risks and Mitigations`, `## Confirmation`, `## More Information`, and
`## Affected Components`. Each `fail.md` mutates the baseline along
exactly one axis to trigger a single target rule (for example,
*risks-consequences-pairing/fail.md* swaps the Bad consequence to a
risk-shaped statement absent from the Risks and Mitigations table).
* Modified [.markdownlint-cli2.jsonc](.markdownlint-cli2.jsonc) to add
`scripts/tests/linting/fixtures/**` to the markdownlint `ignores` list
so the deliberately defective fail-fixture markdown does not trip
project-wide linting.

### Configuration touches

* Modified [package.json](package.json) to register
`lint:adr-consistency` (`pwsh -NoProfile -File
scripts/linting/Validate-AdrConsistency.ps1 -Paths docs/planning/adrs`)
between `lint:frontmatter` and `lint:collections-metadata`. The script
is **not** added to the `lint:all` chain in this PR.
* Modified
[scripts/linting/Validate-SkillStructure.ps1](scripts/linting/Validate-SkillStructure.ps1)
to add `'templates'` to `$script:RecognizedSubdirectories` alongside the
existing `scripts`, `references`, `assets`, `examples`, and `tests`
entries.

## Related Issue(s)

Closes #1551.

## Type of Change

Select all that apply:

**Code & Documentation:**

* [ ] Bug fix (non-breaking change fixing an issue)
* [x] New feature (non-breaking change adding functionality)
* [ ] Breaking change (fix or feature causing existing functionality to
change)
* [ ] Documentation update

**Infrastructure & Configuration:**

* [ ] GitHub Actions workflow
* [x] Linting configuration (markdown, PowerShell, etc.)
* [ ] Security configuration
* [ ] DevContainer configuration
* [ ] Dependency update

**AI Artifacts:**

* [ ] Reviewed contribution with `prompt-builder` agent and addressed
all feedback
* [ ] Copilot instructions (`.github/instructions/*.instructions.md`)
* [ ] Copilot prompt (`.github/prompts/*.prompt.md`)
* [ ] Copilot agent (`.github/agents/*.agent.md`)
* [ ] Copilot skill (`.github/skills/*/SKILL.md`)

> Note for AI Artifact Contributors:
>
> * Agents: Research, indexing/referencing other project (using standard
VS Code GitHub Copilot/MCP tools), planning, and general implementation
agents likely already exist. Review `.github/agents/` before creating
new ones.
> * Skills: Must include both bash and PowerShell scripts. See
[Skills](../docs/contributing/skills.md).
> * Model Versions: Only contributions targeting the **latest Anthropic
and OpenAI models** will be accepted. Older model versions (e.g.,
GPT-3.5, Claude 3) will be rejected.
> * See [Agents Not
Accepted](../docs/contributing/custom-agents.md#agents-not-accepted) and
[Model Version
Requirements](../docs/contributing/ai-artifacts-common.md#model-version-requirements).

**Other:**

* [x] Script/automation (`.ps1`, `.sh`, `.py`)
* [ ] Other (please describe):

## Sample Prompts (for AI Artifact Contributions)

<!-- Not applicable: this PR contains no AI artifacts. -->

For detailed contribution requirements, see:

* Common Standards:
[docs/contributing/ai-artifacts-common.md](../docs/contributing/ai-artifacts-common.md)
- Shared standards for XML blocks, markdown quality, RFC 2119,
validation, and testing
* Agents:
[docs/contributing/custom-agents.md](../docs/contributing/custom-agents.md)
- Agent configurations with tools and behavior patterns
* Prompts:
[docs/contributing/prompts.md](../docs/contributing/prompts.md) -
Workflow-specific guidance with template variables
* Instructions:
[docs/contributing/instructions.md](../docs/contributing/instructions.md)
- Technology-specific standards with glob patterns
* Skills: [docs/contributing/skills.md](../docs/contributing/skills.md)
- Task execution utilities with cross-platform scripts

## Testing

Ran `npm run lint:adr-consistency` against the working tree. The
validator discovered the existing *.adr-config.yml* style entries under
*docs/planning/adrs/* and reported `ADR consistency: 1 file(s) | 0
error(s) | 0 warning(s)` with exit code `0`. The Pester suite at
*scripts/tests/linting/AdrConsistency.Tests.ps1* exercises all nine
rules through paired pass/fail fixtures, validates the validator's
return contract, and asserts that no rule message contains an
unsubstituted `{token}` placeholder.

