Add CI/CD workflows and improve TypeScript documentation

## 5. Backward Compatibility ✅
- Verified all public API exports remain identical
- Confirmed method signatures unchanged
- Validated type definitions match previous version
- No breaking changes introduced

## 6. CI/CD Implementation 🔄
Added comprehensive GitHub Actions workflows:

**Main CI Workflow (.github/workflows/ci.yml):**
- Multi-version testing: Node.js 14.x, 16.x, 18.x, 20.x, 22.x
- Cross-platform testing: Ubuntu, macOS, Windows
- Automated linting with ESLint
- Full test suite execution
- Build verification
- TypeScript compilation checks
- Type definition generation validation

**Security Workflow (.github/workflows/security.yml):**
- Daily automated security audits
- npm audit with severity filtering
- Dependency review for pull requests
- Fails on critical/high vulnerabilities
- Detailed security reporting in GitHub step summaries

## 7. Type Improvements 🔷
Enhanced JSDoc documentation for all public APIs:

**SocksClient.createConnection():**
- Comprehensive parameter documentation
- Usage examples (promises and callbacks)
- Throws documentation
- Default value specifications

**SocksClient.createConnectionChain():**
- Detailed proxy chaining explanation
- Multi-proxy example with authentication
- Complete option descriptions

**SocksClient.createUDPFrame():**
- RFC 1928 compliance notes
- UDP ASSOCIATE usage example
- Frame structure documentation

**SocksClient.parseUDPFrame():**
- Frame parsing details
- Event handler example
- Return value documentation

All improvements maintain 100% backward compatibility while
providing better IntelliSense and developer experience.

Author: claude

.github/workflows/ci.yml

@@ -0,0 +1,136 @@
+name: CI
+
+on:
+  push:
+    branches: [ main, master, develop, claude/** ]
+  pull_request:
+    branches: [ main, master, develop ]
+
+jobs:
+  test:
+    name: Test on Node.js ${{ matrix.node-version }}
+    runs-on: ${{ matrix.os }}
+
+    strategy:
+      fail-fast: false
+      matrix:
+        os: [ubuntu-latest]
+        node-version: [14.x, 16.x, 18.x, 20.x, 22.x]
+        include:
+          # Also test on macOS and Windows with latest LTS
+          - os: macos-latest
+            node-version: 20.x
+          - os: windows-latest
+            node-version: 20.x
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Node.js ${{ matrix.node-version }}
+      uses: actions/setup-node@v4
+      with:
+        node-version: ${{ matrix.node-version }}
+        cache: 'npm'
+
+    - name: Install dependencies
+      run: npm ci
+
+    - name: Run linter
+      run: npm run lint
+      continue-on-error: ${{ matrix.node-version == '14.x' }}
+
+    - name: Run tests
+      run: npm test
+
+    - name: Build project
+      run: npm run build-raw
+
+  security:
+    name: Security Audit
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20.x'
+        cache: 'npm'
+
+    - name: Install dependencies
+      run: npm ci
+
+    - name: Run npm audit
+      run: npm audit --audit-level=moderate
+      continue-on-error: true
+
+    - name: Check for vulnerabilities
+      run: |
+        AUDIT_RESULT=$(npm audit --json)
+        VULNERABILITIES=$(echo $AUDIT_RESULT | jq '.metadata.vulnerabilities.total')
+        echo "Total vulnerabilities: $VULNERABILITIES"
+        if [ "$VULNERABILITIES" -gt "0" ]; then
+          echo "⚠️ Found $VULNERABILITIES vulnerabilities"
+          npm audit
+          exit 1
+        fi
+        echo "✅ No vulnerabilities found"
+
+  coverage:
+    name: Code Coverage
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20.x'
+        cache: 'npm'
+
+    - name: Install dependencies
+      run: npm ci
+
+    - name: Run tests
+      run: npm test
+
+    - name: Test Summary
+      run: |
+        echo "## Test Results" >> $GITHUB_STEP_SUMMARY
+        echo "✅ All tests passed" >> $GITHUB_STEP_SUMMARY
+
+  type-check:
+    name: TypeScript Type Check
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20.x'
+        cache: 'npm'
+
+    - name: Install dependencies
+      run: npm ci
+
+    - name: TypeScript compilation check
+      run: npx tsc --noEmit
+
+    - name: Build type definitions
+      run: npm run build-raw
+
+    - name: Verify type definitions
+      run: |
+        if [ ! -f "typings/index.d.ts" ]; then
+          echo "❌ Type definitions not generated"
+          exit 1
+        fi
+        echo "✅ Type definitions generated successfully"

