feat(infra): Add Biome linting/formatting infrastructure

.github/workflows/validate-pr.yml

@@ -33,36 +33,45 @@ jobs:
       - name: Install dependencies
         run: bun install --frozen-lockfile
 
-      - name: Biome check (format + lint)
-        run: bunx nx affected --target=check --base=origin/${{ github.base_ref }}
+      - name: Run Biome CI
+        env:
+          BIOME_CONFIG_PATH: ./biome.json
+        run: bunx biome ci --reporter=github --diagnostic-level=error . --verbose
 
-      - name: JSDoc validation
-        run: bunx nx affected --target=validate:jsdoc --base=origin/${{ github.base_ref }}
+      - name: Run markdown linter
+        run: bunx markdownlint-cli2 "**/*.md" "#node_modules" "#**/node_modules"
 
-      - name: Markdown validation
-        run: bunx nx affected --target=validate:markdown --base=origin/${{ github.base_ref }}
+      - name: Validate TSDoc on affected projects
+        run: bunx nx affected --target=validate:tsdoc --base=origin/${{ github.base_ref }} --output-style=stream
 
       - name: Type check affected projects
-        run: bunx nx affected --target=type-check --base=origin/${{ github.base_ref }}
+        run: bunx nx affected --target=type-check --base=origin/${{ github.base_ref }} --output-style=stream
 
       - name: Run tests on affected projects
-        run: bunx nx affected --target=test --base=origin/${{ github.base_ref }}
+        run: bunx nx affected --target=test --base=origin/${{ github.base_ref }} --output-style=stream
 
       - name: Build affected projects
-        run: bunx nx affected --target=build --base=origin/${{ github.base_ref }} --exclude='tag:skip-ci'
+        run: bunx nx affected --target=build --base=origin/${{ github.base_ref }} --exclude='tag:skip-ci' --output-style=stream
+
+      - name: Validate TypeScript skills
+        run: bunx nx affected --target=validate:skills --base=origin/${{ github.base_ref }} --output-style=stream
+
+      - name: Validate SKILL.md files
+        run: bunx nx affected --target=validate:skill-md --base=origin/${{ github.base_ref }} --configuration=strict --output-style=stream
 
       - name: Summary
         if: always()
         run: |
           echo "## ✅ Validation Complete" >> $GITHUB_STEP_SUMMARY
           echo "" >> $GITHUB_STEP_SUMMARY
           echo "All validation checks passed:" >> $GITHUB_STEP_SUMMARY
-          echo "- ✅ Biome check (format + lint)" >> $GITHUB_STEP_SUMMARY
-          echo "- ✅ JSDoc validation" >> $GITHUB_STEP_SUMMARY
-          echo "- ✅ Markdown validation" >> $GITHUB_STEP_SUMMARY
+          echo "- ✅ Code formatting" >> $GITHUB_STEP_SUMMARY
+          echo "- ✅ Markdown linting" >> $GITHUB_STEP_SUMMARY
+          echo "- ✅ Code linting (affected)" >> $GITHUB_STEP_SUMMARY
           echo "- ✅ Type checking (affected)" >> $GITHUB_STEP_SUMMARY
           echo "- ✅ Tests (affected)" >> $GITHUB_STEP_SUMMARY
           echo "- ✅ Build (affected)" >> $GITHUB_STEP_SUMMARY
+          echo "- ✅ Skill validation (affected)" >> $GITHUB_STEP_SUMMARY
 
   security:
     name: Security Analysis
@@ -76,17 +85,17 @@ jobs:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@0.28.0
         with:
-          scan-type: "fs"
-          scan-ref: "."
-          format: "sarif"
-          output: "trivy-results.sarif"
+          scan-type: 'fs'
+          scan-ref: '.'
+          format: 'sarif'
+          output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results
         uses: github/codeql-action/upload-sarif@v3
         if: always()
         continue-on-error: true
         with:
-          sarif_file: "trivy-results.sarif"
+          sarif_file: 'trivy-results.sarif'
 
   pr-analysis:
     name: PR Analysis

.gitignore

@@ -58,5 +58,6 @@ tmp/
 
 # OpenCode
 .opencode/
+!.opencode/skills/
 .context/
 .nx/