feat: initial open source release of Typelets API

Author: batalabs

.dockerignore

@@ -0,0 +1,59 @@
+# Dependencies
+node_modules
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+
+# Build output (will be created during Docker build)
+dist
+
+# Environment files
+.env
+.env
+.env.development
+.env.test
+.env.production
+
+# IDE and editor files
+.vscode
+.idea
+*.swp
+*.swo
+
+# OS files
+.DS_Store
+Thumbs.db
+
+# Git
+.git
+.gitignore
+
+# Documentation
+README.md
+*.md
+
+# Testing
+coverage
+.nyc_output
+test
+
+# Logs
+logs
+*.log
+
+# Database files
+*.db
+*.sqlite
+
+# Docker files
+Dockerfile
+.dockerignore
+docker-compose.yml
+
+# Deployment files
+deploy-backend.sh
+backend-task-definition.json
+
+# Drizzle
+drizzle
+migrations

.env.example

@@ -0,0 +1,34 @@
+# LOCAL DEVELOPMENT AND TESTING ENVIRONMENT VARIABLES
+# This file is ONLY for local development and testing
+# Copy this file to .env and update with your local testing values
+
+# Database connection for local testing
+# For Docker PostgreSQL (recommended for testing):
+DATABASE_URL=postgresql://postgres:devpassword@localhost:5432/typelets_local
+# For local PostgreSQL installation:
+# DATABASE_URL=postgresql://postgres:your_password@localhost:5432/typelets_local
+
+# Clerk authentication for local testing (get from https://dashboard.clerk.com)
+CLERK_SECRET_KEY=sk_test_your_actual_clerk_secret_key_from_dashboard
+
+# CORS configuration - REQUIRED
+# Comma-separated list of allowed origins
+CORS_ORIGINS=http://localhost:5173,http://localhost:3000
+
+# Optional settings (have sensible defaults)
+PORT=3000
+NODE_ENV=development
+
+# File upload configuration
+# MAX_FILE_SIZE_MB=50      # Maximum size per file in MB (default: 50)
+# MAX_NOTE_SIZE_MB=1024    # Maximum total attachments per note in MB (default: 1024MB = 1GB)
+
+# Free tier limits for billing
+# FREE_TIER_STORAGE_GB=1   # Storage limit in GB for free tier (default: 1)
+# FREE_TIER_NOTE_LIMIT=100 # Note count limit for free tier (default: 100)
+
+# Debug logging
+# DEBUG=false  # Set to true to enable debug logging in production
+
+# IMPORTANT: This .env file is for LOCAL TESTING ONLY
+# Production uses AWS ECS task definitions, not .env files

.github/workflows/ci.yml

@@ -0,0 +1,37 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    
+    strategy:
+      matrix:
+        node-version: [20.x, 22.x]
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+          
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9.15.0
+          
+      - name: Install dependencies
+        run: pnpm install
+        
+      - name: Run linting
+        run: pnpm run lint
+        
+      - name: Run build
+        run: NODE_OPTIONS="--max-old-space-size=8192" pnpm run build

.github/workflows/codeql.yml

@@ -0,0 +1,51 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+  schedule:
+    - cron: '0 0 * * 0'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: ['typescript']
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9.15.0
+
+      - name: Install dependencies
+        run: pnpm install
+
+      - name: Build
+        run: NODE_OPTIONS="--max-old-space-size=8192" pnpm run build
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3

.github/workflows/release.yml

@@ -0,0 +1,40 @@
+name: Release
+
+on:
+  push:
+    branches: [main]
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    
+    permissions:
+      contents: write
+      issues: write
+      pull-requests: write
+      
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9.15.0
+          
+      - name: Install dependencies
+        run: pnpm install
+        
+      - name: Build
+        run: NODE_OPTIONS="--max-old-space-size=8192" pnpm run build
+        
+      - name: Release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: npx semantic-release

.gitignore

@@ -0,0 +1,84 @@
+node_modules/
+dist/
+.env
+*.log
+.DS_Store
+coverage/
+drizzle/
+.claude/
+
+# Dependencies
+node_modules/
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+
+# Environment variables - CRITICAL: Keep secrets out of Git
+.env
+.env.*
+!.env.example
+.env.local
+.env.development.local
+.env.test.local
+.env.production.local
+
+# Build outputs
+dist/
+build/
+
+# Logs
+logs
+*.log
+
+# Runtime data
+pids
+*.pid
+*.seed
+*.pid.lock
+
+# Coverage directory
+coverage/
+*.lcov
+
+# Dependency directories
+node_modules/
+jspm_packages/
+
+# Optional npm cache
+.npm
+
+# Optional eslint cache
+.eslintcache
+
+# IDE files
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# OS generated files
+.DS_Store
+.DS_Store?
+._*
+.Spotlight-V100
+.Trashes
+ehthumbs.db
+Thumbs.db
+
+# Database files
+*.sqlite
+*.db
+
+# Temporary files
+tmp/
+temp/
+
+# Local deployment scripts - NEVER COMMIT
+deploy.local.sh
+deploy.local.bat
+deploy.local.ps1
+*.local.sh
+*.local.bat
+*.local.ps1
+deployment-scripts/

.releaserc.json

@@ -0,0 +1,33 @@
+{
+  "branches": ["main"],
+  "plugins": [
+    "@semantic-release/commit-analyzer",
+    "@semantic-release/release-notes-generator",
+    "@semantic-release/changelog",
+    [
+      "@semantic-release/npm",
+      {
+        "npmPublish": false
+      }
+    ],
+    [
+      "@semantic-release/exec",
+      {
+        "prepareCmd": "node scripts/update-version.js ${nextRelease.version}"
+      }
+    ],
+    [
+      "@semantic-release/git",
+      {
+        "assets": [
+          "CHANGELOG.md",
+          "package.json",
+          "package-lock.json",
+          "src/version.ts"
+        ],
+        "message": "chore(release): ${nextRelease.version} [skip ci]\n\n${nextRelease.notes}"
+      }
+    ],
+    "@semantic-release/github"
+  ]
+}

CHANGELOG.md

@@ -0,0 +1,24 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+### Added
+
+- Initial open source release
+- TypeScript API with Hono framework
+- PostgreSQL database with Drizzle ORM
+- Clerk authentication integration
+- End-to-end encryption support for notes and files
+- Folder organization with nested folder support
+- File attachments with encrypted storage
+- Tags and search functionality
+- Trash and archive features
+- Comprehensive API documentation
+- GitHub Actions CI/CD pipeline with semantic versioning
+- Environment-based configuration for CORS and file upload limits
+- Production-ready logging with debug mode support