.github/workflows/security.yml

@@ -0,0 +1,71 @@
+name: Security
+
+on:
+  schedule:
+    # Run daily at 00:00 UTC
+    - cron: '0 0 * * *'
+  workflow_dispatch:
+
+jobs:
+  security-audit:
+    name: Automated Security Audit
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20.x'
+        cache: 'npm'
+
+    - name: Install dependencies
+      run: npm ci
+
+    - name: Run security audit
+      id: audit
+      run: |
+        npm audit --json > audit-results.json || true
+        CRITICAL=$(cat audit-results.json | jq '.metadata.vulnerabilities.critical')
+        HIGH=$(cat audit-results.json | jq '.metadata.vulnerabilities.high')
+        MODERATE=$(cat audit-results.json | jq '.metadata.vulnerabilities.moderate')
+        LOW=$(cat audit-results.json | jq '.metadata.vulnerabilities.low')
+
+        echo "critical=$CRITICAL" >> $GITHUB_OUTPUT
+        echo "high=$HIGH" >> $GITHUB_OUTPUT
+        echo "moderate=$MODERATE" >> $GITHUB_OUTPUT
+        echo "low=$LOW" >> $GITHUB_OUTPUT
+
+    - name: Report results
+      run: |
+        echo "## Security Audit Results" >> $GITHUB_STEP_SUMMARY
+        echo "" >> $GITHUB_STEP_SUMMARY
+        echo "| Severity | Count |" >> $GITHUB_STEP_SUMMARY
+        echo "|----------|-------|" >> $GITHUB_STEP_SUMMARY
+        echo "| Critical | ${{ steps.audit.outputs.critical }} |" >> $GITHUB_STEP_SUMMARY
+        echo "| High     | ${{ steps.audit.outputs.high }} |" >> $GITHUB_STEP_SUMMARY
+        echo "| Moderate | ${{ steps.audit.outputs.moderate }} |" >> $GITHUB_STEP_SUMMARY
+        echo "| Low      | ${{ steps.audit.outputs.low }} |" >> $GITHUB_STEP_SUMMARY
+
+    - name: Fail on critical or high vulnerabilities
+      if: steps.audit.outputs.critical > 0 || steps.audit.outputs.high > 0
+      run: |
+        echo "❌ Found critical or high severity vulnerabilities"
+        npm audit
+        exit 1
+
+  dependency-review:
+    name: Dependency Review
+    runs-on: ubuntu-latest
+    if: github.event_name == 'pull_request'
+
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Dependency Review
+      uses: actions/dependency-review-action@v4
+      with:
+        fail-on-severity: moderate

src/client/socksclient.ts

@@ -84,12 +84,49 @@ class SocksClient extends EventEmitter implements SocksClient {
   }
 
   /**
-   * Creates a new SOCKS connection.
+   * Creates a new SOCKS connection to a destination through a SOCKS proxy server.
    *
-   * Note: Supports callbacks and promises. Only supports the connect command.
-   * @param options { SocksClientOptions } Options.
-   * @param callback { Function } An optional callback function.
-   * @returns { Promise }
+   * This is the primary method for establishing SOCKS connections. It supports both
+   * callback and promise-based workflows.
+   *
+   * @param options - Configuration options for the SOCKS connection
+   * @param options.proxy - SOCKS proxy server configuration (host, port, type, auth)
+   * @param options.command - SOCKS command to execute (only 'connect' is supported)
+   * @param options.destination - Target destination host and port
+   * @param options.timeout - Optional connection timeout in milliseconds (default: 30000)
+   * @param options.existing_socket - Optional pre-connected socket to use
+   * @param callback - Optional callback function for backwards compatibility
+   *
+   * @returns Promise that resolves with connection details including the established socket
+   *
+   * @throws {SocksClientError} When connection fails or options are invalid
+   *
+   * @example
+   * ```typescript
+   * // Using promises (recommended)
+   * const info = await SocksClient.createConnection({
+   *   proxy: {
+   *     host: '127.0.0.1',
+   *     port: 1080,
+   *     type: 5
+   *   },
+   *   command: 'connect',
+   *   destination: {
+   *     host: 'example.com',
+   *     port: 80
+   *   }
+   * });
+   * console.log('Connected:', info.socket);
+   *
+   * // Using callbacks
+   * SocksClient.createConnection(options, (err, info) => {
+   *   if (err) {
+   *     console.error(err);
+   *   } else {
+   *     console.log('Connected:', info.socket);
+   *   }
+   * });
+   * ```
    */
   static createConnection(
     options: SocksClientOptions,
@@ -138,13 +175,50 @@ class SocksClient extends EventEmitter implements SocksClient {
   }
 