## Checklist

### Required Checks

* [x] Documentation is updated (if applicable)
* [x] Files follow existing naming conventions
* [x] Changes are backwards compatible (if applicable)
* [x] Tests added for new functionality (if applicable)

### AI Artifact Contributions

* [ ] Used `/prompt-analyze` to review contribution
* [ ] Addressed all feedback from `prompt-builder` review
* [ ] Verified contribution follows common standards and type-specific
requirements

### Required Automated Checks

The following validation commands must pass before merging:

* [x] Markdown linting: `npm run lint:md`
* [x] Spell checking: `npm run spell-check`
* [x] Frontmatter validation: `npm run lint:frontmatter`
* [x] Skill structure validation: `npm run validate:skills`
* [x] Link validation: `npm run lint:md-links` — 7 pre-existing baseline
failures on `main` not introduced by this PR
(`.github/skills/security/secure-by-design/SKILL.md`,
`docs/agents/code-review/README.md`,
`docs/agents/rai-planning/agent-overview.md`,
`docs/agents/rai-planning/phase-reference.md`,
`docs/architecture/README.md`, `docs/getting-started/collections.md`,
`docs/getting-started/mcp-configuration.md`)
* [x] PowerShell analysis: `npm run lint:ps`
* [x] Plugin freshness: `npm run plugin:generate`
* [x] Docusaurus tests: `npm run docs:test`

## Security Considerations

* [x] This PR does not contain any sensitive or NDA information
* [x] Any new dependencies have been reviewed for security issues
* [x] Security-related scripts follow the principle of least privilege

## Additional Notes

The new `lint:adr-consistency` script is intentionally not wired into
`lint:all` in this PR. The `docs/planning/adrs/` corpus does not yet
contain ADR markdown files, so the linter is a no-op against the current
tree. A follow-up PR will introduce the ADR Planner upgrade that
produces ADR documents and enable the linter as part of `lint:all`.

The `Validate-SkillStructure.ps1` change adds `templates` to
`$script:RecognizedSubdirectories`, allowing skills that ship
author-facing templates to validate without warnings. No existing skill
relies on a `templates/` directory being rejected.

---------

Co-authored-by: Bill Berry <wbery@microsoft.com>

Author: WilliamBerryiii

.cspell.json

@@ -80,6 +80,7 @@
     "skillmd",
     "smol",
     "subcat",
+    "uncited",
     "vally",
     "whiteboarding",
     "ˈpræksɪs",

