demaconsulting
diff --git a/‎.cspell.json‎
Lines changed: 7 additions & 1 deletion b/‎.cspell.json‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎AGENTS.md‎
Lines changed: 18 additions & 0 deletions b/‎AGENTS.md‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎ARCHITECTURE.md‎
Lines changed: 173 additions & 0 deletions b/‎ARCHITECTURE.md‎
Lines changed: 173 additions & 0 deletions
diff --git a/‎CODE_OF_CONDUCT.md‎
Lines changed: 134 additions & 0 deletions b/‎CODE_OF_CONDUCT.md‎
Lines changed: 134 additions & 0 deletions
@@ -21,7 +21,13 @@
     "DotnetToolWrapper",
     "github",
     "workflows",
-    "yaml"
+    "yaml",
+    "mermaid",
+    "PowerPC",
+    "malware",
+    "sandboxing",
+    "socio",
+    "appsettings"
   ],
   "ignorePaths": [
     "node_modules",
 
@@ -84,6 +84,15 @@ Quality checks are automated through GitHub Actions:
 1. Follow the markdown linting rules in `.markdownlint.json`
 2. Check spelling against `.cspell.json` dictionary
 3. Keep README.md synchronized with actual functionality
+4. Update ARCHITECTURE.md if making architectural changes
+5. Reference appropriate documentation files (README.md, ARCHITECTURE.md, CONTRIBUTING.md, SECURITY.md)
+
+### When Addressing Security Issues
+
+1. Follow the security policy outlined in `SECURITY.md`
+2. Never commit sensitive information
+3. Consider all supported platforms when evaluating security impact
+4. Update security documentation if introducing new security considerations
 
 ## Common Tasks
 
@@ -109,6 +118,15 @@ Before committing:
 2. Run spelling checks: `npx cspell "**/*.md"`
 3. Run markdown linting: `npx markdownlint "**/*.md"`
 
+## Related Documentation
+
+- [README.md](README.md) - Project overview and quick start guide
+- [ARCHITECTURE.md](ARCHITECTURE.md) - Detailed architecture and design documentation
+- [CONTRIBUTING.md](CONTRIBUTING.md) - Contribution guidelines and development setup
+- [CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md) - Community code of conduct
+- [SECURITY.md](SECURITY.md) - Security policy and vulnerability reporting
+- [LICENSE](LICENSE) - MIT License terms
+
 ## Contact
 
