chore: Convert formatter from Biome + Prettier to Oxfmt

.github/renovate.json

@@ -1,6 +1,6 @@
 {
 	"$schema": "https://docs.renovatebot.com/renovate-schema.json",
-	"extends": ["config:best-practices", "customManagers:biomeVersions"],
+	"extends": ["config:best-practices"],
 	"timezone": "Asia/Tokyo",
 	"schedule": ["before 5am on Monday"],
 	"labels": ["dependencies"],

.github/workflows/ci.yml

@@ -84,15 +84,7 @@ jobs:
     name: Status Check
     runs-on: ubuntu-slim
     timeout-minutes: 1
-    needs:
-      [
-        setup,
-        lint-format,
-        type-check,
-        test,
-        export-validation,
-        dependency-review,
-      ]
+    needs: [setup, lint-format, type-check, test, export-validation, dependency-review]
     if: always() && (contains(needs.*.result, 'failure') || contains(needs.*.result, 'cancelled'))
     steps:
       - run: exit 1

.oxfmtrc.json

@@ -0,0 +1,22 @@
+{
+	"$schema": "./node_modules/oxfmt/configuration_schema.json",
+	"useTabs": true,
+	"tabWidth": 2,
+	"printWidth": 100,
+	"singleQuote": false,
+	"jsxSingleQuote": false,
+	"quoteProps": "as-needed",
+	"trailingComma": "all",
+	"semi": true,
+	"arrowParens": "always",
+	"bracketSameLine": false,
+	"bracketSpacing": true,
+	"overrides": [
+		{
+			"files": ["*.md", "*.{yml,yaml}"],
+			"options": {
+				"useTabs": false
+			}
+		}
+	]
+}

CLAUDE.md

@@ -48,8 +48,7 @@ bun run check:type:example
 | **tsup**               | Build (bundler)                 |
 | **vitest**             | Test runner                     |
 | **oxlint**             | Linter                          |
-| **Biome**              | Formatter (TS/JS/JSON)          |
-| **Prettier**           | Formatter (Markdown/YAML)       |
+| **oxfmt**              | Formatter (TS/JS/JSON)          |
 | **publint** / **attw** | Package export validation       |
 | **npm-run-all2**       | Script orchestration            |
 
@@ -73,7 +72,7 @@ bun run test:watch   # Watch mode for testing
 ```bash
 bun run lint         # oxlint (deny-warnings)
 bun run lint:fix     # oxlint --fix-suggestions
-bun run format       # Biome + Prettier (write)
+bun run format       # oxfmt (write)
 bun run fix          # lint:fix + format (all-in-one auto-fix)
 ```
 

README.md

@@ -30,6 +30,7 @@ It enforces strict rules on keys and forbids structural inference by design.
     - [Result](#result)
     - [Issues](#issues)
   - [Versioning](#versioning)
+  - [Contributing](#contributing)
   - [License](#license)
 
