feat: add support for /stdlib todo slash command

---
type: pre_commit_static_analysis_report
description: Results of running static analysis checks when committing changes.
report:
  - task: lint_filenames
    status: passed
  - task: lint_editorconfig
    status: passed
  - task: lint_markdown
    status: na
  - task: lint_package_json
    status: na
  - task: lint_repl_help
    status: na
  - task: lint_javascript_src
    status: na
  - task: lint_javascript_cli
    status: na
  - task: lint_javascript_examples
    status: na
  - task: lint_javascript_tests
    status: na
  - task: lint_javascript_benchmarks
    status: na
  - task: lint_python
    status: na
  - task: lint_r
    status: na
  - task: lint_c_src
    status: na
  - task: lint_c_examples
    status: na
  - task: lint_c_benchmarks
    status: na
  - task: lint_c_tests_fixtures
    status: na
  - task: lint_shell
    status: na
  - task: lint_typescript_declarations
    status: passed
  - task: lint_typescript_tests
    status: na
  - task: lint_license_headers
    status: passed
---

Author: anandkaranubc

.github/workflows/slash_commands.yml

@@ -65,7 +65,8 @@ jobs:
           script: |
             const commentBody = context.payload.comment.body.trim();
             const RE_COMMANDS = /^\/stdlib\s+(help|check-files|update-copyright-years|lint-autofix|merge|rebase|make-commands)$/i;
-            const isRecognizedCommand = RE_COMMANDS.test( commentBody );
+            const RE_TODO_COMMAND = /^\/stdlib\s+todo\b/i;
+            const isRecognizedCommand = RE_COMMANDS.test( commentBody ) || RE_TODO_COMMAND.test( commentBody );
 
             if ( isRecognizedCommand ) {
               await github.rest.reactions.createForIssueComment({
@@ -206,6 +207,157 @@ jobs:
       STDLIB_BOT_GPG_PRIVATE_KEY: ${{ secrets.STDLIB_BOT_GPG_PRIVATE_KEY }}
       STDLIB_BOT_GPG_PASSPHRASE: ${{ secrets.STDLIB_BOT_GPG_PASSPHRASE }}
 