.github/workflows/adr-consistency-validation.yml

@@ -0,0 +1,160 @@
+name: ADR Consistency Validation
+
+on:
+  workflow_call:
+    inputs:
+      soft-fail:
+        description: 'Whether to continue on ADR consistency violations'
+        required: false
+        type: boolean
+        default: false
+      changed-files-only:
+        description: 'Only run validation when ADR markdown files changed'
+        required: false
+        type: boolean
+        default: false
+      upload-sarif:
+        description: 'Whether to upload SARIF results to Security tab'
+        required: false
+        type: boolean
+        default: false
+      upload-artifact:
+        description: 'Whether to upload validation results as artifact'
+        required: false
+        type: boolean
+        default: true
+
+permissions:
+  contents: read
+
+jobs:
+  detect-changes:
+    name: Detect ADR Changes
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    outputs:
+      has-adr-changes: ${{ steps.detect.outputs.has-adr-changes }}
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
+          fetch-depth: 0
+
+      - name: Check ADR changes
+        id: detect
+        shell: pwsh
+        run: |
+          if ('${{ inputs.changed-files-only }}' -ne 'true') {
+            'has-adr-changes=true' >> $env:GITHUB_OUTPUT
+            Write-Output 'ADR validation requested for all configured ADR files.'
+          } else {
+            $baseRef = if ($env:GITHUB_BASE_REF) { $env:GITHUB_BASE_REF } else { 'main' }
+            $changed = @(git diff --name-only --diff-filter=ACMR "origin/$baseRef...HEAD" -- docs/planning/adrs |
+              Where-Object { $_ -match '^docs/planning/adrs/.+\.md$' })
+
+            if ($changed.Count -gt 0) {
+              'has-adr-changes=true' >> $env:GITHUB_OUTPUT
+              Write-Output "Detected $($changed.Count) changed ADR file(s)"
+              $changed | ForEach-Object { Write-Output "- $_" }
+            } else {
+              'has-adr-changes=false' >> $env:GITHUB_OUTPUT
+              Write-Output 'No ADR markdown changes detected under docs/planning/adrs'
+            }
+          }
+
+  report-skipped:
+    name: Report Skipped ADR Validation
+    runs-on: ubuntu-latest
+    needs: detect-changes
+    if: inputs.changed-files-only && needs.detect-changes.outputs.has-adr-changes != 'true'
+    permissions:
+      contents: read
+    steps:
+      - name: Report skipped validation
+        shell: pwsh
+        run: |
+          @(
+            '## ADR Consistency Validation',
+            '',
+            'No ADR markdown changes detected under docs/planning/adrs. Validation skipped.'
+          ) -join "`n" >> $env:GITHUB_STEP_SUMMARY
+
+  validate:
+    name: Validate ADR Consistency
+    runs-on: ubuntu-latest
+    needs: detect-changes
+    if: needs.detect-changes.outputs.has-adr-changes == 'true'
+    permissions:
+      contents: read
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
+          fetch-depth: 0
+
+      - name: Run ADR consistency validation
+        shell: pwsh
+        continue-on-error: ${{ inputs.soft-fail }}
+        run: |
+          New-Item -ItemType Directory -Force -Path logs | Out-Null
+          $baseBranch = if ($env:GITHUB_BASE_REF) { "origin/$env:GITHUB_BASE_REF" } else { 'origin/main' }
+          $params = @{
+            Paths = @('docs/planning/adrs')
+            BaseBranch = $baseBranch
+            OutputPath = 'logs/adr-consistency-results.json'
+          }
+
+          if ('${{ inputs.changed-files-only }}' -eq 'true') {
+            $params['ChangedFilesOnly'] = $true
+          }
+
+          if ('${{ inputs.upload-sarif }}' -eq 'true') {
+            $params['SarifOutputPath'] = 'logs/adr-consistency-results.sarif'
+          }
+
+          & scripts/linting/Validate-AdrConsistency.ps1 @params
+
+      - name: Upload SARIF handoff
+        if: inputs.upload-sarif && always()
+        uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
+        with:
+          name: adr-consistency-sarif
+          path: logs/adr-consistency-results.sarif
+          retention-days: 1
+          if-no-files-found: ignore
+
+      - name: Upload validation report
+        if: inputs.upload-artifact && always()
+        uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
+        with:
+          name: adr-consistency-results
+          path: |
+            logs/adr-consistency-results.json
+            logs/adr-consistency-results.sarif
+          retention-days: 90
+          if-no-files-found: ignore
+
+  upload-sarif:
+    name: Upload ADR SARIF
+    runs-on: ubuntu-latest
+    needs: validate
+    if: inputs.upload-sarif && always() && needs.validate.result != 'skipped'
+    permissions:
+      contents: read
+      security-events: write  # Required for SARIF upload to Security tab
+    steps:
+      - name: Download SARIF handoff
+        uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v6.0.0
+        with:
+          name: adr-consistency-sarif
+          path: logs
+
+      - name: Upload SARIF to Security tab
+        uses: github/codeql-action/upload-sarif@ce729e4d353d580e6cacd6a8cf2921b72e5e310a # v3.27.0
+        with:
+          sarif_file: logs/adr-consistency-results.sarif
+          category: adr-consistency
+        continue-on-error: true

.github/workflows/pr-validation.yml

@@ -196,6 +196,18 @@ jobs:
       skip-footer-validation: false
       warnings-as-errors: true
 
+  adr-consistency-validation:
+    name: ADR Consistency Validation
+    uses: ./.github/workflows/adr-consistency-validation.yml
+    permissions:
+      contents: read
+      security-events: write  # Required for SARIF upload to Security tab
+    with:
+      soft-fail: false
+      changed-files-only: true
+      upload-sarif: true
+      upload-artifact: false
+
   ai-artifact-validation:
     name: AI Artifact Validation
     uses: ./.github/workflows/ai-artifact-validation.yml

.markdownlint-cli2.jsonc

@@ -6,6 +6,7 @@
     "logs/**",
     "venv/**",
     "scripts/tests/Fixtures/**",
+    "scripts/tests/linting/fixtures/**",
     "extension/README.md",
     "extension/README.*.md",
     "extension/CHANGELOG.md",