 ---

package.json

@@ -2,15 +2,30 @@
 	"name": "safe-formdata",
 	"version": "0.1.3",
 	"description": "Boundary-focused FormData parser with strict security guarantees",
+	"keywords": [
+		"boundary",
+		"formdata",
+		"parser",
+		"prototype-pollution",
+		"security"
+	],
+	"homepage": "https://github.com/roottool/safe-formdata#readme",
+	"bugs": {
+		"url": "https://github.com/roottool/safe-formdata/issues"
+	},
+	"license": "MIT",
 	"author": "roottool",
 	"repository": {
 		"type": "git",
 		"url": "git+https://github.com/roottool/safe-formdata.git"
 	},
-	"bugs": {
-		"url": "https://github.com/roottool/safe-formdata/issues"
-	},
-	"homepage": "https://github.com/roottool/safe-formdata#readme",
+	"files": [
+		"dist"
+	],
+	"type": "module",
+	"main": "./dist/index.js",
+	"module": "./dist/index.js",
+	"types": "./dist/index.d.ts",
 	"imports": {
 		"#*": {
 			"types": "./src/*.ts",
@@ -19,39 +34,26 @@
 		},
 		"#safe-formdata": "./src/index.ts"
 	},
-	"type": "module",
-	"main": "./dist/index.js",
-	"module": "./dist/index.js",
-	"types": "./dist/index.d.ts",
 	"exports": {
 		".": {
 			"types": "./dist/index.d.ts",
 			"import": "./dist/index.js",
 			"default": "./dist/index.js"
 		}
 	},
-	"files": [
-		"dist"
-	],
 	"scripts": {
 		"dev": "tsup --watch",
 		"lint": "oxlint . --deny-warnings",
 		"lint:fix": "oxlint . --fix-suggestions",
-		"format:biome": "biome check --write --assist-enabled true",
-		"format:prettier": "prettier --cache --write \"**/*.{md,yml,yaml}\"",
-		"format": "npm-run-all2 format:biome format:prettier",
+		"format": "oxfmt",
 		"fix": "npm-run-all2 lint:fix format",
-		"check:biome": "biome check . --assist-enabled true",
-		"check:prettier": "prettier --cache --check \"**/*.{md,yml,yaml}\"",
-		"check:format": "npm-run-all2 check:biome check:prettier",
+		"check:format": "oxfmt --check",
 		"check:source": "npm-run-all2 lint check:format",
 		"check": "bun run check:source",
 		"check:type:source": "tsc --noEmit",
 		"check:type:example": "tsc --project tsconfig.examples.json --noEmit",
 		"check:type": "npm-run-all2 check:type:source check:type:example",
-		"check:prettier:ci": "prettier --check \"**/*.{md,yml,yaml}\"",
-		"check:format:ci": "npm-run-all2 check:biome check:prettier:ci",
-		"check:source:ci": "npm-run-all2 lint check:format:ci",
+		"check:source:ci": "npm-run-all2 lint check:format",
 		"test": "vitest run",
 		"test:watch": "vitest",
 		"test:coverage": "vitest run --coverage",
@@ -61,25 +63,16 @@
 	},
 	"devDependencies": {
 		"@arethetypeswrong/cli": "0.18.2",
-		"@biomejs/biome": "2.3.10",
 		"@types/node": "25.0.3",
 		"@vitest/coverage-v8": "4.0.16",
 		"happy-dom": "20.0.11",
 		"npm-run-all2": "8.0.4",
+		"oxfmt": "0.35.0",
 		"oxlint": "1.34.0",
-		"prettier": "3.7.4",
 		"publint": "0.3.16",
 		"terser": "5.44.1",
 		"tsup": "8.5.1",
 		"typescript": "5.9.3",
 		"vitest": "4.0.16"
-	},
-	"license": "MIT",
-	"keywords": [
-		"formdata",
-		"parser",
-		"security",
-		"boundary",
-		"prototype-pollution"
-	]
+	}
 }

skills/boundary-validator/examples/bad-code.md

@@ -460,11 +460,7 @@ export function parse(formData: FormData, strict?: boolean): ParseResult {
 
 ```typescript
 // ❌ WRONG: Adding new issue code in minor version
-export type IssueCode =
-  | "invalid_key"
-  | "forbidden_key"
-  | "duplicate_key"
-  | "invalid_value"; // NEW - requires major version bump!
+export type IssueCode = "invalid_key" | "forbidden_key" | "duplicate_key" | "invalid_value"; // NEW - requires major version bump!
 
 // Problem: Breaking change without major version bump
 // Violates: API contract (IssueCode stability)

skills/boundary-validator/references/api-contract.md

@@ -34,10 +34,7 @@ function parse(formData: FormData): ParseResult;
 function parse(formData: FormData, options: ParseOptions): ParseResult;
 
 // Adding options
-function parse(
-  formData: FormData,
-  options?: { allowDuplicates?: boolean },
-): ParseResult;
+function parse(formData: FormData, options?: { allowDuplicates?: boolean }): ParseResult;
 
 // Adding framework adapters
 function parseRequest(req: NextRequest): ParseResult;
@@ -191,11 +188,7 @@ export type IssueCode = "invalid_key" | "forbidden_key" | "duplicate_key";
 export type IssueCode = "invalid_key" | "forbidden_key" | "duplicate_key";
 
 // v1.0.0 - Major version allows changes
-export type IssueCode =
-  | "invalid_key"
-  | "forbidden_key"
-  | "duplicate_key"
-  | "invalid_value"; // OK in major version
+export type IssueCode = "invalid_key" | "forbidden_key" | "duplicate_key" | "invalid_value"; // OK in major version
 ```
 
 ---

skills/boundary-validator/references/validation-patterns.md

@@ -104,9 +104,7 @@ data[key] = value; // If key exists, this silently overwrites
 ```typescript
 // ❌ Violation: Converting to array for duplicates
 if (data[key]) {
-  data[key] = Array.isArray(data[key])
-    ? [...data[key], value]
-    : [data[key], value];
+  data[key] = Array.isArray(data[key]) ? [...data[key], value] : [data[key], value];
 }
 
 // ❌ Violation: Array push
@@ -392,11 +390,7 @@ export function parse(formData: FormData, strict: boolean): ParseResult;
 
 ```typescript
 // ❌ Violation: Adding new issue codes without major version bump
-export type IssueCode =
-  | "invalid_key"
-  | "forbidden_key"
-  | "duplicate_key"
-  | "invalid_value"; // NEW CODE - requires major version!
+export type IssueCode = "invalid_key" | "forbidden_key" | "duplicate_key" | "invalid_value"; // NEW CODE - requires major version!
 ```
 
 ### Correct Patterns