+  # Define a job for creating a new todo issue:
+  todo:
+
+    # Define a display name:
+    name: 'Create a new todo issue'
+
+    # Define the type of virtual host machine:
+    runs-on: ubuntu-latest
+
+    # Ensure initial reaction job has completed before running this job:
+    needs: [ add_initial_reaction ]
+
+    # Define the conditions under which the job should run:
+    if: github.event.issue.pull_request && startsWith(github.event.comment.body, '/stdlib todo')
+
+    # Define the job's steps:
+    steps:
+      # Create a new todo issue:
+      - name: 'Create a new todo issue'
+        # Pin action to full length commit SHA
+        uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0
+        with:
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
+          script: |
+            const commentBody = context.payload.comment.body.trim();
+
+            // Parse the fenced code block following '/stdlib todo':
+            const RE_CODE_BLOCK = /```text\s*\{([^}]*)\}\s*\n([\s\S]*?)```/;
+            const blockMatch = commentBody.match( RE_CODE_BLOCK );
+            if ( !blockMatch ) {
+              const lines = commentBody.split( '\n' );
+              const quote = lines.map( line => `> ${line}` ).join( '\n' );
+              await github.rest.issues.createComment({
+                'owner': context.repo.owner,
+                'repo': context.repo.repo,
+                'issue_number': context.issue.number,
+                'body': `${quote}\n\n@${context.payload.comment.user.login}, failed to parse the \`/stdlib todo\` command. Expected a fenced code block with attributes, e.g.,\n\n\`\`\`\n/stdlib todo\n\n\\\`\\\`\\\`text {stdlib=public labels="foo,bar"}\n[TODO]: Issue title\n\nIssue body\n\\\`\\\`\\\`\n\`\`\``
+              });
+              core.setFailed( 'No code block found in /stdlib todo comment.' );
+              return;
+            }
+
+            const attrs = blockMatch[ 1 ];
+            const content = blockMatch[ 2 ].trim();
+
+            // Parse 'stdlib' attribute (values: 'public' or 'private'):
+            const stdlibAttrMatch = attrs.match( /stdlib=(\w+)/i );
+            const stdlibTarget = stdlibAttrMatch ? stdlibAttrMatch[ 1 ].toLowerCase() : 'public';
+            if ( stdlibTarget !== 'public' && stdlibTarget !== 'private' ) {
+              const lines = commentBody.split( '\n' );
+              const quote = lines.map( line => `> ${line}` ).join( '\n' );
+              await github.rest.issues.createComment({
+                'owner': context.repo.owner,
+                'repo': context.repo.repo,
+                'issue_number': context.issue.number,
+                'body': `${quote}\n\n@${context.payload.comment.user.login}, unrecognized \`stdlib\` attribute value \`${stdlibTarget}\`. Valid values are \`public\` (opens issue on \`stdlib-js/stdlib\`) or \`private\` (opens issue on the internal todo repository).`
+              });
+              core.setFailed( `Unrecognized stdlib attribute value: ${stdlibTarget}` );
+              return;
+            }
+
+            // Parse 'labels' attribute (comma-separated list):
+            const labelsAttrMatch = attrs.match( /labels="([^"]*)"/i );
+            const labels = labelsAttrMatch
+              ? labelsAttrMatch[ 1 ].split( ',' ).map( l => l.trim() ).filter( Boolean )
+              : [];
+
+            // Parse the issue title from the '[TODO]:' line:
+            const contentLines = content.split( '\n' );
+            const RE_TITLE = /^\[TODO\]:\s*(.+)/i;
+            const titleMatch = contentLines[ 0 ].match( RE_TITLE );
+            if ( !titleMatch ) {
+              const lines = commentBody.split( '\n' );
+              const quote = lines.map( line => `> ${line}` ).join( '\n' );
+              await github.rest.issues.createComment({
+                'owner': context.repo.owner,
+                'repo': context.repo.repo,
+                'issue_number': context.issue.number,
+                'body': `${quote}\n\n@${context.payload.comment.user.login}, failed to parse the todo title. The first line of the code block must be of the form \`[TODO]: Issue title\`.`
+              });
+              core.setFailed( 'No [TODO]: line found in the code block.' );
+              return;
+            }
+
+            const title = titleMatch[ 1 ].trim();
+            const body = contentLines.slice( 1 ).join( '\n' ).trim();
+
+            // Determine the target repository:
+            const targetOwner = 'stdlib-js';
+            const targetRepo = ( stdlibTarget === 'private' ) ? 'todo' : 'stdlib';
+
+            // For private repo targets, verify the commenter is an org member:
+            if ( stdlibTarget === 'private' ) {
+              const commenter = context.payload.comment.user.login;
+              try {
+                await github.rest.orgs.checkMembershipForUser({
+                  'org': targetOwner,
+                  'username': commenter
+                });
+              } catch ( err ) {
+                console.log( 'Error checking org membership: %s', err.message );
+                const lines = commentBody.split( '\n' );
+                const quote = lines.map( line => `> ${line}` ).join( '\n' );
+                await github.rest.issues.createComment({
+                  'owner': context.repo.owner,
+                  'repo': context.repo.repo,
+                  'issue_number': context.issue.number,
+                  'body': `${quote}\n\n@${commenter}, you must be a member of the \`${targetOwner}\` organization to create issues on the private todo repository.`
+                });
+                core.setFailed( `User ${commenter} is not a member of ${targetOwner}.` );
+                return;
+              }
+            }
+
+            // Build issue creation parameters:
+            const issueParams = {
+              'owner': targetOwner,
+              'repo': targetRepo,
+              'title': title
+            };
+            // Build provenance footer:
+            const prUrl = `https://github.com/${context.repo.owner}/${context.repo.repo}/pull/${context.issue.number}`;
+            const provenance = `\n\n---\n*Created via \`/stdlib todo\` from [${context.repo.owner}/${context.repo.repo}#${context.issue.number}](${prUrl}) by @${context.payload.comment.user.login}.*`;
+
+            if ( body ) {
+              issueParams.body = body + provenance;
+            } else {
+              issueParams.body = provenance.trim();
+            }
+            if ( labels.length > 0 ) {
+              issueParams.labels = labels;
+            }
+
+            // Create the issue:
+            const issue = await github.rest.issues.create( issueParams );
+
+            // Check for labels that were silently dropped (do not exist in the target repo):
+            const appliedLabels = issue.data.labels.map( l => l.name );
+            const droppedLabels = labels.filter( l => !appliedLabels.includes( l ) );
+
+            // Post a confirmation comment:
+            const confirmBody = droppedLabels.length > 0
+              ? `@${context.payload.comment.user.login}, the following todo issue has been created: ${issue.data.html_url}\n\n> [!WARNING]\n> The following labels were not applied because they do not exist on \`${targetOwner}/${targetRepo}\`: ${droppedLabels.map( l => `\`${l}\`` ).join( ', ' )}.`
+              : `@${context.payload.comment.user.login}, the following todo issue has been created: ${issue.data.html_url}`;
+            await github.rest.issues.createComment({
+              'owner': context.repo.owner,
+              'repo': context.repo.repo,
+              'issue_number': context.issue.number,
+              'body': confirmBody
+            });
+
   # Define a job for printing a list of available slash commands:
   help:
 
@@ -241,6 +393,7 @@ jobs:
             - `/stdlib lint-autofix` - Auto-fix lint errors.
             - `/stdlib merge` - Merge changes from develop branch into this PR.
             - `/stdlib rebase` - Rebase this PR on top of develop branch.
+            - `/stdlib todo` - Create a new todo issue.
 
           # GitHub token:
           token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
@@ -255,7 +408,7 @@ jobs:
     runs-on: ubuntu-latest
 
     # Ensure all previous jobs have completed before running this job:
-    needs: [ add_initial_reaction, check_files, make-commands, update_copyright_years, fix_lint_errors, merge_develop, rebase_develop, help ]
+    needs: [ add_initial_reaction, check_files, make-commands, update_copyright_years, fix_lint_errors, merge_develop, rebase_develop, help, todo ]
 
     # Define the conditions under which the job should run:
     if: |