.vscode/settings.json

@@ -18,6 +18,10 @@
     ],
     "./scripts/linting/schemas/docs-frontmatter.schema.json": [
       "docs/**/*.md"
+    ],
+    "./scripts/linting/schemas/adr-config.schema.json": [
+      "**/.adr-config.yml",
+      "**/.adr-config.yaml"
     ]
   },
   "json.schemas": [

package.json

@@ -14,6 +14,7 @@
     "lint:links": "pwsh -NoProfile -Command \"& scripts/linting/Invoke-LinkLanguageCheck.ps1 -ExcludePaths 'scripts/tests/**'\"",
     "lint:md-links": "pwsh -File scripts/linting/Markdown-Link-Check.ps1",
     "lint:frontmatter": "pwsh -NoProfile -Command \"& './scripts/linting/Validate-MarkdownFrontmatter.ps1' -WarningsAsErrors -EnableSchemaValidation\"",
+    "lint:adr-consistency": "pwsh -NoProfile -File scripts/linting/Validate-AdrConsistency.ps1 -Paths docs/planning/adrs",
     "lint:collections-metadata": "pwsh -NoProfile -Command \"./scripts/collections/Validate-Collections.ps1 -OutputPath logs/collection-validation-results.json\"",
     "lint:marketplace": "pwsh -File scripts/plugins/Validate-Marketplace.ps1 -OutputPath logs/marketplace-validation-results.json",
     "lint:version-consistency": "pwsh -NoProfile -Command \"./scripts/security/Test-ActionVersionConsistency.ps1 -FailOnMismatch -Format Json -OutputPath logs/action-version-consistency-results.json\"",

scripts/linting/Invoke-PSScriptAnalyzer.ps1

@@ -32,6 +32,45 @@ Import-Module (Join-Path $PSScriptRoot "../lib/Modules/CIHelpers.psm1") -Force
 
 #region Functions
 
+function Invoke-ScriptAnalyzerIsolated {
+    [CmdletBinding()]
+    [OutputType([System.Object[]])]
+    [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSUseUsingScopeModifierInNewRunspaces', '', Justification = 'Variables are passed into the Start-Job script block via param() and -ArgumentList, so the $using: modifier does not apply.')]
+    param(
+        [Parameter(Mandatory = $true)]
+        [string]$Path,
+
+        [Parameter(Mandatory = $true)]
+        [string]$SettingsPath
+    )
+
+    # Analyze each file in its own child process so every file compiles into a
+    # fresh dynamic assembly. On Linux/CoreCLR a process permits only one dynamic
+    # module per dynamic assembly, so analyzing multiple module files in a shared
+    # runspace throws "more than one dynamic module" on the second .psm1 file.
+    $job = Start-Job -ScriptBlock {
+        param($FilePath, $ConfigPath)
+        Import-Module PSScriptAnalyzer -RequiredVersion 1.25.0
+        Invoke-ScriptAnalyzer -Path $FilePath -Settings $ConfigPath | ForEach-Object {
+            [pscustomobject]@{
+                RuleName = $_.RuleName
+                Message  = $_.Message
+                Severity = $_.Severity.ToString()
+                Line     = $_.Line
+                Column   = $_.Column
+            }
+        }
+    } -ArgumentList $Path, $SettingsPath
+
+    try {
+        $null = Wait-Job -Job $job
+        return @(Receive-Job -Job $job)
+    }
+    finally {
+        Remove-Job -Job $job -Force
+    }
+}
+
 function Invoke-PSScriptAnalyzerCore {
     [CmdletBinding()]
     [OutputType([void])]
@@ -85,12 +124,15 @@ function Invoke-PSScriptAnalyzerCore {
     $allResults = @()
     $hasErrors = $false
 
+    $resolvedConfigPath = (Resolve-Path -LiteralPath $ConfigPath).Path
+
     foreach ($file in $filesToAnalyze) {
         $filePath = if ($file -is [System.IO.FileInfo]) { $file.FullName } else { $file }
         Write-Host "`n📄 Analyzing: $filePath" -ForegroundColor Cyan
-        
-        $results = Invoke-ScriptAnalyzer -Path $filePath -Settings $ConfigPath
-        
+
+        $resolvedFilePath = (Resolve-Path -LiteralPath $filePath).Path
+        $results = @(Invoke-ScriptAnalyzerIsolated -Path $resolvedFilePath -SettingsPath $resolvedConfigPath)
+
         if ($results) {
             $allResults += $results