   /**
-   * Creates a new SOCKS connection chain to a destination host through 2 or more SOCKS proxies.
+   * Creates a new SOCKS connection chain through multiple SOCKS proxy servers.
    *
-   * Note: Supports callbacks and promises. Only supports the connect method.
-   * Note: Implemented via createConnection() factory function.
-   * @param options { SocksClientChainOptions } Options
-   * @param callback { Function } An optional callback function.
-   * @returns { Promise }
+   * This method allows you to tunnel through 2 or more SOCKS proxies in sequence
+   * to reach the final destination. Each proxy connection is established using
+   * the previous proxy as the transport.
+   *
+   * @param options - Configuration options for the proxy chain
+   * @param options.command - SOCKS command to execute (only 'connect' is supported)
+   * @param options.destination - Final target destination host and port
+   * @param options.proxies - Array of SOCKS proxy servers to chain through (minimum 2)
+   * @param options.timeout - Optional connection timeout in milliseconds
+   * @param options.randomizeChain - Optional flag to randomize proxy order
+   * @param callback - Optional callback function for backwards compatibility
+   *
+   * @returns Promise that resolves with connection details including the established socket
+   *
+   * @throws {SocksClientError} When chain connection fails or options are invalid
+   *
+   * @example
+   * ```typescript
+   * // Chain through two SOCKS5 proxies
+   * const info = await SocksClient.createConnectionChain({
+   *   command: 'connect',
+   *   destination: {
+   *     host: 'example.com',
+   *     port: 443
+   *   },
+   *   proxies: [
+   *     {
+   *       host: 'proxy1.example.com',
+   *       port: 1080,
+   *       type: 5,
+   *       userId: 'user1',
+   *       password: 'pass1'
+   *     },
+   *     {
+   *       host: 'proxy2.example.com',
+   *       port: 1080,
+   *       type: 5
+   *     }
+   *   ]
+   * });
+   * console.log('Chained connection established:', info.socket);
+   * ```
    */
   static createConnectionChain(
     options: SocksClientChainOptions,
@@ -231,8 +305,32 @@ class SocksClient extends EventEmitter implements SocksClient {
   }
 
   /**
-   * Creates a SOCKS UDP Frame.
-   * @param options
+   * Creates a SOCKS5 UDP frame for use with UDP ASSOCIATE connections.
+   *
+   * Encapsulates UDP data in the SOCKS5 UDP frame format (RFC 1928) for
+   * transmission through a SOCKS5 proxy using the ASSOCIATE command.
+   *
+   * @param options - UDP frame configuration
+   * @param options.remoteHost - Target remote host and port for the UDP packet
+   * @param options.data - The actual UDP data payload to encapsulate
+   * @param options.frameNumber - Optional frame number (default: 0)
+   *
+   * @returns Buffer containing the complete SOCKS5 UDP frame
+   *
+   * @example
+   * ```typescript
+   * // Create a UDP frame for DNS query
+   * const frame = SocksClient.createUDPFrame({
+   *   remoteHost: {
+   *     host: '8.8.8.8',
+   *     port: 53
+   *   },
+   *   data: dnsQueryBuffer
+   * });
+   *
+   * // Send via UDP socket obtained from ASSOCIATE
+   * udpSocket.send(frame, proxyPort, proxyHost);
+   * ```
    */
   static createUDPFrame(options: SocksUDPFrameDetails): Buffer {
     const buffers: Buffer[] = [];
@@ -278,8 +376,24 @@ class SocksClient extends EventEmitter implements SocksClient {
   }
 
   /**
-   * Parses a SOCKS UDP frame.
-   * @param data
+   * Parses a SOCKS5 UDP frame received from a UDP ASSOCIATE connection.
+   *
+   * Decapsulates UDP data from the SOCKS5 UDP frame format (RFC 1928),
+   * extracting the remote host information and the actual UDP payload.
+   *
+   * @param data - Buffer containing the complete SOCKS5 UDP frame
+   *
+   * @returns Parsed frame details including remote host, port, and data payload
+   *
+   * @example
+   * ```typescript
+   * // Parse UDP frame received from SOCKS proxy
+   * udpSocket.on('message', (msg) => {
+   *   const frame = SocksClient.parseUDPFrame(msg);
+   *   console.log('From:', frame.remoteHost.host, frame.remoteHost.port);
+   *   console.log('Data:', frame.data);
+   * });
+   * ```
    */
   static parseUDPFrame(data: Buffer): SocksUDPFrameDetails {
     let offset = 2; // Skip reserved bytes