 For questions or issues, please refer to the repository's issue tracker on GitHub.
@@ -0,0 +1,173 @@
+# Architecture
+
+This document describes the architecture and design of the DotnetToolWrapper project.
+
+## Overview
+
+DotnetToolWrapper is a .NET console application that serves as a universal launcher for native applications packaged
+as [.NET Tools](https://learn.microsoft.com/en-us/dotnet/core/tools/global-tools). It enables developers to distribute
+platform-specific native executables through the .NET tool ecosystem.
+
+## Problem Statement
+
+The .NET tool ecosystem provides a convenient way to distribute and install command-line tools globally or locally
+within projects. However, .NET tools are inherently limited to .NET applications. Many useful command-line tools are
+written in other languages (C, C++, Rust, Go, etc.) and compiled to native executables. DotnetToolWrapper bridges this
+gap by providing a managed .NET entry point that launches the appropriate native executable for the current platform.
+
+## High-Level Architecture
+
+```mermaid
+flowchart TB
+    subgraph package[".NET Tool Package"]
+        settings["DotnetToolSettings.xml<br/>Defines tool command name and entry point"]
+        
+        subgraph wrapper["DemaConsulting.DotnetToolWrapper.dll<br/>(This Application)"]
+            step1["1. Detect OS and Architecture"]
+            step2["2. Read DotnetToolWrapper.json"]
+            step3["3. Locate native executable"]
+            step4["4. Launch native executable"]
+            step5["5. Return exit code"]
+            
+            step1 --> step2 --> step3 --> step4 --> step5
+        end
+        
+        config["DotnetToolWrapper.json<br/>Maps platforms to executables<br/><br/>{<br/>  'win-x64': { 'program': 'win-x64/tool.exe' },<br/>  'linux-x64': { 'program': 'linux-x64/tool' },<br/>  'osx-arm64': { 'program': 'osx-arm64/tool' }<br/>}"]
+        
+        natives["Native Executables<br/><br/>win-x64/tool.exe (Windows x64)<br/>linux-x64/tool (Linux x64)<br/>osx-arm64/tool (macOS ARM64)<br/>..."]
+        
+        settings --> wrapper
+        wrapper --> config
+        config --> natives
+    end
+```
+
+## Core Components
+
+### Program.cs
+
+The main application logic consists of several key functions:
+
+#### Platform Detection
+
+- **`GetOs()`**: Detects the operating system (Windows, Linux, FreeBSD, macOS)
+- **`GetArchitecture()`**: Detects the CPU architecture (x86, x64, ARM, ARM64, WASM, S390x)
+- **`GetTarget()`**: Combines OS and architecture into a target string (e.g., "win-x64", "linux-arm64")
+
+#### Configuration Management
+
+The application reads `DotnetToolWrapper.json` to determine which native executable to launch for the detected platform.
+This JSON file is located in the same directory as the wrapper DLL.
+
+#### Process Execution
+
+The wrapper locates the native executable, constructs a process with the original command-line arguments, and executes
+it in the current working directory. The wrapper then waits for the process to complete and returns its exit code.
+
+## Configuration Schema
+
+### DotnetToolWrapper.json
+
+The configuration file uses a simple JSON structure:
+
+```json
+{
+  "<target-string>": {
+    "program": "<path-to-executable>"
+  }
+}
+```
+
+- **Target String**: Combination of OS and architecture (e.g., "win-x64", "linux-arm64")
+- **Program Path**: Relative or absolute path to the native executable
+  - Relative paths are resolved from the wrapper's installation directory
+  - Environment variables are expanded
+
+### Supported Target Strings
+
+| OS      | Architectures                                    | Notes                           |
+|---------|--------------------------------------------------|---------------------------------|
+| win     | x86, x64, arm, arm64                             | Windows platforms               |
+| linux   | x86, x64, arm, arm64, s390x                      | Linux distributions             |
+| freebsd | x86, x64, arm, arm64                             | FreeBSD platforms               |
+| osx     | x64, arm64                                       | macOS platforms                 |
+| browser | wasm                                             | WebAssembly (experimental)      |
+
+## Design Decisions
+
+### Multi-Framework Targeting
+
+The application targets .NET 8.0, 9.0, and 10.0 to ensure broad compatibility across different .NET installations.
+This allows the tool to work with both current and recent .NET SDK versions.
+
+### Minimal Dependencies
+
+The application has no external dependencies beyond the .NET standard library. This keeps the package size small and
+reduces potential compatibility issues.
+
+### Process Execution Model
+
+The wrapper uses `ProcessStartInfo` with `UseShellExecute = false` to directly execute the native program without
+involving the system shell. This provides better security and more predictable behavior across platforms.
+
+### Exit Code Propagation
+
+The wrapper exits with the same exit code as the wrapped native executable, ensuring that build scripts and automation
+tools can correctly detect success or failure.
+
+### Working Directory Preservation
+
+The wrapper executes the native program in the user's current working directory, not in the installation directory.
+This ensures that relative file paths in command-line arguments work as expected.
+
+## Extension Points
+
+### Environment Variables
+
+The `program` path in the configuration supports environment variable expansion using standard .NET
+`Environment.ExpandEnvironmentVariables()`. This allows for dynamic configuration based on the runtime environment.
+
+### Future Enhancements
+
+Potential future extensions could include:
+
+- Custom environment variable injection
+- Pre-launch and post-launch hooks
+- Configuration-based argument transformation
+- Logging and diagnostics options
+
+## Security Considerations
+
+- The wrapper does not validate or sanitize command-line arguments; they are passed directly to the native executable
+- The configuration file must be trusted, as it specifies which executables to run
+- The wrapper should be distributed with native executables from trusted sources
+- Package creators should scan native executables for malware before distribution
+
+## Performance Characteristics
+
+- **Startup Overhead**: Minimal (< 50ms on modern hardware)
+- **Memory Footprint**: Small (~20-30 MB for the .NET runtime + wrapper)
+- **CPU Usage**: Negligible (the wrapper is idle while the native process runs)
+
+## Testing Strategy
+
+The project does not currently include automated tests. Testing is performed through:
+
+1. Manual testing on target platforms (Windows, Linux, macOS)
+2. Integration testing with sample .NET tool packages
+3. CI/CD builds that verify compilation for all target frameworks
+
+## Build and Release Process
+
+The project uses GitHub Actions for CI/CD:
+
+1. **Build Workflow**: Compiles the application for all target frameworks
+2. **SBOM Generation**: Creates Software Bill of Materials for transparency
+3. **Artifact Publishing**: Publishes build artifacts for packaging
+4. **Release Workflow**: Creates releases with versioned artifacts
+
+## Related Documentation
+
+- [README.md](README.md) - Usage instructions and examples
+- [CONTRIBUTING.md](CONTRIBUTING.md) - Contribution guidelines
+- [SECURITY.md](SECURITY.md) - Security policy
@@ -0,0 +1,134 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, caste, color, religion, or sexual
+identity and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the overall
+  community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or advances of
+  any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email address,
+  without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Project maintainers are responsible for clarifying and enforcing our standards
+of acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Project maintainers have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official e-mail address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the project maintainers responsible for enforcement through
+GitHub's issue reporting system or by contacting the repository maintainers
+directly.
+
+All complaints will be reviewed and investigated promptly and fairly.
+
+All project maintainers are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Project maintainers will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from project maintainers, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series of
+actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or permanent
+ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior, harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within the
+project community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.1, available at
+[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html][v2.1].
+
+Community Impact Guidelines were inspired by
+[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][FAQ]. Translations are available at
+[https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.1]: https://www.contributor-covenant.org/version/2/1/code_of_conduct.html
+[Mozilla CoC]: https://github.com/mozilla/diversity
+[FAQ]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations