feat(repo): Add warning budget and maintainer audit

Freeze the accepted validation warning count at 135 so repo-state and release-state checks fail if the warning baseline grows silently while legacy warnings remain intentionally preserved. Add a read-only maintainer audit command plus regression tests so maintainers can inspect repo health quickly without mutating files.
2026-03-21 11:08:57 +01:00
parent 2463affbac
commit fc5b383f34
12 changed files with 408 additions and 9 deletions
--- a/tools/scripts/tests/automation_workflows.test.js
+++ b/tools/scripts/tests/automation_workflows.test.js
@@ -18,6 +18,14 @@ assert.ok(
  packageJson.scripts["sync:release-state"],
  "package.json should expose a deterministic release-state sync command",
 );
+assert.ok(
+  packageJson.scripts["check:warning-budget"],
+  "package.json should expose a warning-budget guardrail command",
+);
+assert.ok(
+  packageJson.scripts["audit:maintainer"],
+  "package.json should expose a maintainer audit command",
+);
 assert.ok(
  packageJson.scripts["sync:web-assets"],
  "package.json should expose a web-asset sync command for tracked web artifacts",
@@ -27,11 +35,21 @@ assert.match(
  /sync:web-assets/,
  "sync:release-state should refresh tracked web assets before auditing release drift",
 );
+assert.match(
+  packageJson.scripts["sync:release-state"],
+  /check:warning-budget/,
+  "sync:release-state should enforce the frozen validation warning budget",
+);
 assert.match(
  packageJson.scripts["sync:repo-state"],
  /sync:web-assets/,
  "sync:repo-state should refresh tracked web assets before maintainer audits",
 );
+assert.match(
+  packageJson.scripts["sync:repo-state"],
+  /check:warning-budget/,
+  "sync:repo-state should enforce the frozen validation warning budget",
+);

 for (const filePath of [
  "apps/web-app/public/sitemap.xml",